- Entry level
- No Education
- Salary to negotiate
Vulnerability Analyst - 90229730
Posting Range:8 Apr 2019 - 23 Apr 2019
Job Title: Vulnerability Analyst
o To collaborate with and support the Barclays CSO Vulnerability Management team in the operation of Vulnerability Management Controls by ensuring the coverage, health and accuracy of vulnerability data collection solutions and the resulting reporting of data.
o Ensure the health, function and availability of GTIS vulnerability remediation tools / processes used to address reported vulnerabilities across the supported estates.
o Support identified initiatives to enhance processes and tooling that improvement the management / remediation of reported vulnerabilities.
o Contribute to the management of Vulnerability Management controls, attending all appropriate governance meetings and producing regular coverage / control effectiveness reports.
o Represent the Bank’s Vulnerability Management processes within GTIS and ensure consistent adoption and adherence to CSO standards and policies.
o Contribute to the delivery of timely and appropriate governance & risk decisions relating to Vulnerability Management.
o Provide timely, accurate and clear advice based on evidence and accurate data
What will you be doing?
40% Vulnerability Data Analysis
o Perform analysis of the vulnerability data provided by the Bank’s scanning tools to identify key trends / hot topics that require focus from the owning Platform team / Product Owner and to produce MI for key metrics relating to this.
o Working with the CSO scanning team to ensuring the coverage, availability and accuracy of vulnerability data and that plans are created and implemented to address any gaps in coverage by the team concerned.
o Support and management of any issues relating to in scope Vulnerability Management controls including but not limited to vulnerability remediation along with Data collection, coverage, accuracy and reporting.
50% Vulnerability Remediation
o To monitor the effectiveness of GTIS vulnerability remediation processes and to support the process owners in identification and delivery of improvement initiatives.
o Ensure that effective plans are created for the remediation of reported vulnerabilities owned by GTIS Platform teams and that these are implemented with the stated SLA timeframe.
o To monitor the adoption of GTIS vulnerability remediation payloads by Business Unit asset owners and escalate any shortfalls in implementation with the Business Units concerned.
o Liaise with Business Unit CISO and Estate Management teams to ensure that they are aware of and remediating vulnerabilities identified on products / software owned by their Business Unit.
o Ensure that appropriate risk acceptances are raised and approval obtained for vulnerabilities that cannot be remediated within the published remediation SLAs.
10% Technical Planning, Implementation and Documenting of Security Solutions and Processes
o Drive and ensure consistent adoption of CSO Vulnerability Management Standards and Policies across GTIS Platform teams.
o To identify enhancement opportunities for GTIS remediation processes / tooling that relate to Vulnerability Management and support with the co-ordination / delivery of these.
o To ensure that all GTIS Vulnerability Management documentation is accurate and regularly reviewed against Group Policy to ensure it is kept up to date.
What we’re looking for:
o Demonstrable technical support experience of one or more of the following. Microsoft Desktop / Server, UNIX/LINUX, Database, Networks, Middleware.
o Data analysis and reporting.
o Excellent communication skills.
o Excellent organisational skills.
Skills that will help you in the role:
o Enthusiastic and committed approach to the role to drive a positive difference to both existing new initiatives.
o Creation, review and update to technical documentation.
Where will you be working?
Be More at Barclays
At Barclays, each day is about being more – as a professional, and as a person. ‘Be More @ Barclays’ represents our core promise to all current and future employees. It’s the characteristic that we want to be associated with as an employer, and at the heart of every
About the company
Barclays moves, lends, invests and protects money for 48 million customers and clients worldwide.
We have over 325 years of history and expertise in banking. From our beginnings in Lombard Street, London through to the launch of the world’s first ATM and innovative mobile phone payments services, find out more about our achievements to date.
Barclays is a trading name of Barclays Bank PLC and its subsidiaries. Barclays Bank PLC is registered in England and is authorised by the Prudential Regulation Authority and regulated by the Financial Conduct Authority and the Prudential Regulation Authority. Registered in England. Registered No. 1026167. Registered office: 1 Churchill Place, London E14 5HP.