This site uses cookies. To find out more, see our Cookies Policy

Cyber Vulnerability Analyst in Edinburgh at Computershare, Inc

Date Posted: 10/24/2018

Job Snapshot

  • Employee Type:
    Full-Time
  • Location:
    Edinburgh
  • Job Type:
  • Experience:
    At least 5 year(s)
  • Date Posted:
    10/24/2018

Job Description

Cyber Vulnerability Analyst

Edinburgh or Bristol

Competitive Salary  Realistic Progression Opportunities Training & Development Award Winning Employee Share Plan Highly Competitive Company Pension Flexible Working 25 Days Holiday Excellent Working Culture

Job Purpose

The Cyber Assurance team is responsible for delivering a complementary suite of security assessment, testing and assurance services across all of the global Computershare environments.

The Cyber Vulnerability Analyst has hands-on responsibilities for conducting and co-ordinating technical vulnerability assessments across our IT infrastructure, applications and services, providing subject matter expertise recommendations towards the development of appropriate remediation plans and delivering clear and accurate reports detailing the organisation’s level of security assurance against internal compliance and external threat measures. We are looking for an individual with experience of the technologies and processes to perform, analyse, assess and report on vulnerability and configuration assessments across a complex, global operating model as well as demonstrating the skills to develop effective and trusting relationships with internal stakeholders.

This role is part of a global team of information security professionals that deliver in-depth technical security services for our most critical applications and infrastructure to ensure that they are highly resilient against existing and emerging cyber security threats.

 

 

Key Accountabilities

  • Conduct scheduled security vulnerability and configuration assessments across global applications and infrastructure; and provide expert, technical remedial recommendations.
  • Configure, operate and support the vulnerability management technologies and toolsets.
  • Deliver the analysis and reporting of the organisation’s security posture to key internal stakeholders.
  • Create and maintain the set of unified key performance and risk indicators aligned to stakeholder requirements.
  • Schedule, co-ordinate and manage the engagement process (with internal stakeholders and third-party vendors) for manual penetration tests performed by approved third party vendors.
  • Promote and develop vulnerability assurance initiatives across all regions and work to improve existing security services, including the continuous enhancement of existing methodology material and supporting assets
  • Work with the Security Operations teams to monitor and research industry information sources for zero-day threats and vulnerabilities that impact Computershare.
  • Work with the Security Governance teams on the iterative security configuration tests against the technical baseline security standards.
  • Work with the  Security Consultancy teams, to report on findings and respond to requests on threats and known vulnerabilities and the delivery of ad-hoc vulnerability scans
  • Establish and maintain strong, collaborative working relationships with global and regional technology infrastructure, application, and architecture teams.

 

Skills, Experience & Competencies

  • A minimum of five years of technical experience with a strong foundational understanding of enterprise system, network and application architectures (including Microsoft, RHL).
  • Solid and demonstrable comprehension of end to end vulnerability management workflow to include industry standards such as CVE, CPE, CVSS.
  • Direct hands-on experience performing vulnerability scans using third party tools to perform analysis of systems and the reporting of vulnerabilities (e.g. Nessus, Metasploit, Nexpose, Qualys, IBM AppScan)
  • Possess, or working towards, professional or industry certifications, such as, CEH, MCSA, CISSP, SANS, and have an understanding of the security principles outlined in OWASP, CIS, NIST and ISO27000.
  • Be a self-starter, be able to successfully prioritize and manage multiple complex tasks, and work well under pressure with limited supervision both individually and at times, with other team members.
  • Excellent verbal and written communication skills with the ability to effectively articulate complex technical terms to both technical and non-technical audiences.
  • Be able to adapt to a flexible working model, such as attending conference calls meetings outside of normal office hours and occasionally travelling to other local and international Computershare locations.   

 

A Truly Diverse Place to Work

Computershare celebrates the diversity of our people and we welcome applications from everyone.

We believe that having a culture of inclusion is essential in delivering good results. Attracting, retaining and developing a diverse workforce where employees feel valued, respected and empowered allows people to reach their full potential. As a business this diversity helps us to better reflect and understand our customers’ needs to allow us to drive better outcomes.

 

 

Specific Key Benefits of the Role


Computershare offers all employees 25 days holiday, excellent pension scheme, shareholder incentive plan, and a flexible employee benefits scheme.


 

All successful candidates will be required to undergo the Computershare Pre-Employment Screening Process before commencing employment. Employment will be subject to satisfactory clearance on background checks including Identification, Passport Validation, Finance, Qualification, Employment / Personal referencing and Criminal Record Basic Disclosure checks.

Computershare Investor Services PLC is authorised and regulated by the Financial Conduct Authority. Computershare Investor Services PLC is registered in England and Wales No 3498808 and the registered office address is: The Pavilions, Bridgwater Road, Bristol, BS13 8AE.