Home
Jobs
News Corp
Senior Technical Analyst Vulnerability and Exposure Management

Senior Technical Analyst Vulnerability and Exposure Management

Hybrid

London, United Kingdom

Full Time

18-03-2025

Share this job:

Score my CV Apply

Job Specifications

Equal Opportunity Employer

All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, protected veteran status, or disability status. EEO/AA/M/F/Disabled/Vets

Job Description :

SENIOR TECHNICAL ANALYST, VULNERABILITY AND EXPOSURE MANAGEMENT

About News Corp:

News Corp is a global diversified media and information services company focused on creating and distributing authoritative and engaging content to consumers and businesses throughout the world. The company comprises businesses across a range of media, including: news and information services, book publishing, digital real estate services, cable network programming as well as pay-tv distribution in Australia.

What You’ll Do

Research, report and guide on security vulnerabilities, advancements, and remediations. Collaborate and coordinate with team members, partners, and relevant businesses within the News Corp community.

Responsibilities

Provide technical guidance to remediation teams and asset owners.
Identify false and true positive alerts and investigate their implications
Provide recommendations to improve the effectiveness of the scanning tool to reduce future false positive alerts.
Serve as the technical SME (Subject Matter Expert) for Vulnerability Management and related tools/applications.
Identify, Recommend and Automate vulnerability management tasks
Ensure scanning coverage is sufficient for risk visibility and remediation
Support business with Vulnerability Management prioritisation
Understand and work with scan results from multiple source platforms
Understand the current state of the components in the IT stack ranging from networking, storage, compute (virtualization, containers), applications & security mgmt.
Collaborate to understand the threats, vulnerabilities, and risks to the enterprise.
Develop measurements of findings to produce meaningful and business-friendly metrics to track program performance and effectiveness.
Prepare reports for customers to help with their remediation efforts, understanding of risk and SLA compliance requirements.
Collaborate with cybersecurity partners to understand the criticality of exposure from intellegicane gathering activities
Contribute and Improve the Vulnerability and Exposure Management Program and NIST coverage
Train and mentor junior engineers

Required Experience & Qualifications

Strong analytical skills with high attention to detail and accuracy
Able to work effectively, as well as independently, in a team environment
Working knowledge with one or more Cloud Service Providers (AWS, GCP, Azure)
Industry Certifications (CISSP, CCSP, Security+)
Excellent verbal, written, and interpersonal communication skills
Experience and comfortability working with Python and SQL
Experience working in a large enterprise environment
Strong organisational, multi-tasking, and prioritising skills
Able to meet time-sensitive deadlines required
Being able to work collaboratively and build consensus is essential
Able to work and achieve goals with minimal supervision
Able to handle confidential material according to company policies and standards
Able to transform complex data into meaningful action and presentations
Basic knowledge and experience in administering IT components (systems, networks, servers, and cloud-related components)

Desired Qualifications

View learning as an ongoing process, not just something you do in school.
Actively seek out new information and perspectives on various topics.
Continuously evaluate your learning progress and adjust your approach as needed.

Location:

On-Site London

Job Category:

About the Company

News Corp is a global, diversified media and information services company focused on creating and distributing authoritative and engaging content and other products and services. The company comprises businesses across a range of media, including: digital real estate services, subscription video services in Australia, news and information services and book publishing. Headquartered in New York, News Corp operates primarily in the United States, Australia, and the United Kingdom, and its content and other products and servi... Know more

Related Jobs

Company Name: Amach
Job Title: Solution Lead
Job Description: About us: Amach is an industry-leading technology driven company with headquarters located in Dublin and remote teams in UK and Europe. Our blended teams of local and nearshore talent are optimised to deliver high quality and collaborative solutions. Established in 2013, we specialise in cloud migration and development, digital transformation including agile software development, DevOps, automation, data and machine learning… We are looking for an experienced Solution Lead to drive improvements in code quality and security across out customers' development teams. This role blends technical solution design, stakeholder engagement, and tool implementation to ensure security and quality standards are embedded across multiple teams. You'll work closely with the development, security and procurement teams to roll out essential tools, negotiate adoption and refine processes for writing secure and maintainable code. In this role, you will lead initiatives, shape engineering strategies and champion security and quality best practices across development teams. Please note: this role requires 3 days onsite with our customer near Barcelona Airport. Required skills: Deep understanding of DevSecOps principles, tooling and implementation strategies Hands-on experience with software security tools such as Snyk, and other security tooling for SAST, DAST, Penetration Testing and IaC security Solid experience with SonarCloud, unit testing, QA automation tooling and code architecture best practices Experience in Python, with knowledge of JavaScript/TypeScript Experience setting up and improving developer tooling, GitHub branching strategies, and engineering standards Ability to engage with both technical and non-technical stakeholders, from developers to executives Ability to work in a fast-paced agile environment Key responsibilities & duties include: Analyse GitHub repositories to assess code security and quality, providing insights and actionable recommendations for both technical and non-technical stakeholders Establish and implement best practices for writing secure, high-quality code, ensuring adherence across teams and develop clear incident management and SLA processes Configure and optimise security and quality tools like Snyk and SonarCloud, ensuring seamless integration and effective usage across all teams Bridge the gap between technical and non-technical teams, communicating effectively with software developers, tech leads, delivery managers, and procurement teams to drive adoption of tools and processes Support development teams in architecting code for security and testability, guiding them in implementing secure coding practices Embed security tooling and best practices into engineering workflows, collaborating closely with development teams Implement security best practices for SAST, DAST, Penetration Testing and IaC Security Ensure adoption of security and quality best practices across teams What's in it for you: An opportunity to join a fast-growing company Options for career advancement Learning and development opportunities Flexible working environment Competitive salaries based on experience Equal Opportunity Employer: Amach is an equal opportunity employer and makes employment decisions on the basis of merit. We celebrate diversity and are committed to creating an inclusive environment for all employees. This job description is intended to convey essential responsibilities and qualifications for this role, but it is not an exhaustive list of tasks that an employee may be required to perform. If you are passionate about driving customer success, advising on strategic solutions, and contributing to product innovation, we would love to hear from you! Not for you? Check out all of our open positions in our careers page and follow us on LinkedIn for future opportunities. P.S. Share this with friends and co-workers! Don't be afraid they'll steal it from you, if you're amazing and smart we'll find a role for you. We are growing fast and we are always looking for talented people. At Amach, we strive to be an inclusive community of open-minded individuals with different backgrounds and we are committed to fostering, cultivating and preserving a culture of diversity, equity and inclusion. We strongly believe that a diversity of experience and background is essential to create a fulfilling environment and better solutions for our people and our customers. All Amach employees and contractors are expected to honour this policy and act to ensure that every individual is respected in the workplace. Your personal data Amach will process your personal information in accordance with the EU's General Data Protection Regulation (GDPR). We will comply with data protection law and principles, which means that your data will be: Used lawfully, fairly and in a transparent way Collected only for valid purposes and not used in any way that is incompatible with those purposes Relevant to the purposes we have told you about and limited only to those purposes Accurate and kept up to date Kept only as long as necessary for the purposes we have told you about Kept securely If you would like to contact us about your data, please use the following address: info@amach.com

London, United Kingdom

On site

Full Time

18-03-2025

Company Name: developrec
Job Title: Software Engineer
Job Description: .NET Developer- Remote/Swindon- up to £70k Our client an award winning and industry leading brand are looking to hire 2 x .NET Developers for a greenfield digital transformation program. Tech Stack: .NET C# HTML CSS Javascript (Modern frameworks, Angular or React) CMS experience (Umbraco, Sitecore, Kentico, Sitefinity, dotnetnuke)- desirable SQL This role requires 2 days on site just outisde of Swindon and it has a 3 stage interview process including a technical challenge. In return the client are offering a great salary and benefits package, so if you would like to learn more please click apply now! .NET Developer- Remote/Swindon- up to £70k

Royal Wootton Bassett, United Kingdom

Hybrid

Full Time

19-03-2025

Company Name: HackerOne
Job Title: Software Engineer IV
Job Description: HackerOne is the global leader in human-powered security, harnessing the creativity of the world’s largest community of security researchers with cutting-edge AI to protect your digital assets. The HackerOne Platform combines the expertise of our elite community and the most up-to-date vulnerability database to pinpoint critical security flaws across your attack surface. Our integrated solutions, including bug bounty, pentesting, code security audits, spot checks, and AI red teaming, ensure continuous vulnerability discovery and management throughout the software development lifecycle. Trusted by industry leaders such as Coinbase, General Motors, GitHub, Goldman Sachs, Hyatt, PayPal, and the U.S. Department of Defense, HackerOne was named a Best Workplace for Innovators by Fast Company in 2023 and a Most Loved Workplace for Young Professionals in 2024. Software Engineer IV Remote Location: London Position Summary As a Software Engineer, you will work with Product Managers and Designers to be the technical lead for a variety of challenging projects and build delightful features and products for our community and the thousands of companies that trust HackerOne with their cybersecurity posture. When you are not leading a project, you are a collaborative and effective software engineer and team member. You will interact with one of the world's most vibrant communities of security researchers and hackers and use this experience to build delightful features and products for them and the thousands of companies who trust HackerOne with their cybersecurity posture. As a Software Engineer, you combine broad technological expertise, deep domain knowledge, and an unquestionable dedication to business objectives as you intersect with the engineering organization. You seek leadership responsibilities, identify and spearhead new initiatives, and make systematic improvements to technical weaknesses they find in their squad’s codebases, as well as in shared codebases across the company. Your Journey at HackerOne Your day will start with a warm welcome online and get your tools to start! Your first 30 days will be focusing on getting to know our HackerOnies. You will join your new squad and be onboarded - get to learn the technology stack (Ruby on Rails + GraphQL + ReactJS + many more). Within 60 days, you will have committed a bunch of code to our repositories and will start developing a knack for being a fast and effective software engineer on our codebase. Within 90 days, you will start getting ready to lead your first project. You will have branched out and talked to sales, marketing, and various other functions, and you will have developed a good sense of cross-functional collaboration and communication. Beyond 90 days, you will be a fully-fledged software engineer. By that time you will be able to understand the business value of our products and features, and the needs of our customers, and you can translate feature requests into simple, but robust engineering (or non-engineering) solutions. You are: Tech-savvy and enjoy working with people and teams A team builder who cultivates innovation and can drive cross-collaboration and execution of projects across multiple domains Willing to learn from other Senior and Staff Software Engineers Owner of your own progress as an individual You have: 5+ years of experience in full-stack software engineering, especially within a SAAS environment. Preferably with experience in Ruby on Rails, ReactJS and TypeScript, generative AI, ElasticSearch / OpenSearch, GraphQL Practical experience with GenAI and running LLM models in production In-depth understanding of LLM models is a big plus Proven experience leading and delivering cross-functional projects from start to finish Strong track record of individual contributions to business goals Job Benefits: Health (medical, vision, dental), life, and disability insurance* Equity stock options Retirement plans Paid public holidays and unlimited PTO Paid maternity and parental leave Leaves of absence (including caregiver leave and leave under CO's Healthy Families and Workplaces Act) Employee Assistance Program Flexible Work Stipend Eligibility may differ by country We're committed to building a global team! For certain roles outside the United States, U.K., and the Netherlands, we partner with Remote.com as our Employer of Record (EOR). Employment at HackerOne is contingent on a background check. HackerOne is an Equal Opportunity Employer in the terms and conditions of employment for all employees and job applicants without regard to race, color, religion, sex, sexual orientation, age, gender identity or gender expression, national origin, pregnancy, disability or veteran status, or any other protected characteristic as outlined by international, federal, state, or local laws. This policy applies to all HackerOne employment practices, including hiring, recruiting, promotion, termination, layoff, recall, leave of absence, compensation, benefits, training, and apprenticeship. HackerOne makes hiring decisions based solely on qualifications, merit, and business needs at the time. For US based roles only: Pursuant to the San Francisco Fair Chance Ordinance, all qualified applicants with arrest and conviction records will be considered for the position. HackerOne Values HackerOne commits to maintaining a strong, inclusive culture built for our employees and our community of hackers. We are driven by our five core values. We recognize that our mission is bigger than us, and therefore act with integrity at all times. As a team, we believe that transparency builds trust so we default to disclosure in our communications. Each individual executes with excellence, creating an environment of greater alignment and greater autonomy. We win as a team and respect all people to empower everyone to learn from each other, innovate, and grow.

London, United Kingdom

Remote

Full Time

19-03-2025

Company Name: Sophos
Job Title: Senior Software Engineer
Job Description: About Us Sophos is a global leader and innovator of advanced security solutions for defeating cyberattacks. The company acquired Secureworks in February 2025, bringing together two pioneers that have redefined the cybersecurity industry with their innovative, native AI-optimized services, technologies and products. Sophos is now the largest pure-play Managed Detection and Response (MDR) provider, supporting more than 28,000 organizations. In addition to MDR and other services, Sophos’ complete portfolio includes industry-leading endpoint, network, email, and cloud security that interoperate and adapt to defend through the Sophos Central platform. Secureworks provides the innovative, market-leading Taegis XDR/MDR, identity threat detection and response (ITDR), next-gen SIEM capabilities, managed risk, and a comprehensive set of advisory services. Sophos sells all these solutions through reseller partners, Managed Service Providers (MSPs) and Managed Security Service Providers (MSSPs) worldwide, defending more than 600,000 organizations worldwide from phishing, ransomware, data theft, other every day and state-sponsored cybercrimes. The solutions are powered by historical and real-time threat intelligence from Sophos X-Ops and the newly added Counter Threat Unit (CTU). Sophos is headquartered in Oxford, U.K. More information is available at www.sophos.com. Role Summary We are seeking a Senior Software Engineer to join our Security Operations Features team, contributing to the development of Managed Services. In this role, you will work as part of an experienced engineering team, driving the design and implementation of complex features while collaborating with key stakeholders across the organization. This position offers an excellent opportunity to be part of an inclusive and knowledgeable team dedicated to fostering innovation and professional growth. What You Will Do Design, Build, Support and Refine solutions for our Security Operations team and end customers focusing on Managed Services Actively contribute to release planning and drive for high-value and high-quality solutions which meet business needs Write product code along with test automation to deliver against project timescales, quality and requirements Contribute to daily stand-ups, collaborative estimation and retrospective meetings Participate in architecture and security reviews of new developments to ensure that released products comply with Sophos’ security requirements and industry best practice Research, design and prototype new functionality that forms part of a larger solution Learn how to scale solutions and integrate with products produced by wider teams What You Will Bring Extensive development and test experience, with expertise in JavaScript/TypeScript Strong architecture and design skills, ensuring scalability, performance, and maintainability Proven ability to lead technical discussions, mentor junior engineers, and drive best practices Excellent problem-solving skills, thinking strategically and proposing innovative solutions Strong independent research, prototyping, and system design capabilities Excellent communication skills, both verbal and written, with the ability to articulate technical concepts to diverse audiences Desirable: Experience with agile development methodologies, preferably Scrum or Kanban Proficiency in modern web UI frameworks, such as React or Angular Strong understanding and practical experience with SQL and NoSQL databases Expertise in automated testing, including unit, integration, and end-to-end testing Hands-on experience with REST APIs and GraphQL for efficient data handling and service communication #B1 Ready to Join Us? At Sophos, we believe in the power of diverse perspectives to fuel innovation. Research shows that candidates sometimes hesitate to apply if they don't check every box in a job description. We challenge that notion. Your unique experiences and skills might be exactly what we need to enhance our team. Don't let a checklist hold you back – we encourage you to apply. What's Great About Sophos? · Sophos operates a remote-first working model, making remote work the primary option for most employees. However, some roles may necessitate a hybrid approach. Please refer to the location details in our job postings for further information. · Our people – we innovate and create, all of which are accompanied by a great sense of fun and team spirit · Employee-led diversity and inclusion networks that build community and provide education and advocacy · Annual charity and fundraising initiatives and volunteer days for employees to support local communities · Global employee sustainability initiatives to reduce our environmental footprint · Global fitness and trivia competitions to keep our bodies and minds sharp · Global wellbeing days for employees to relax and recharge · Monthly wellbeing webinars and training to support employee health and wellbeing Our Commitment To You We’re proud of the diverse and inclusive environment we have at Sophos, and we’re committed to ensuring equality of opportunity. We believe that diversity, combined with excellence, builds a better Sophos, so we encourage applicants who can contribute to the diversity of our team. All applicants will be treated in a fair and equal manner and in accordance with the law regardless of gender, sex, gender reassignment, marital status, race, religion or belief, color, age, military veteran status, disability, pregnancy, maternity or sexual orientation. We want to give you every opportunity to show us your best self, so if there are any adjustments we could make to the recruitment and selection process to support you, please let us know. Data Protection If you choose to explore an opportunity, and subsequently share your CV or other personal details with Sophos, these details will be held by Sophos for 12 months in accordance with our Privacy Policy and used by our recruitment team to contact you regarding this or other relevant opportunities at Sophos. If you would like Sophos to delete or update your details at any time, please follow the steps set out in the Privacy Policy describing your individual rights. For more information on Sophos’ data protection practices, please consult our Privacy Policy Cybersecurity as a Service Delivered | Sophos