Cybersecurity Specialist

About the role

VML, part of WPP, is a leading creative company that combines brand experience, customer experience, and commerce, creating connected brands to drive growth. VML is celebrated for its innovative and human first, award-winning work for blue chip client partners including AstraZeneca, Colgate-Palmolive, Dell, Ford, Microsoft, Nestlé, The Coca-Cola Company, and Wendy's. The agency is recognized by the Forrester Wave™ Reports, as a Leader among Marketing Creative and Content Service Providers, Commerce Services, Global Digital Experience Services, Global Marketing Services and, most recently, Marketing Measurement & Optimization. In addition, VML's specialist health network, VML Health, is one of the world's largest and most awarded health agencies. VML's global network is powered by 26,000 talented people across 55+ markets, with principal offices in Kansas City, New York, Detroit, London, São Paulo, Shanghai, Singapore, and Sydney. About WPP WPP is the trusted growth partner for the world's leading brands. We unite cutting-edge media intelligence and data solutions, world-class creativity, next-generation production, transformative enterprise solutions and expert strategic counsel in a single company - powered by exceptional talent and our agentic marketing platform, WPP Open, to help our clients navigate change, capture opportunity and deliver transformational growth. For more information, visit WPP.com . Cybersecurity Specialist wanted to join our team. In this role, you will focus on identifying, assessing, and mitigating security vulnerabilities across our applications, networks, and cloud environments. You will play a key role in conducting security assessments, responding to incidents, and ensuring our digital platforms remain resilient against emerging threats. The ideal candidate will bring developing technical expertise in secure coding, vulnerability management, and incident response, alongside a strong drive to collaborate with cross-functional teams to protect our business and clients. What you'll get to do Conducting comprehensive security assessments to identify, prioritise, and mitigate vulnerabilities and threats based on risk. Analysing and interpreting security data, cloud logs, and telemetry data to detect and respond to security incidents and anomalies. Creating detailed, clear, and concise technical reports detailing vulnerabilities and providing actionable remediation steps for asset owners. Regularly providing guidance to software development and asset teams regarding security updates and secure coding practices. Maintaining Software Development Life Cycle (SDLC) related policies to ensure alignment with the latest OWASP guidelines and industry best practices. Ensuring compliance with relevant data protection regulations and standards (such as GDPR, HIPAA, and PCI DSS), and providing support during third-party audits. Creating, delivering, and maintaining security awareness materials to raise cybersecurity awareness across the group. Collaborating with cross-functional project teams to explain vulnerabilities from an attacker's perspective and help implement effective fixes. Offering mentorship and technical guidance to less experienced members of the security team. What you should have Proven experience in a dedicated cybersecurity role, with a strong foundation in both application and network security. Solid knowledge of web application vulnerabilities (OWASP Top 10), web technologies, and web services (SOAP/REST). Familiarity with analysing cloud environments, monitoring cloud logs, and working with security tools such as Web Application Firewalls (WAF). Strong understanding of legal, regulatory, and compliance requirements related to penetration testing, vulnerability assessments, and data privacy (GDPR, PCI DSS). Demonstrated ability to troubleshoot, debug, and identify root causes of cybersecurity and data issues. Excellent technical writing skills with the ability to compile detailed vulnerability and incident reports. Effective communication skills with the ability to articulate complex, technical concepts clearly to both technical peers and non-technical business stakeholders. A proactive approach to self-directed learning, keeping up-to-date with the latest security tools, technologies, and threat landscapes. Relevant security certifications (e.g., CompTIA Security+, AWS, SSCP, GIAC or equivalent) or a desire to work towards them are highly beneficial. Desirable Attributes Developing problem-solving and critical thinking skills with an analytical approach to cybersecurity challenges. Active listening and strong collaboration skills, with a proven ability to work effectively at all levels in a team environment. A forward-looking, organised approach with a natural inclination for planning, strategy, and tactics. Flexible and adaptable; comfortable working through ambiguous situations in a fast-paced environment. A team p

Benefits

Your Match

How well this role fits your profile.

Company Intel

What employees say

Worked at vmlenterprisesolutions? Share your experience