Harvey Nash IT Recruitment UK
Vulnerability Management Senior Analyst- £60,000- £70,000- Hybrid- London Company: The Guardian Location: London, Kings Cross Harvey Nash are proud to be working as a retained recruitment partner for The Guardian, a trusted and globally recognised news organisation, at the forefront of digital journalism. We are seeking a Vulnerability Management Senior Analyst to join our Information Security team. If you are passionate about identifying and mitigating security vulnerabilities and have a strong background in vulnerability management, we want to hear from you. Key Responsibilities: As a Vulnerability Management Senior Analyst, you will play a pivotal role in shaping and executing key processes and technology for vulnerability scanning, management, and remediation. Your responsibilities include: * Designing, maintaining, and continuously improving end-to-end vulnerability management processes within the Information Security team. * Reviewing and validating vulnerabilities using available data sources and tools, and identifying new data sources as needed. * Creating and maintaining workflows, reports, configurations, and dashboards on vulnerability management platforms. Managing platform releases, upgrades, and enhancements. * Collaborating with Security Operations Centre colleagues to respond to zero-day vulnerabilities and severe threats affecting our system landscape Researching and evaluating how current and new vulnerabilities can be exploited in our system landscape to assist in prioritizing remediation actions. * Supporting technology teams and asset owners with the remediation of identified vulnerabilities and providing advice on appropriate mitigation solutions. * Providing regular analysis and reporting against KPIs on vulnerability management. * Advocating for information security across the organization and fostering a culture of risk awareness and mitigation. * Approving exceptions related to deferrals and false positive requests. Key Skills: To excel in this role, you should have: * A strong understanding of security threats and compromise methods. * Excellent communication skills, both written and verbal, and the ability to collaborate with colleagues across the business. * Strong analytical abilities to understand data flows, perform assessments, and draw conclusions. * Experience in vulnerability management. * Operational level experience in domains such as vulnerability scanning, vulnerability management, and vulnerability remediation. Knowledge and Experience: Essential: * Strong understanding of the vulnerability landscape, security threats, and compromise methods. * Previous experience working as a vulnerability analyst. * Experience in configuring, maintaining, and operating security toolsets, such as SIEM, SOAR, and/or vulnerability management tools. Desirable: * Professional security certifications such as CEH (Certified Ethical Hacker), CPT (Certified Penetration Tester), CEPT (Certified Expert Penetration Tester), CISSP (Certified Information Systems Security Professional), CISM (Certified Information Security Manager). * A bachelor's degree in Information Security, Computer Science, Engineering, Technology, or a similar degree. The Guardian is an equal opportunity employer. We are committed to creating a diverse and inclusive workplace and welcome all qualified applicants regardless of race, colour, religion, gender, gender identity or expression, sexual orientation, national origin, genetics, disability, age If the above sounds like something you would be interested in pursuing please apply via this posting and or E-mail (see below) for more information.
Vulnerability Management Senior Analyst- £60,000- £70,000- Hybrid- London Company: The Guardian Location: London, Kings Cross Harvey Nash are proud to be working as a retained recruitment partner for The Guardian, a trusted and globally recognised news organisation, at the forefront of digital journalism. We are seeking a Vulnerability Management Senior Analyst to join our Information Security team. If you are passionate about identifying and mitigating security vulnerabilities and have a strong background in vulnerability management, we want to hear from you. Key Responsibilities: As a Vulnerability Management Senior Analyst, you will play a pivotal role in shaping and executing key processes and technology for vulnerability scanning, management, and remediation. Your responsibilities include: * Designing, maintaining, and continuously improving end-to-end vulnerability management processes within the Information Security team. * Reviewing and validating vulnerabilities using available data sources and tools, and identifying new data sources as needed. * Creating and maintaining workflows, reports, configurations, and dashboards on vulnerability management platforms. Managing platform releases, upgrades, and enhancements. * Collaborating with Security Operations Centre colleagues to respond to zero-day vulnerabilities and severe threats affecting our system landscape Researching and evaluating how current and new vulnerabilities can be exploited in our system landscape to assist in prioritizing remediation actions. * Supporting technology teams and asset owners with the remediation of identified vulnerabilities and providing advice on appropriate mitigation solutions. * Providing regular analysis and reporting against KPIs on vulnerability management. * Advocating for information security across the organization and fostering a culture of risk awareness and mitigation. * Approving exceptions related to deferrals and false positive requests. Key Skills: To excel in this role, you should have: * A strong understanding of security threats and compromise methods. * Excellent communication skills, both written and verbal, and the ability to collaborate with colleagues across the business. * Strong analytical abilities to understand data flows, perform assessments, and draw conclusions. * Experience in vulnerability management. * Operational level experience in domains such as vulnerability scanning, vulnerability management, and vulnerability remediation. Knowledge and Experience: Essential: * Strong understanding of the vulnerability landscape, security threats, and compromise methods. * Previous experience working as a vulnerability analyst. * Experience in configuring, maintaining, and operating security toolsets, such as SIEM, SOAR, and/or vulnerability management tools. Desirable: * Professional security certifications such as CEH (Certified Ethical Hacker), CPT (Certified Penetration Tester), CEPT (Certified Expert Penetration Tester), CISSP (Certified Information Systems Security Professional), CISM (Certified Information Security Manager). * A bachelor's degree in Information Security, Computer Science, Engineering, Technology, or a similar degree. The Guardian is an equal opportunity employer. We are committed to creating a diverse and inclusive workplace and welcome all qualified applicants regardless of race, colour, religion, gender, gender identity or expression, sexual orientation, national origin, genetics, disability, age If the above sounds like something you would be interested in pursuing please apply via this posting and or E-mail (see below) for more information.
Aston Carter
Peterlee, County Durham
Category Buyer Contract length: 2 years contract with high potential transitioning to permanent Working setting: Hybrid - 3 days/week on-site Working hours: Mon-Thu (full business hours), Friday (half day) Location: Peterlee (25% UK/EU travel) Role Responsibility: Sourcing strategy, cost management, contract negotiation, supplier relationships, assurance of supply, supplier risk sensing, audits processes, etc. Job Role Expectations | Functional/Technical Skills | Soft Skills: Sourcing - Responsible and accountable for directing the development, and/or communication and implementation of a site, regional, or worldwide sourcing strategy. Responsible for managing policies, agreements, source catalogs, and special purchasing programs, and supporting specific Product line(s) NPI programs. Accountable for the liaison with the corresponding Category/Platform based Buyers. Leadership - Provides leadership for sourcing, logistics and resource management decisions. Lead continuous improvement initiatives and purchasing new product introduction activities within Purchasing. Demonstrates leadership in recognizing the potential for cost and inventory reductions, and quality improvement; as well as responsibility for soundness of business proposals and risk assessment. Mentors and develops other Buyers, SQEs, and Purchasing Analysts (where assigned). Promotes the highest level of professionalism and business ethics. Strategy - Tools and Techniques of 6 Sigma will be required and may be attained by Black Belt, Green Belt, Project Sponsor, or other 6 Sigma related training programs. Develops and leads 6 Sigma Strategic Sourcing teams to fully understand the current performance of the supply base, evaluate strategic options, decide a course of action, and begin implementation. Must also have strong knowledge of the product, NPI, Manufacturing, Supply Chain and Category Strategies. Customers - Manages suppliers delivering into many company facilities. Typical internal customers include contacts at all organization levels, worldwide. Solves problems by determining the best course of action, within departmental guidelines, from many existing solutions. The role identifies and satisfies Critical Customer Requirements (CCR), managing Product expectations for Global Purchasing to deliver benefits required to sustain a competitive advantage. Supplier Development - Collaborates with Supplier Development Engineers to ensure continuous improvement in QCLDM with key suppliers. Builds and fosters mutually beneficial supplier relationships at all organizational levels. Analytical (descriptive), problem solving, and project leadership expertise. Effective communicator/ability to build effective relationships. Understanding of Lean Manufacturing principles as applied by the company and our suppliers. Negotiation skills, able to interpret, analyze and negotiate contractual cost elements. Business Acumen - P&L understanding/micro & macro economics. Growth/entrepreneur mindset Key Experiences : Purchasing, logistics, manufacturing, and/or engineering Category team or product team experience Project leadership experience Understanding of Lean Manufacturing principles and Continuous Process Improvement (CPI) Understanding of QCLDM Knowledge of purchasing strategy and supplier sourcing strategies Software experience using MS Office, SAP (nice to have),etc. Minimum 3 years of Procurement experience Future Experiences : Develop, communicate and implement worldwide sourcing strategy Deliver a lean, responsive and resilient material and services flow Meet defined response time, cost, quality and lean targets enabling optimal and efficient facility operations Set the vision for global supply network solutions to meet enterprise or business unit needs Collaborate with senior stakeholders Candidate must be based in UK, there is no relocation package or visa sponsorship offered. Job Title: Category Buyer Location: Peterlee, UK Job Type: Contract Trading as Aston Carter. Allegis Group Limited, Bracknell, RG12 1RT, United Kingdom. No Allegis Group Limited operates as an Employment Business and Employment Agency as set out in the Conduct of Employment Agencies and Employment Businesses Regulations 2003. Aston Carter is a company within the Allegis Group network of companies (collectively referred to as "Allegis Group"). Aerotek, Aston Carter, EASi, Talentis Solutions, TEKsystems, Stamford Consultants and The Stamford Group are Allegis Group brands. If you apply, your personal data will be processed as described in the Allegis Group Online Privacy Notice available on the website. To access our Online Privacy Notice, which explains what information we may collect, use, share, and store about you, and describes your rights and choices about this, please go to the website. We are part of a global network of companies and as a result, the personal data you provide will be shared within Allegis Group and transferred and processed outside the UK, Switzerland and European Economic Area subject to the protections described in the Allegis Group Online Privacy Notice. We store personal data in the UK, EEA, Switzerland and the USA. If you would like to exercise your privacy rights, please visit the "Contacting Us" section of our Online Privacy Notice for details on how to contact us. To protect your privacy and security, we may take steps to verify your identity, such as a password and user ID if there is an account associated with your request, or identifying information such as your address or date of birth, before proceeding with your request. If you are resident in the UK, EEA or Switzerland, we will process any access request you make in accordance with our commitments under the UK Data Protection Act, EU-U.S. Privacy Shield or the Swiss-U.S. Privacy Shield.
Category Buyer Contract length: 2 years contract with high potential transitioning to permanent Working setting: Hybrid - 3 days/week on-site Working hours: Mon-Thu (full business hours), Friday (half day) Location: Peterlee (25% UK/EU travel) Role Responsibility: Sourcing strategy, cost management, contract negotiation, supplier relationships, assurance of supply, supplier risk sensing, audits processes, etc. Job Role Expectations | Functional/Technical Skills | Soft Skills: Sourcing - Responsible and accountable for directing the development, and/or communication and implementation of a site, regional, or worldwide sourcing strategy. Responsible for managing policies, agreements, source catalogs, and special purchasing programs, and supporting specific Product line(s) NPI programs. Accountable for the liaison with the corresponding Category/Platform based Buyers. Leadership - Provides leadership for sourcing, logistics and resource management decisions. Lead continuous improvement initiatives and purchasing new product introduction activities within Purchasing. Demonstrates leadership in recognizing the potential for cost and inventory reductions, and quality improvement; as well as responsibility for soundness of business proposals and risk assessment. Mentors and develops other Buyers, SQEs, and Purchasing Analysts (where assigned). Promotes the highest level of professionalism and business ethics. Strategy - Tools and Techniques of 6 Sigma will be required and may be attained by Black Belt, Green Belt, Project Sponsor, or other 6 Sigma related training programs. Develops and leads 6 Sigma Strategic Sourcing teams to fully understand the current performance of the supply base, evaluate strategic options, decide a course of action, and begin implementation. Must also have strong knowledge of the product, NPI, Manufacturing, Supply Chain and Category Strategies. Customers - Manages suppliers delivering into many company facilities. Typical internal customers include contacts at all organization levels, worldwide. Solves problems by determining the best course of action, within departmental guidelines, from many existing solutions. The role identifies and satisfies Critical Customer Requirements (CCR), managing Product expectations for Global Purchasing to deliver benefits required to sustain a competitive advantage. Supplier Development - Collaborates with Supplier Development Engineers to ensure continuous improvement in QCLDM with key suppliers. Builds and fosters mutually beneficial supplier relationships at all organizational levels. Analytical (descriptive), problem solving, and project leadership expertise. Effective communicator/ability to build effective relationships. Understanding of Lean Manufacturing principles as applied by the company and our suppliers. Negotiation skills, able to interpret, analyze and negotiate contractual cost elements. Business Acumen - P&L understanding/micro & macro economics. Growth/entrepreneur mindset Key Experiences : Purchasing, logistics, manufacturing, and/or engineering Category team or product team experience Project leadership experience Understanding of Lean Manufacturing principles and Continuous Process Improvement (CPI) Understanding of QCLDM Knowledge of purchasing strategy and supplier sourcing strategies Software experience using MS Office, SAP (nice to have),etc. Minimum 3 years of Procurement experience Future Experiences : Develop, communicate and implement worldwide sourcing strategy Deliver a lean, responsive and resilient material and services flow Meet defined response time, cost, quality and lean targets enabling optimal and efficient facility operations Set the vision for global supply network solutions to meet enterprise or business unit needs Collaborate with senior stakeholders Candidate must be based in UK, there is no relocation package or visa sponsorship offered. Job Title: Category Buyer Location: Peterlee, UK Job Type: Contract Trading as Aston Carter. Allegis Group Limited, Bracknell, RG12 1RT, United Kingdom. No Allegis Group Limited operates as an Employment Business and Employment Agency as set out in the Conduct of Employment Agencies and Employment Businesses Regulations 2003. Aston Carter is a company within the Allegis Group network of companies (collectively referred to as "Allegis Group"). Aerotek, Aston Carter, EASi, Talentis Solutions, TEKsystems, Stamford Consultants and The Stamford Group are Allegis Group brands. If you apply, your personal data will be processed as described in the Allegis Group Online Privacy Notice available on the website. To access our Online Privacy Notice, which explains what information we may collect, use, share, and store about you, and describes your rights and choices about this, please go to the website. We are part of a global network of companies and as a result, the personal data you provide will be shared within Allegis Group and transferred and processed outside the UK, Switzerland and European Economic Area subject to the protections described in the Allegis Group Online Privacy Notice. We store personal data in the UK, EEA, Switzerland and the USA. If you would like to exercise your privacy rights, please visit the "Contacting Us" section of our Online Privacy Notice for details on how to contact us. To protect your privacy and security, we may take steps to verify your identity, such as a password and user ID if there is an account associated with your request, or identifying information such as your address or date of birth, before proceeding with your request. If you are resident in the UK, EEA or Switzerland, we will process any access request you make in accordance with our commitments under the UK Data Protection Act, EU-U.S. Privacy Shield or the Swiss-U.S. Privacy Shield.