Senior Vulnerability Analyst

Tech at THG

Technology is the driving force behind THG, and it starts with our people. We are ambitious with our goals and challenge conventional thinking. THG Technology is different because we support every single person to make massive impact and drive their own work. Our people are always learning, and we work every day to ensure our technology, from our software platforms, to our hosting services, to our M.L capability and beyond, is world class. This enables us to keep powering THG and our partners on a global scale.

 

What will I be doing?

An opportunity has arisen in the THG Cyber Operations team to take a leading role in the vulnerability management function as a Senior Vulnerability Analyst.  As a Senior Vulnerability Analyst, you will work to deliver, enforce, and improve upon THG’s vulnerability management programme. You will be responsible for using a variety of tools and technology to identify vulnerabilities across all of THG’s technical infrastructure, developing creative and practical reporting methods to track successful mitigation, and building effective working relationships with stakeholders across the business.

This is a highly proactive, interactive and hands-on role; requiring an individual with a balance of technical and stakeholder management skills. A successful candidate will have the opportunity to lead a team of vulnerability analysts to improve operational efficiencies and act on initiative to seek out vulnerabilities, keep track of current events and changes in the technology landscape, and respond appropriately to address risk.

 

What would success in this role look like?

• Ability to identify and recommend measures to manage and remediate vulnerabilities.
• Confidence in setting up and configuring solutions/tooling for vulnerability management.
• Independence and initiative in supporting a comprehensive global vulnerability platform to continuously scan and report findings.
• Be a vocal and active participant in the vulnerability management working group.
• Produce and deliver vulnerability management reporting to relevant committees and stakeholders
• Able to work in an agile environment to provide best practice in vulnerability management across infrastructure and cloud.
• Provide metrics and reporting on system vulnerabilities, emerging threats, patch management status and providing trend analysis and metrics for management functions.
• Build effective working relationships with stakeholders across the business, both technical and non-technical.
  
  

What skills and experience would I need?

• Demonstrable experience working in vulnerability management.
• Experience with working to remediate/mitigate identified vulnerabilities and technical issues.
• Strong stakeholder management and influencing skills, with the ability to manage and resolve risk with competing/conflicting priorities.
• Experience working with vulnerability scanning software, such as Tenable, Qualys, or Tanium, CrowdStrike etc.
• Good organisational and data analytics skills.
• Experience of working with other cyber functions such as SOC, CTI and red teams.
• Demonstrable strong technical, social, presentation and problem-solving skills and capable of taking initiative to solve problems as they arise.

 

What's in it for me?

• Competitive salary
• Build solutions using the latest technology
• Work alongside genuine industry experts 
• Continuous development through THG Academy, our in-house L&D team
• Staff discounts on THG brands and Hale Country Club 
• On-site doctor, physio and barber