Vulnerability Management Engineering Manager

  • Job Reference: 17501
  • Date Posted: 22 February 2021
  • Employer: National Grid
  • Website: https://careers.nationalgrid.com
  • Location: Warwick (CV34 6DA), United Kingdom
  • Salary: On Application
  • Sector: Information Technology (IT)
  • Job Type: Permanent
  • Duration: Undefined
  • Work Hours: Full Time

Job Description

About the role

 

Vulnerability Management Engineering Manager, Permanent


Due to the continued success in maturing the Vulnerability Management function, National Grid are recruiting for an experienced cyber security leader with an impressive blend of technical and managerial experience to take things to the next level.

 

Cyber Security Services are responsible for the planning, design, implementation and ongoing support of effective cyber solutions. Our vision is to be recognised as a world leading Security function in the energy sector and a trusted partner across National Grid businesses. Working alongside engineering, the Product Team drive and deliver the long-term product vision, strategy, and continually align the products with the organisation’s needs. 

 

The Vulnerability Management function is part of Cyber Engineering, and supports the Security Team’s global operations by identifying and reducing security vulnerabilities and control issues right across the National Grid Enterprise, Critical National Infrastructure (CNI) and Operational Technology networks. 


Vulnerability Management is responsible for operating a blend of security controls including penetration testing through an expert in-house team and supplier consulting services, intelligence-driven Red Teaming to exercise resilience to real-world threats, Collaborative purple team exercises to directly improve control effectiveness and help inform defenders, through to the design and operation of an enterprise-scale vulnerability discovery program focused on automation.
 

About you

 

As a leader in Vulnerability Management you will drive a programme of technology and capability improvements, developed in partnership with Product Management, and operate a security operations function to provide assurance and assessment capability across US and UK territories. You will be responsible for leading and operating a team of highly technical individuals, coaching and supporting outstanding performance and leading by example to enable introduction of cutting edge technical cyber solutions and approaches.

 

We are looking for an experienced Vulnerability Management leader with excellent cyber security knowledge, experience of working alongside engineering teams, and high impact leadership skills. This is a great opportunity to help build a high performing team in a critical infrastructure industry.

 

Technically, you will have in-depth knowledge and understanding of Vulnerability Management, including authenticated and unauthenticated network vulnerability scanning, toolsets and automation thereof; application scanning methods including DAST, SAST and OS Dependency verification.


As well as this excellent knowledge of Penetration Testing, Red Teaming and Application Security is key, including high level test methodologies, principles for scoping of engagements, basic threat modelling, utilisation of Mitre ATT&CK for classifying tactics and techniques, Secure Development Lifecycle principles, CI/CD integration of security controls.

 

About us

 

National Grid touches the lives of almost everyone in the UK, with an energy network that stretches across the Atlantic. We’re an international team, and our work underpins the lives of millions of people. Feet forwards, head up, and eyes bright, we’re working hard to create value for people today – and shape the future of energy tomorrow.


 
In the UK, we don’t generate or sell energy – we join the dots to get energy from A to B. From making a cup of tea in the morning, to keeping the lights on in hospitals, our electricity network puts power in the hands of people. Without it, the world as we know it would grind to a halt.


 
The world of energy is changing beyond recognition. Working at National Grid, you won’t just be touching the lives of almost everyone in the UK – you’ll be shaping the way we use and consume energy for generations to come.


 
Our values and principles


 
At National Grid, through listening to what our customers need, every day we do the right thing and find a better way.


 
As a National Grid employee, you’ll treat our customers as a priority, taking time to listen and work with them to help give them the best experience we possibly can. You’ll need to be proactive and flexible in your approach and continually look for ways to exceed their expectations – sometimes in unexpected and helpful ways. You’ll provide accessible information when our customers need it and make things simple by using your expertise to guide them. Above all, you’ll follow through on your promises to deliver value, drive efficiency and give them a great customer experience.


 
We offer inclusion and diversity training for everyone here at National Grid, with a view to building an inclusive working environment and developing all our employees. Training opportunities range from unconscious bias and reverse mentoring to targeted training initiatives which are tailored to support our diverse and innovative work force.
 

What you'll get

 

As well as a competitive salary, you will receive a car allowance, and a bonus of up to 20% of your salary for stretch performance, and a contributory pension scheme where we will double your contribution to a maximum company contribution of 12%. 


You will also have access to a number of flexible benefits such as a share incentive plan, a salary sacrifice technology scheme, Private Medical Insurance for you, your partner and your family available through YouFlex programme, support via the employee assistance line and matched charity giving to name a few.