IT Security Vulnerability Management (Operations)

IT Security Vulnerability Management (Operations)

Founded in 2014, Ledger is the global leader of security solutions and infrastructure for cryptocurrencies and blockchain applications, with more than 3.5 million users in 165 countries. Ledger combines hardware and software expertise to secure billions of dollars worth of almost 2,000 different crypto assets – worldwide, 15% of these assets are managed through the Ledger ecosystem. As an IT Security Vulnerability Manager you will be responsible for the operation, reporting and day‑to‑day delivery of IT Security Vulnerability Management / Patch Management services within Ledger.

Key Work Outputs and Accountabilities

• Accountability for the delivery and ongoing support and maintenance of the Vulnerability Management Suite
• Ensure out‑of‑hours support of infrastructure security technologies
• Support of project deliveries within the time frames agreed with the project to incorporate into vulnerability management operational services
• Creation and maintenance of technology documentation for support and engagement
• Contribute to a strong team ethic and spirit to deliver timely, fit‑for‑purpose security deliverables against business requirements
• Act as a specialist champion to further the direction and strategy set by the IT Security Team
• Work closely with the IT Security Senior Management Team members to continuously improve the services operated
• Act as a Vulnerability Management champion and work closely with all relevant teams ensuring timely creation and resolution of reported items. This will include scheduling work with the engineering teams for the expansion of vulnerability services and then ensuring those are incorporated into the regular operational service

Essential Qualifications, Knowledge and Experience

• Education in a relevant technical subject to at least master’s degree level (MSc Information Technology or similar)
• At least 5 years’ experience in IT Security and thereby able to demonstrate a high level of technical ability in implementation, design and review roles
• High technical knowledge of security across multiple technologies and a current understanding of their effective operation of security technologies – with particular focus on Vulnerability Management tooling
• Familiar with industry standard methods, and security practices
• Familiar with current techniques and toolsets
• Worked with industry standard processes relating to service, change management and governance, such as ITIL incident and change management, Prince, Patch Management, Data Centre processes, PCI DSS and COBIT / COSO based controls
• Broad and demonstrable experience of working with a diverse set of stakeholders, applying technology capability for business benefit