Vulnerability Management Analyst

Posted 18 Days Ago
Be an Early Applicant
Cannon Street, London, Greater London, England
Mid level
Agency • Artificial Intelligence • Cloud • Internet of Things • Software • Automation
The Role
The Vulnerability Management Analyst at AVEVA is responsible for identifying and managing vulnerabilities in the infrastructure and services. This role involves conducting assessments, collaborating with stakeholders, and recommending remediation strategies to enhance security.
Summary Generated by Built In

AVEVA is creating software trusted by over 90% of leading industrial companies.

Position: Vulnerability Management Analyst

Location: London, Hybrid (3 days in the office )

The Job

The AVEVA Security team are seeking a skilled individual to join a high performing global vulnerability management team.

The Vulnerability Management Analyst is responsible for proactively identifying and managing the remediation of vulnerabilities affecting AVEVA’s infrastructure and services. This role requires a broad technical understanding and to be responsible for vulnerability detection, assessment and driving vulnerability remediation across the organisation.

Responsibilities

  • Conduct vulnerability assessments to identify known vulnerabilities and configuration weaknesses and assess the effectiveness of existing controls and recommends remedial action.
  • Maintain current knowledge and understanding of the threat landscape and emerging security threats and vulnerabilities.
  • Analyse risks associated with vulnerabilities, provide detailed reporting, and recommend actionable remediation strategies
  • Support compliance and risk management activities, recommending security controls and corrective actions to mitigate vulnerability risks.
  • Serve as an escalation point on issues, dependencies, and risks related to vulnerability scanning and security testing.
  • Collaborate with multiple stakeholders to prioritize vulnerabilities based on severity, impact, and exploitability.
  • Support the development of AVEVA’s Vulnerability management policy, process, and procedures.
  • Managing the end-to-end vulnerability lifecycle from discovery to closure ensuring the relevant resolver team put in place a plan and timely remediation working with both managed service providers and internal IT and Information Security staff.
  • Utilising information from external vulnerability reporting tools such as BitSight, RiskRecon, Security Scorecard and vendor vulnerability briefings determine the priority of remediations needed across the AVEVA estate.
  • Manage security assessment processes, including performing, tracking remediation, validating controls, measuring residual risk, and writing reports.
  • Coordinate and oversee remediation efforts to ensure timely and effective resolution of security vulnerabilities.

Skills & Qualifications

  • Minimum of 3 years information and cyber security experience, and experience in IT Vulnerability Management.
  • Experience using vulnerability scanning tools such as Qualys, Tenable, Rapid7 and vulnerability management platforms (RiskVision, Kenna Security).
  • Experience managing vulnerability management findings/services for cloud environments (Amazon Web Services, Microsoft Azure, Google Cloud Platform).
  • Strong understanding of vulnerability management practices and methodologies. Knowledge of common vulnerability frameworks (CVSS, OWASP Top 10).
  • Working knowledge of system, application, network and database hardening techniques and practices.
  • Working knowledge of one or more of the following - cloud technologies, internet security, networking protocols or experience with software development.
  • Strong analytical skills and ability to identify advanced vulnerability threats.
  • Knowledge and understanding of information risk concepts and principles, as a means of relating business needs to security controls.
  • Knowledge of and experience in developing and documenting security processes and plans.
  • Knowledge and experience with implementing common information security management frameworks, such as International Organization for Standardization (ISO) 2700x series, ITIL, COBIT and National Institute of Standards and Technology (NIST) or Centre for Internet Security (CIS) frameworks would be advantageous.

UK Benefits include:  

Flexible benefits fund, emergency leave days, adoption leave, 28 days annual leave (plus bank holidays), pension, life cover, private medical insurance, parental leave, education assistance program.

It’s possible we’re hiring for this position in multiple countries, in which case the above benefits apply to the primary location. Specific benefits vary by country, but our packages are similarly comprehensive.

Find out more: aveva.com/en/about/careers/benefits/

Hybrid working

By default, employees are expected to be in their local AVEVA office three days a week, but some positions are fully office-based. Roles supporting particular customers or markets are sometimes remote.

Hiring process

Interested? Great! Get started by submitting your cover letter and CV through our application portal. AVEVA is committed to recruiting and retaining people with disabilities. Please let us know in advance if you need reasonable support during your application process.

Find out more: aveva.com/en/about/careers/hiring-process

About AVEVA

AVEVA is a global leader in industrial software with more than 6,500 employees in over 40 countries. Our cutting-edge solutions are used by thousands of enterprises to deliver the essentials of life – such as energy, infrastructure, chemicals, and minerals – safely, efficiently, and more sustainably.

We are committed to embedding sustainability and inclusion into our operations, our culture, and our core business strategy. Learn more about how we are progressing against our ambitious 2030 targets: sustainability-report.aveva.com/

Find out more: aveva.com/en/about/careers/

AVEVA requires all successful applicants to undergo and pass a drug screening and comprehensive background check before they start employment. Background checks will be conducted in accordance with local laws and may, subject to those laws, include proof of educational attainment, employment history verification, proof of work authorization, criminal records, identity verification, credit check. Certain positions dealing with sensitive and/or third-party personal data may involve additional background check criteria.

AVEVA is an Equal Opportunity Employer. We are committed to being an exemplary employer with an inclusive culture, developing a workplace environment where all our employees are treated with dignity and respect. We value diversity and the expertise that people from different backgrounds bring to our business. AVEVA provides reasonable accommodation to applicants with disabilities where appropriate. If you need reasonable accommodation for any part of the application and hiring process, please notify your recruiter. Determinations on requests for reasonable accommodation will be made on a case-by-case basis.

Top Skills

Vulnerability Management
Vulnerability Scanning Tools
The Company
HQ: Cambridge
6,970 Employees
On-site Workplace

What We Do

AVEVA is a global leader in industrial software, sparking ingenuity to drive responsible use of the world’s resources. The company’s secure industrial cloud platform and applications enable businesses to harness the power of their information and improve collaboration with customers, suppliers and partners.

Over 20,000 enterprises in over 100 countries rely on AVEVA to help them deliver life’s essentials: safe and reliable energy, food, medicines, infrastructure and more. By connecting people with trusted information and AI-enriched insights, AVEVA enables teams to engineer efficiently and optimize operations, driving growth and sustainability.

Named as one of the world’s most innovative companies, AVEVA supports customers with open solutions and the expertise of more than 6,400 employees, 5,000 partners and 5,700 certified developers. With operations around the globe, AVEVA is headquartered in Cambridge, UK.

Learn more at www.aveva.com

Similar Jobs

Hybrid
London, Greater London, England, GBR
289097 Employees

McCain Foods Logo McCain Foods

Internal Communication Business Partner

Food • Retail • Agriculture • Manufacturing
Scarborough, North Yorkshire, England, GBR
20000 Employees
Hybrid
Bournemouth, Dorset, England, GBR
289097 Employees
Hybrid
Bournemouth, Dorset, England, GBR
289097 Employees

Similar Companies Hiring

InCommodities Thumbnail
Renewable Energy • Machine Learning • Information Technology • Energy • Automation • Analytics
Austin, TX
234 Employees
RunPod Thumbnail
Software • Infrastructure as a Service (IaaS) • Cloud • Artificial Intelligence
Charlotte, North Carolina
53 Employees
Hedra Thumbnail
Software • News + Entertainment • Marketing Tech • Generative AI • Enterprise Web • Digital Media • Consumer Web
San Francisco, CA
14 Employees

Sign up now Access later

Create Free Account

Please log in or sign up to report this job.

Create Free Account