Our cloud operations team is continuously expanding in terms of services and technology.  We are looking for a Vulnerability Management Lead, you will play a crucial role in ensuring the security and stability of our technology infrastructure across the whole company. You will be tasked
to lead a team responsible for identifying, assessing, and mitigating vulnerabilities across our systems, networks, and applications working 3 shifts.  The line management will be Manila based but there will be a matrix line management team based in the UK. This team is a new startup team working with the Cloud Operations team extensively in managing the various infrastructure of WTW.
 

The Role

The following are key responsibilities we are looking for BUT we are keen to recruit talented individuals who have
a learning agility and looking to develop their career further.

Leadership

Be able to communicate up to Senior Management levels necessary updates, issues, reports, metrices etc. Manage team workload  and assignment, assure quality and timeliness of deliverables. Determine root cause analysis, resolve and communicate solutions to customers. Develop competency of the ServiceNow product and build knowledge so functionality can be used to
manage incidents and report performance. Assist / Manage health of the service queue and assure all deliverables are performed with good quality Manage, coach and mentor team members on all aspects of the service. Build supporting training
material/knowledge transfer to ensure the right level of competency is achieved to support the
applications/client’s expectations and their personal growth. Responsible for ensuring the team are meeting performance measures, adhering to SLA’s and agreed
standards/processes that always provide excellent customer service. Schedule shift patterns/working times and provide backup support to meet the needs of the
business/client expectations. Provide regular reporting of performance, KPI’s and specific SLA’s or trends to stakeholders on a regular
basis.

Team Responsibilities

Vulnerability Management: Lead the vulnerability management program by regularly conducting vulnerability assessments, scans, and penetration tests across our IT landscape. Collaborate with cross-functional teams to identify and prioritize vulnerabilities based on their severity and potential impact. Implement industry best practices for vulnerability remediation and track the progress of remediation efforts. Threat Intelligence: Stay current with emerging cybersecurity threats and vulnerabilities through continuous monitoring of industry trends, threat feeds, and security advisories. Analyze threat intelligence data to anticipate potential risks and proactively address vulnerabilities before they are exploited. Risk Assessment and Reporting: Conduct risk assessments to evaluate the potential impact of identified vulnerabilities and recommend appropriate risk mitigation strategies. Prepare and present comprehensive vulnerability assessment reports to technical and non-technical stakeholders, including senior management. Collaboration and Training: Work closely with IT teams to provide guidance and recommendations for vulnerability remediation. Collaborate with system administrators, developers, and other relevant stakeholders to ensure secure software development practices. Conduct training and awareness sessions for employees on cybersecurity best practices and the importance of vulnerability management. Compliance and Standards: Ensure compliance with relevant industry standards, regulations, and frameworks related to vulnerability management (e.g., ISO 27001, SOC, SOX).

The Requirements

Bachelor's degree in Computer Science, Information Security, or a related field.Professional certifications such as CISSP, CISM, CEH, or equivalent.Proven experience (4+ years) in vulnerability management, penetration testing, or related roles.Strong knowledge of common cybersecurity vulnerabilities, attack vectors, and risk assessment methodologies.Proficiency in using vulnerability scanning tools and platformsExcellent communication skills with the ability to convey technical information to both technical and non-technical audiences.Strong analytical and problem-solving abilities.Excellent written and oral English communication skillsExperience in working in multiple time-zones/countries and rotating shift systems to align with business demands.Communicate and share knowledge with wider team so there is continuous learning and knowledge transfer across the team

WTW is an Equal Opportunity Employer