Vulnerability Governance Analyst

Computacenter (UK) Ltd • Hatfield, Milton Keynes, Nottingham

Hatfield, Milton Keynes, Nottingham
214080-en_GB

Life on the team

The Vulnerability Governance Analyst role will manage processes to detect, prevent and correct vulnerabilities to devices in a customer’s environment. The SC-cleared analyst will aim to mitigate business risks arising from both regulatory & security noncompliance.

What you’ll do

  • Integrate with customer and third-party security operations centre reporting as well as integration with security incident procedures
  • Build, manage and update Vulnerability Lifecycle Management Product Lists (VLMPLs) for all supported customers
  • Responding to and helping to co-ordinate the response to Major Vulnerability incidents
  • Sending out notifications and communications related to security vulnerabilities that affect multiple technologies
  • Creation and ownership of vulnerability incidents – providing a “Start to Finish” level of incident management
  • Proactive identification of vulnerabilities
  • Provide supporting information on potential impacts and mitigating actions for new threats or vulnerabilities from vendor, threat intelligence and subscriptions
  • Establishing good practice vulnerability treatment throughout the customer estate, this includes implementing policy, hardening, patching and fixes of all supported technology
  • Working closely with technical and non-technical teams to coordinate changes and any emergency patching work that is required
  • Proactively identify vulnerabilities and provide supporting information on potential impacts and mitigating actions for new threats or vulnerabilities from vendor, threat intelligence and subscriptions
  • Evaluate vulnerabilities across multiple technologies that correlate with the VLMPLs
  • Occasional site visits to meet stakeholders and to improve customer relationships
  • Provide professional, business friendly communications, translating complex matters for various audiences
  • Research the latest information technology security bulletins for Microsoft products and 3rd party applications
  • Provide a repeatable process for assessing vulnerabilities detected through multiple sources within a business context, determining recommendations for how the vulnerabilities should be treated and reporting these to business stakeholders.
  • Creation of Security improvements which would be managed via SIP plans to ensure security threats and vulnerabilities are appropriately identified and managed
  • Perform validation and closure activities on completion of corrective mitigation actions
  • Pro-actively logging incidents and changes to carry out remediation work and repeated security changes

What you’ll need

  • It is essential for a Vulnerability Governance analyst to have valid and existing SC clearance
  • Knowledge/Understanding of operating systems and software security vulnerabilities
  • Pro-active in finding solutions to problems and security improvements across customer’s environments
  • Confident in co-ordinating mitigation actions across multiple resolver teams as well as presenting reports to business stakeholders such as Delivery Leadership
  • Ability to work effectively as part of a team
  • Knowledge/Understanding of vulnerability management tools such as Tenable, Qualys VMDR or Microsoft Defender
  • Experience of Defender for Endpoint
  • Awareness of:
    • Security best practice (ITIL, COMPTIA)
    • IT security and software vulnerabilities
    • Experience in performing data analysis
    • Experience in using PowerBI

Why you should choose us

Open communication

Despite our size, we’re an open organisation that doesn’t hide behind hierarchy. We communicate regularly, openly and directly. For us, it’s about being straightforward, delivering and doing the right thing. Essentially, we’re people dealing with people.

Showing appreciation & having fun

Great performance is recognised, so too is the willingness to help others. Our Bravo! awards and Long Service Awards Scheme are just a taste of how we say thank you for a job well done. And when it comes to recognising success, we love to celebrate. Our company and team events are legendary!

Health & wellbeing

Our people are our greatest asset and we’re passionate about supporting you in feeling good and staying healthy. We offer a comprehensive Employee Assistance Programme, Wellbeing Champions, Mental Health First Aiders, Access to Work scheme, and more.

Inclusive workplace

People work best when they bring their whole selves to work, that’s why we see and value you as the amazing individual you truly are. We take a genuine interest you that extends beyond skills, knowledge, and experience. Our Employee Impact Groups champion best practice, celebrate diversity and promote inclusion within our industry.

Pension and financial security

Thinking ahead, planning for life’s uncertainties, or simply saving for a rainy day? We offer auto-enrolment onto our pension scheme, a Sharesave/SAYE scheme and more besides.

Flexible benefits

Do you fancy a new bicycle? Want to work-out at the gym? Or do you prefer to get-away from it all? With our voluntary flexible benefits platform, ‘My Benefits’, you can. Achieve savings with our Cycle2Work, GymFlex, Travel Insurance benefits and loads more.

You belong

You belong

At Computacenter, we celebrate difference and it’s important to us that we have a working culture where you can be free to be yourself; in an environment where you feel valued, respected, and supported to reach your full potential and experience a sense of belonging. Because we know when you thrive, we thrive.

As a proud equal opportunities employer, we’re committed to ensuring that there is fair and equal access to opportunities for everyone. Your application is considered on its merits regardless of your age, disability, ethnicity, gender identity, marital status, pregnancy, parenthood, religion or belief, sex or sexual orientation, veteran status, or any other characteristics protected by law. All that matters to us is that you share our vision and values, and you bring the experience and skills we need.

We are proud to be a Disability Confident Employer, a government scheme that helps employers attract, recruit, and retain disabled staff. We welcome applications from disabled people and accept applications in alternative formats – and guarantee to interview applicants who have a disability.

Winning Together

At Computacenter, we have been writing success stories for more than 40 years! Today, we’re driving digital transformation with over 20,000 employees worldwide. We develop IT strategies, implement new technologies and manage complex infrastructures.

As a proud, independent partner to some of the world’s leading technology providers, our portfolio covers workplace, applications & data, cloud & data center, security, and networking. What’s the secret of our success? Quite simply, it’s our people.

The people who bring their unique skills and perspectives to a diverse and inclusive environment that enables them to reach their full potential.

Winning Together

We are an award-winning employer!

Your working environment
Meet your recruiter
Annette Marshall

Annette Marshall

 

We’re aware that fraudsters are using imposter websites, email addresses, and text messages to advertise fake job opportunities. Computacenter only advertises roles on this website, LinkedIn and our own social media accounts, and via carefully selected reputable third parties. We never interview or make offers of employment using instant messages or ask for money. Please remember to be vigilant. If you’ve received something and you want to make sure it’s genuine, please contact us.

powered by talentsconnect