Senior Cybersecurity Analyst - Vulnerabilities Manager - Welsh Revenue Authority

Key Responsibilities

• Own the end‑to‑end vulnerability management lifecycle, from discovery and classification to remediation tracking and reporting.
• Conduct regular penetration tests and security assessments on internal and external systems, providing actionable findings.
• Analyse vulnerability data using SIEM and other security platforms to prioritise risks based on threat intelligence and business impact.
• Develop and maintain automated scripts (e.g., Python) to streamline scanning, reporting, and patch validation processes.
• Collaborate with IT, development, and business teams to ensure timely remediation and compliance with security standards.
• Produce clear, executive‑level reports and dashboards on vulnerability trends and remediation progress.

Requirements

• Proven experience in vulnerability management and penetration testing within a complex, regulated environment.
• Strong knowledge of risk assessment methodologies and ability to translate technical findings into business‑focused recommendations.
• Hands‑on experience with SIEM platforms and scripting languages, particularly Python, for automation and data analysis.
• Excellent communication skills, capable of influencing stakeholders and delivering concise security briefings.
• Relevant certifications such as CISSP, OSCP, or CREST are highly desirable.