Proactive Attack Surface Leader (ASM, BAS)

Job Description

Purpose of the role

To keep our customers, clients, and colleagues safe by identifying cyber‑vulnerabilities across the Bank, using a risk‑based approach to prioritise them, and to drive effective remediation activity.

Accountabilities

• Allocation of the correct risk rating and remediation prioritisation to a vulnerability based on industry standards for assessment, available threat intelligence concerning exploitation, the reachability of the host (or asset) and the value of the service(s) running on the impacted host.


• Development of vulnerability management operating model, policies and procedures to ensure consistency in vulnerability identification, remediation and reporting. Element owner of the Vulnerability Management Standard including Issues Management and Regulatory alignment.


• Communication of vulnerabilities to relevant parties including senior stakeholders, vendors, externa...