Threat and Vulnerability Specialist

Posted 23 May 2025
Salary Grade 6, £33,482 - £37,174 per annum
End date 27 June 2025
LocationGlasgow
Job Type Management Professional & Administrative
Reference171553
Expiry 27 June 2025 at 23:45

Job description

Job Purpose

 

The Threat and Vulnerability Specialist is responsible for supporting and delivering the operation of the vulnerability management function. The incumbent will utilise vulnerability management tools and techniques to co-ordinate, categorise and prepare vulnerability remediation plans and present metrics / KPIs to senior stakeholders. The role will also analyse threat data from multiple sources to enrich vulnerability information and highlight emerging threat patterns. It will also  support the development of technologies, policies and procedures to build a high performing vulnerability management function.

 

Main Duties and Responsibilities

1. Monitor threats intelligence feeds from multiple sources identifying emerging trends or patterns and proactively exercising considerable initiative and judgment to  recommend mitigations.

2. Manage vulnerability scanning (scheduling, configuration) and ensuring all assets are  compliant with Vulnerability Policy.

3. Develop and continually improve Vulnerability Policy and strategy and innovate new

approaches to embed these institutionally.

4 Operate technical security infrastructure (Vulnerability Management, End-point Recovery) and ensure control effectiveness.

5. Collaborate with technology and business colleagues to embed vulnerability technologies throughout the University of Glasgow.

6. In-conjunction with institutional peers, act as a subject matter expert to deliver threat reporting and agree technical remediation plans.

7. Work closely in collaboration with IT & peers / stakeholders to plan and deliver vulnerability remediation based on risk assessment and business risk profile.

8. Create and deliver usable metrics which visualise the overall vulnerability and risk trend as well as overall vulnerability management progress.

9.Troubleshoot and undertaken detailed analysis into complex technical problems, including issues with the design and operation of technical controls.

10. Keep up to date with developments in vulnerability research and technical areas. Utilise specialist knowledge to contribute to overall vulnerability strategy.

 

Knowledge, Qualifications, Skills and Experience

 

Knowledge/Qualifications

 

Essential:

A1 Ability to demonstrate the competencies required to undertake the duties associated with this level of post having acquired the necessary knowledge and skills through personal development and progression in a similar related role(s) OR

Scottish Credit and Qualification Framework level 8 (Scottish Vocational Qualification level 4), Higher National Diploma) or equivalent, and experience of personal development in a similar role.

A2 Comprehensive specialised knowledge of relevant security tools, processes, and techniques to ensure compliance with University procedures, regulations and legislation.

A3 Knowledge of best practice techniques for information technology systems.

 

Desirable:

B1 Accreditation in Cyber Security (CISSP, CISM, OSCP) or related disciples.

B2 Knowledge of managing support tickets.

 

Skills

 

Essential:

C1 Ability to demonstrate personal initiative, self-motivation, judgement, and well-developed technical and problem-solving capabilities, working logically through complex problems, in order to devise, develop and innovate new working procedures.

C2 Ability to assess priorities and manage own workload including the skill of knowing when to involve others with specialist skills or more experience.

C3 Strong Interpersonal skills: with ability to communicate and liaise effectively with other technical specialists, business stakeholders.

C4 A careful approach to work with particular attention to detail and high standards of accuracy.

C5 High levels of numeracy and analytical capability used to produce clear and concise assessments of technology matters, explaining technical subject matter to a non-technical audience.

C6 Ability to work without direct supervision to analyse and solve problems independently, in a time-pressured environment.

C7 Engage in reasonable personal development and the flexibility to take on new challenges, developing new skills and knowledge.

 

Desirable:

D1 Ability to work with suppliers and collaborate effectively.

 

Experience:

E1 Relevant and proven experience working in a similar role within a fast paced, diverse technology environment.

E2 Substantial experience of pragmatically applying technology solutions to real world challenges.

E3 Significant experience in managing competing priorities in a time-pressured environment.

E4 Proven, practical experience of providing specialist advice and information to a wide range of audiences with differing levels of knowledge.

E5 Recent experience of using Microsoft IT packages effectively.

E6 Experience of building and maintain effective relationships.

 

Desirable:

F1 Experience of working in the HE Sector.

F2 Experience of working with IT teams.

 

Informal enquiries should be directed to Alun McGlinchey, Chief Information Security Officer, Alun.McGlinchey@glasgow.ac.uk.

 

Terms and Conditions

 

Salary will be Grade 6, £33,482 - £37,174 per annum.

 

This post is full time (35 hours p/w) and open ended. Relocation assistance will be provided where appropriate.

 

The University of Glasgow has a responsibility to ensure that all employees are eligible to live and work in the UK. If you require a Skilled Worker visa to work in the UK, you will be required to meet the eligibility requirements of the visa route to be assigned a Certificate of Sponsorship. Please note that this post may be eligible to be sponsored under the Skilled Worker visa route if tradeable points can be used under the Skilled Worker visa rules. For more information please visit: https://www.gov.uk/skilled-worker-visa.

 

As part of Team UofG you will be a member of a world changing, inclusive community, which values ambition, excellence, integrity and curiosity.

 

As a valued member of our team, you can expect:

1 A warm welcoming and engaging organisational culture, where your talents are developed and nurtured, and success is celebrated and shared.

2 An excellent employment package with generous terms and conditions including 41 days of leave for full time staff, pension - pensions handbook  https://www.gla.ac.uk/myglasgow/payandpensions/pensions/, benefits and discount packages.

3 A flexible approach to working.

4 A commitment to support your health and wellbeing, including a free 6-month UofG Sport membership for all new staff joining the University   https://www.gla.ac.uk/myglasgow/staff/healthwellbeing/.

 

We believe that we can only reach our full potential through the talents of all. Equality, diversity and inclusion are at the heart of our values. Applications are particularly welcome from across our communities and in particular people from the Black, Asian and Minority Ethnic (BAME) community, and other protected characteristics who are under-represented within the University. Read more on how the University promotes and embeds all aspects of equality and diversity within our community https://www.gla.ac.uk/myglasgow/humanresources/equalitydiversity/.

 

We endorse the principles of Athena Swan  https://www.gla.ac.uk/myglasgow/humanresources/equalitydiversity/athenaswan/ and hold bronze, silver and gold awards across the University.

 

We are investing in our organisation, and we will invest in you too. Please visit our website  https://www.gla.ac.uk/explore/jobs/ for more information.

 

Closing date :  27 June 2025 @23:45