Vulnerability and Risk Management Specialist

A bit about us 🚀

Gamma is a leading supplier of Unified Communications as a Service (UCaaS): we provide voice, data and mobile products and services to the UK, German, Spanish and Benelux business markets.

Gamma is expanding its UCaaS presence in Europe with a family of businesses focusing on digital automation, delivering Gamma-powered services to SME customers via a network of channel partners in Germany, Spain, and the Benelux region.

Who are we looking for? 👀

Reporting to the Head of Security Managed Services, we are seeking a driven individual with experience in Vulnerability Management and proficiency in deploying related solutions. The ideal candidate will understand security principles with excellent problem-solving skills, and a proactive approach to identifying and mitigating security risks.

The Vulnerability Management Specialist will liaise with customers on a consultancy basis, assisting in the design, evaluation and adoption of solutions for communicated problems. The applicant will be responsible in helping drive the company’s growth within the Vulnerability Management space working closely with our customers to leverage their Vulnerability Management toolset, whilst maintaining a clear service definition.

Working with the wider Gamma Secure team, the applicant will be involved in the adoption of new technologies within the Vulnerability management space, with an initial focus of building the managed service proposition, which will include the identification of vulnerabilities through to remediation and mitigation plans. The applicant will also be required to provide support & guidance for team members when adopting new solutions.

The applicant should have experience in the deployment and maintenance of Tenable based products, such as Tenable One (Standard or Enterprise), Nessus etc. and be in a position to adopt existing Vulnerability Management tooling from other vendors with the intent to migrate to a Tenable toolset.

The applicant will also have a core requirement of maintaining several active vendors lead certification and training paths to ensure Gamma can maintain partner status of a specific level. This may require the consultant upskills other members of the Gamma team to enable them to take certifications as well.

What will you be doing day-to-day? ✨

• Design and Implement Vulnerability Management Solutions: Develop and implement comprehensive security solutions leveraging Tenable technologies, including but not limited to Tenable VM, Tenable One, Tenable SecurityCenter and Nessus.
• Manage Existing Vulnerability Management Solutions: Manage existing customer instances of Rapid7 and Qualys alongside other tooling higher up the chain, such as Nucleus Security, Axonius or similar platforms.
• Security Architecture Development: Assist in the design, review, and enhance security architecture to ensure it aligns with industry best practices, regulatory requirements, and organizational goals.
• Customer Engagements: Participate in ensuring customer requirements are met throughout the lifecycle of a project; identification, consultation, design and delivery.
• Security Development: Oversee key responsibilities within the vulnerability management Space, identification assessment and prioritization of vulnerabilities. Developing a blueprint for implementing remediation to reduce our customer risk.
• Incident Response and Threat Management: Working with the Managed SOC and Operational teams, develop and maintain incident response plans. Lead incident response activities, including detection, investigation, containment, and recovery. Stay updated on emerging threats and security trends.
• Operational Capabilities: Development of the operational capabilities of the vulnerability managed service. Identifying the appropriate tooling to provide best of breed services to our customers, with the intent of building in automation where possible to streamline operational processes.  
• Collaboration and Communication: Collaborate with cross-functional teams, including MSOC, development, and business units, to integrate security requirements into projects and initiatives. Communicate security-related concepts and requirements effectively to technical and non-technical stakeholders. Whilst ensuring handovers to relevant support teams are successfully completed.
• Understanding of Competitive Security Technologies: Fundamental understanding of competing security solutions, to guide customer conversations and deployments.
• Governance: Assist in the creation statement of works and RFI, RFPs and Tender responses.

What you’ll need 💻

• Bachelor's degree in Computer Science, Information Security, or related field. Advanced degree preferred.
• Several years’ experience in vulnerability management, preferably within an MSSP environment.
• Industry specific certifications; Tenable and the ability to gain Tenable guardian.
• In-depth knowledge of security principles, protocols, and technologies.
• Hands-on experience with Tenable security solutions desirable.
• Strong understanding of network security, endpoint security, identity and access management, and data protection concepts.
• Experience with security compliance frameworks (e.g., NIST, ISO 27001, GDPR).
• Excellent analytical and problem-solving skills.
• Effective communication and interpersonal skills.
• Hybrid and multi-cloud infrastructures
• Security Cleared or able to attain Security Clearance.
• Enthusiastic about the industry with the drive to stay up to date with the latest industry trends and solutions.
• A good understanding of both Microsoft Windows and Linux based operating systems.
• Teamwork and collaboration.

What do we offer? 💰

• 25 days holiday + bank holidays
• Your birthday off
• Private Medical Insurance
• Electric Vehicle (EV) scheme
• Pension plan
• Enhanced maternity and paternity leave
• Share-save scheme

A few things to note ✨

• This role will require travel to one of our office locations (Manchester) once or twice a week.
• Unfortunately, we can't offer visa sponsorship or relocation support for this role
• If you feel you could be a good fit for Gamma but do not think that you meet all the requirements, we still encourage you to apply as you could be the person that we are looking for! Gamma is an equal-opportunity employer. We care about inclusion and believe in having diverse teams where everyone can be their true authentic selves.
• We value each person and their range of backgrounds and actively encourage people from underrepresented backgrounds to apply.
• We don't discriminate based on any protected characteristics e.g., race, colour, religion, gender, gender identity or expression, sexual orientation, national origin, genetics, marital status, disability, or age.
• We are a family-friendly employer with a culture based on trust, autonomy, and flexibility so that you to create a work-life balance and enjoy working here at Gamma.

Please note we only use recruitment agencies registered on our preferred suppliers list and as such, any speculative CVs received will not be considered. Agencies cannot work on this role unless approved by Gamma's recruitment team.