Information Security - Threat and Vulnerability Specialist

Southern Water, Salvington, Worthing

Information Security - Threat and Vulnerability Specialist

Salary not available. View on company website.

Southern Water, Salvington, Worthing

  • Full time
  • Permanent
  • Onsite working

Posted today, 24 Nov | Get your application in now to be one of the first to apply.

Closing date: Closing date not specified

job Ref: 1cbd999267704868873f28ff48e1c726

Full Job Description

This role will be working closely with our CISO in our Durrington offices, on a hybrid basis (flexibility to be on site as required is essential), you will be working both reactively and proactively while Southern Water goes through a huge Digital Transformation, where we are introducing new technology often. You will be working with cutting edge practices, and some of the best tools on the market with full support from the top down. On a day-to-day basis, you will be :

  • Scoping and organising Pen Tests
  • Managing scheduled and Ad Hoc scanning and other testing
  • Converting findings into actions and tracking resolutions
  • Using comprehensive Threat Intelligence feeds to map environments and take necessary actions
  • Threat hunting
  • Document and update, as appropriate information security policies, standards and processes : ensuring they stay up to date
  • Supporting response to incidents
  • Supporting the ongoing refinement of CMDB in IT and OT environments for mapping of Threat Intelligence
  • Working closely with physical and personnel security, particularly in connection with CNI
  • Responding to regulator queries
  • Liaising with NCSC and other bodies
  • Shaping and refining the Threat and Vulnerability Management approach and strategy
  • Working with the project community to educate and plan testing, scanning and other considerations
  • Advising and supporting executive leadership and other colleagues

    The most important thing is the right attitude; we want someone who can work flexibly, and be open to learn and grow with this role.
  • We are not looking for any specific qualifications for this position, however if you have got proven history of learning and growing; investing in yourself, that's going to give you a strong advantage. You will have experience in :
  • Threat and vulnerability management in a complex organisation
  • Monitoring threat levels and assessing potential impact
  • Reviewing threat reports and making decisions on the best course of action; following through the issue through to resolution
  • Prioritising threats and taking action accordingly
  • You will also have :
  • Expertise in industry standard scanning tools and Threat Intelligence feeds
  • Knowledge of ISO27001 / ISO27002
  • Excellent documentation and reporting skills
  • Attention to detail
  • Ability to work effectively within a team
  • Good communication skills
  • Ability to manage situations of complexity with positive outcomes
  • Ability to clearly communicate actionable insights and complex findings
  • Positive problem-solving can-do' attitude
  • Innovative ways of working
  • Ability to translate technically complex findings into layman's terms
  • An understanding of the differences between Corporate and ICS / OT environments
  • Preferable :
  • Familiarity with NIS Regulations
  • Familiarity with common ICS components
  • Experience of Critical National Infrastructure
  • Package This role will be full time Monday to Friday with a hybrid approach to working between our Durrington (Worthing) office and home., All applicants must be eligible to live and work in the UK. You will need to provide evidence of eligibility (e.g. a passport or long birth certificate and proof of NI) and current proof of address (dated within the last 3 months), will be required as part of the recruitment process.

    We are offering a salary of up to £75,000 per annum depending on skills and experience as well as other benefits including :
  • Generous pension up to 11% company contribution
  • 25 days annual leave
  • Life assurance equal to 4x salary
  • Salary sacrifice electric car scheme (after 6 months service)
  • Health Cash Plan
  • Full funded eye tests
  • Two paid volunteering days a year
  • Occupational health service
  • Discounts with over 800 popular retailers
  • Digital GP service
  • Study support may be available for job-related qualifications
  • Competitive maternity leave and flexible return to work options
  • Cycle to work scheme
  • Join our InfoSec team and see how far your career could progress with a company committed to career progression, training and development opportunities, our customers and the environment. Does this opportunity excite you but you're not 100% sure if you meet all the requirements for the role? Or are you concerned that normal' office hours aren't possible given your personal circumstances? Whilst we can't accommodate every flexible working request, we'll try to find a practical solution. So why not engage with us and find out more about this role? If this role isn't quite what you're looking for but are keen to be contacted about opportunities at Southern Water, you can register your details here : Introduce Yourself (myworkdaysite.com) Our customers are at the heart of everything we do, because delivering water for life is our core purpose. To achieve this, we need 24 / 7 support in place to resolve incidents quickly and efficiently. All our employees understand the importance of out-of-hours incident support because when problems appear, fixing them is our top priority. That's why our people join together and support when and however needed to make sure our customers get the service they deserve.