Threat And Vulnerability Management Analyst

About Us:

Ekco is on a journey to becoming a leading force in the Global tech landscape! We accelerate our customers digital ambitions security and intelligently through our focus on People Excellence, Customer Closeness, Speed of Execution, and Innovation & Thought leadership.

We have over 900 highly talented and supportive colleagues (and counting) across a number of locations in the UK, Netherlands, Ireland, Malaysia and South Africa!

About the Role:

We have an opening for a Threat & Vulnerability Management Analyst to join our team. You will be responsible for maintaining all vulnerability and threat management solutions within the SOC, ensuring that all assets and systems are scanned for vulnerabilities. The successful candidate will act as a trusted advisor to our customers, providing valuable insights on vulnerability treatment strategy, and expert guidance on Vulnerability Management best practices. Responsibilities include but are not limited to:

• Providing in-depth analysis of vulnerabilities and impacts to key stakeholders.
• Assist stakeholders with prioritization of vulnerabilities and remediation advice to reduce the attack surface.
• Integrate with the SOC, advising on the latest vulnerabilities, and exploitation techniques.
• Onboarding of customers to the VM platform and managing the customer through their Vulnerability Management service lifecycle.
• Establish positive relationships engaging with technical teams to deliver regular vulnerability reporting and mitigation advisory and seek continuous improvement of TVM process.
• Facilitate regular meetings with customers and demonstrate value in the TVM Service.
• Creating and customising reports and dashboards for customers, specific to their environment.
• Developing automation workflows that reduce manual workload and focus on efficiency.
• Gaining a deep understanding of the customer technology stack and ensure that appropriate solutions are in place to ensure full coverage of the customer estate e.g. (Cloud Agents, Scanner Appliance, OT solutions etc.).
• Keeping abreast with developing security trends and vulnerabilities, proactively engaging with customers to identify new threats within their environment.
• Provide detailed documentation and development of playbooks to improve TVM response and speed of identification.
• Research and deliver security advisories for internal and external stakeholders.
• Provide SME oversight and support to projects to ensure all Vulnerability Management process criteria is met and appropriate assets are captured by TVM tooling.
• Analysing and assessing security incidents and advancing to client resources or collaborating with internal teams for additional assistance
• Creating and maintaining custom scan profiles, configuration, schedules, and user management.

You will need to have:

• A Bachelor’s degree or equivalent in Computer Science, Computer Engineering, Electrical Engineering, Network Security, Information Security, Information Technology, or Mathematics (or equivalent work experience)
• Prior experience with Vulnerability Management tools e.g. Qualys, Nessus, Rapid7 InsightVM, OpenVAS. etc.
• Proficient knowledge of vulnerabilities, exploits, network attacks, attacker methodologies, offensive attack techniques, MITRE ATT&CK framework.
• Excellent client management skills, ensuring that customer experience is always the highest priority.
• Theoretical or practical knowledge in the following areas:
  • Unix, Linux, Windows, etc. operating systems
  • Well-known networking protocols and services (FTP, HTTP, SSH, SMB, LDAP, etc.)
  • Cloud Technologies (Azure, AWS, OCI etc.)
• The ability to adjust and adapt to changing priorities in a dynamic environment
• A pro-active approach to addressing issues and requests and the ability to multi task and use initiative.
• The ability to learn new technology and concepts quickly
• Great organisational skills and attention to detail
• Excellent written and verbal communication skills. You should be able to communicate technical details clearly.
• Keen problem solving/ troubleshooting skills
• A can-do attitude

Bonus points if you have any of the following:

• Prior experience in penetration testing
• Vulnerability management specific certifications
• Experience with automating vulnerability workflows using API integration
• Experience using OSINT tools and techniques
• Expertise in securing operating systems and network infrastructure.
• Understanding of encryption fundamentals (symmetric/asymmetric, ECB/CBC operations, SSL/TLS, AES, etc.)

Benefits/ Perks:

• ️ Time off - 25 days leave + public holidays
• x1 day Birthday leave per year
• Pension Scheme
  
• Employee Assistance Programme (EAP) - access to dedicated mental health, emotional wellbeing and general advice
• ️ EkcOlympics - a global activity for fun!
• Learning & development - Unlimited access to learning platforms

Why Ekco:

• ️ Microsoft’s 2023 Rising Star Security Partner of the year
• VMware & Veeam top partner status
• Ranked as one of the fastest growing technology company in the Deloitte Fast50 Awards
• Ekco are committed to cultivating an environment that promotes diversity, equality, inclusion and belonging
• We recognise the value of internal mobility and encourage opportunities for internal development & progression
• ✨ Flexible working with a family friendly focus are at the core of our company values