Senior Cyber Security Testing Engineer
London
WPP
WPP is the creative transformation company. We use the power of creativity to build better futures for our people, clients and communities.WPP is the creative transformation company. We use the power of creativity to build better futures for our people, planet, clients, and communities.
Working at WPP means being part of a global network of more than 115,000 accomplished people in 110 countries. WPP has headquarters in New York, London and Singapore and a corporate presence in major markets worldwide.
We create transformative ideas and outcomes for our clients through an integrated offer of communications, experience, commerce, and technology.
WPP and our award-winning agencies work with most of the world's biggest companies and organisations – from Ford, Unilever and P&G to Google, HSBC, and the UN. Our clients include 61 of the FTSE 100, 307 of the Fortune Global 500, all 30 of the Dow Jones 30 and 62 of the NASDAQ 100. WPP are the leader in the Bloomberg Gender Equality Index and 20th in the FTSE 100 rankings for Women on Boards.
Why we're hiring:
WPP is at the forefront of the marketing and advertising industry's largest transformation. Our Global CIO is leading a significant evolution of our Enterprise Technology capabilities, bringing together over 2,500 technology professionals into an integrated global team. This team will play a crucial role in enabling the ongoing transformation of our agencies and functions.
As a Senior Cyber Security Testing Engineer, you'll command a critical front in this transformation, leading the charge in fortifying WPP's digital defenses. You'll be the architect and guardian of our Vulnerability Management, Remediation, and Penetration Testing programs, ensuring they remain at the forefront of industry best practices. Your mission will be to not only maintain these vital programs but to constantly innovate and evolve them to meet the ever-changing threat landscape.
You'll lead and mentor a global team of Cyber Security testing, Vulnerability Management, and Remediation specialists, shaping the next generation of cyber defenders. This is a high-impact role with the power to influence WPP's global security posture and safeguard our future in a rapidly evolving digital world.
What you'll be doing:
- Working under the direction and guidance of the Cyber Security Systems & Engineering Lead, and aligning with the Cyber Security testing strategy, build\maintain a global vulnerability management, vulnerability remediation and penetration-testing function.
- Deliver a line manager role to a global Cyber Security testing team.
- Work in collaboration with IT, Cyber Security and Group teams (such as Risk & Compliance & CSO) to design and deliver business aligned security testing solutions.
- Ensure accurate, pragmatic and timely technical Cyber Security Testing & Vulnerability guidance is provided to stakeholders.
- Develop and deliver Cyber Security testing artefacts including technical documentation, methodologies, standards, process\procedures, requirements, test plans and reports. Support and contribute to the delivery of a wider Information Security Management System.
- Work closely with the Cyber Security Systems & Engineering Lead, Security Operations and Technology Operations Teams to ensure the correct operation, and optimal configuration of Penetration testing, Vulnerability Management and remediation toolsets.
- Build and maintain knowledge and awareness security testing and vulnerability intelligence feeds (NCSC, CISA, SANS). Articulate vulnerability information into clearly defined business risk.
- Deliver and present appropriate KPI, KRI and other requisite reporting to the Cyber Security Systems & Engineering Lead and Head of Cyber Security Operations.
- Act as a Penetration Testing and Vulnerability Management SME for projects and initiatives relevant to the role. Provide a point of escalation to testing team members.
- Working closely with WPP technology and business teams, build professional relationships to ensure cooperation between stakeholders and Cyber Security Operations.
- Lead and direct third-party suppliers to ensure testing services are provided effectively, within project timescales and service level agreements.
What you'll need:
- Strong hands-on technical background in cyber / information security
- Knowledge of securing network technologies, client, and server operating systems, security data, information, and intelligence
- Stakeholder management
- Able to take a pragmatic approach to Cyber Security by identifying, understanding and clearly articulating risk
- Experience of providing Security testing expertise to Enterprise-wide Cyber Security Change programmes
- Experience in a similar role within a large, complex, and technologically diverse organisation
- Must have in depth technical knowledge of security technologies including but not limited to: Vulnerability Management toolsets; Penetration testing tools and methodologies; Application components; Attack Surface Management tools; Cloud Security Centres; TCP-IP Networking; Internet Technologies; Cyber Threat Intelligence solutions
Who you are:
You're open: We are inclusive and collaborative; we encourage the free exchange of ideas; we respect and celebrate diverse views. We are accepting: of new ideas, new partnerships, new ways of working.
You're optimistic: We believe in the power of creativity, technology and talent to create brighter futures or our people, our clients and our communities. We approach all that we do with conviction: to try the new and to seek the unexpected.
You're extraordinary: we are stronger together: through collaboration we achieve the amazing. We are creative leaders and pioneers of our industry; we provide extraordinary every day.
What we'll give you:
Passionate, inspired people – We promote a culture of people that do extraordinary work.
Scale and opportunity – We offer the opportunity to create, influence and complete projects at a scale that is unparalleled in the industry.
Challenging and stimulating work – Unique work and the opportunity to join a group of creative problem solvers. Are you up for the challenge?
WPP is an equal opportunity employer and considers applicants for all positions without regard to race, color, religion or belief, sex, age, national origin, citizenship status, marital status, military/veteran status, genetic information, sexual orientation, gender identity, physical or mental disability. We believe in creating a dynamic work environment that values diversity and inclusion and strives to recruit a diverse slate of candidates to help us achieve that goal.
Please read our Privacy Notice (https://www.wpp.com/people/wpp-privacy-policy-for-recruitment) for more information on how we process the information you provide.
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: CISA Cloud Compliance Pentesting Privacy SANS Strategy Threat intelligence Vulnerability management
More jobs like this
Explore more career opportunities
Find even more open roles below ordered by popularity of job title or skills/products/technologies used.