The UK's trusted Ministry of Defence partner, MBDA, are looking for an experienced Vulnerability and Compliance Analyst to support the IM SOC to defend against cyber threats and vulnerabilities by ensuring the IM and Manufacturing environments are following best practice and proactively managing identified vulnerabilities that could be exploited. The position will be based at the Bristol site.
As a Vulnerability and Compliance Analyst, the successful candidate will
provide remediation action through compliance with relevant security standards and confirm that remediation is completed following the identified risk categorisation. This traversal function covers all areas of IM and will require Group Coordination.
What you'll get to do as a Vulnerability and Compliance Analyst:
- Report and track remediation activities affecting all Infrastructure and applications within the MBDA agreed scope focussing on IoT and OT within IM and manufacturing.
- Support compliance and due diligence-led activities, including regulatory updates.
- Lead discovery activities and audits of environments.
- Establish relationships and collaborate with teams and stakeholders to create tactical and strategic plans related to vulnerability management.
- Champion security best practices within technology and be regarded as the 'go-to' individual for security vulnerability management.
- Provide security and remediation advice to cross-business stakeholders at a technical level.
- Proactive identification and communication of external themes and threats.
- Advise technical and non-technical audiences on appropriate prioritization of patch deployment.
- Manage vulnerability remediation by suppliers and teams through re-test & closure.
- Maintain and further improve the scanning scope and capability of the vulnerability scanning service through automation and tooling.
- Manage the remediation plan of vulnerabilities discovered during penetration tests and health checks.
What we're looking for:
- Familiarity with Infrastructure and web application scanning tools (e.g. Qualys, Nessus) and relevant remediation management/risk tools supported in the Security Operations Centre (SOC)
- Managing vulnerabilities 2+ years (planning and remediation)
- Demonstrable knowledge of Vulnerability lifecycle management (MITRE) and IT/ OT/ IoT vulnerability remediation plans
- Experience or knowledge of risk management frameworks (e.g. CIS, NIST)
- Sound understanding of network/infrastructure, web/mobile application weakness, and anti-patterns (CWE, OWASP).
- Understanding of cyber security technologies and applicable security controls
- Understanding of information security principles and best-practices
- Ability to carry out risk assessments
- You must be a UK national or citizen to be eligible for the role.
More about the role:
MBDA's relationship with the UK military spans back over 70 years. They have delivered countless landmarks in defence engineering, supplying vital defence capability to meet the needs of the armed forces over land, sea, and air.
This role is based at MBDA's, Bristol's state of the art site, which plays a key part in missiles operations. The location offers excellent transportation links, outstanding learning and development opportunities, and social, charitable, and sporting activities.
Guidant Global is acting as an Employment Business in relation to this vacancy.
