1 to 10 of 10 Permanent Threat and Vulnerability Management Jobs in London

Xpertise are working with a client in the Insurance industry who are searching for a talented Threat and Vulnerability Lead to join their team. Job Title: Threat and Vulnerability Lead Salary: £75,000 - £90,000 Location: 3 days a week in Central London office About the role: You … will work closely with the company's Information Technology and Security teams to assess the vulnerabilities and reduce the Cyber related risks. My client is looking for people with the following skillset: - Familiarity with vulnerability scanning and detection technologies. - Familiarity with MITRE ATT&CK framework - Excellent ability to present … information and results to the business - Pen testing experience Key responsibilities in this role will include: - This role will involve working closely with the Enterprise Security team - Great understanding of Threat and vulnerability management practises - Working closely with, and reporting into the BISO If keen please apply more »

SOC - SIEM - Threat and Vulnerability Management - Intrusion Detection and Prevention Systems IDS/IPS - EDR - Anti-Virus My client, a technical services company based in London is looking for a Security Analyst (SOC) to join their global Security team on a permanent basis. The Security specialist will work … around SIEM components and perform vulnerability checks of the company's network and applications. The engineer will monitor the Anti-Virus, Intrusion Detection and Prevention Systems. The candidate will work closely with the security team and infrastructure operations teams. This position may require providing on-call support for out … of-hours escalation and the candidate needs to be able to work on Shift patterns. The role Troubleshooting and supporting SIEM components (Sentinel) Manage Anti-Virus and Endpoint Detection and Response Monitoring security tickets and respond to all SOC service requests Use of forensic tools and investigative methods Managing Firewalls more »

Job Title: SOC Manager Company Overview: Our client, a leading organization in the financial services sector, is seeking a dedicated and experienced SOC Manager to join their team. This pivotal role will contribute to safeguarding the organization's digital assets and infrastructure from cybersecurity threats, ensuring a robust security posture … and effective incident response. Starting ASAP, paying up to £90,000 per annum. Role Overview: As the SOC Manager, you will be responsible for providing strategic leadership, technical expertise, and operational oversight to the Security Operations Center (SOC) team. Your role will involve managing both external and internal SOC personnel … overseeing security monitoring and analysis, incident response, threat intelligence, and vulnerability management activities. Key Responsibilities: Act as the subject matter expert on SOC matters for the organization. Manage the external SOC team and a small internal team, ensuring alignment with organizational security objectives. Review output from the external more »

Threat & Vulnerability Manager London – Hybrid Salary: DoE Gresham Hunt is currently partnered with a leading financial services client in the search for an experienced Vulnerability Management professional for their London based team. This is an exciting opportunity to help drive the vulnerability management programme as … years experience across different technical disciplines within the Cybersecurity landscape. Experience using vulnerability scanning tools such as Nessus, Qualys, Rapid7, Wiz, OpenVAS, and penetration testing frameworks like Metasploit. Knowledge of security and risk frameworks, plus regulatory compliance frameworks e.g. NIST, Cobit, ISO 27001. Understanding of OWASP, MITRE, CVSS and … other standards/frameworks relevant to application security and vulnerability management. Experience with cloud technologies, preferably Azure and AWS. Familiarity with security methodologies: Attack and Defensive, Threat Hunting, etc. Scripting experience would be beneficial i.e. Python, Shell, Ansible, Jenkins, etc. Hold relevant industry certifications such as CISSP, CISM, CRISC more »

OpticoreIT is a specialist IT services consultancy offering various opportunities to work within challenging and exciting environments across our client base varying from Large Enterprises to FTSE 100 spanning across multiple verticals including Finance, Media, Telecommunications, and much more. Currently, we are searching for a Security Operations Engineer to join … ll also be expected to come into the office three days a week. What you’ll be doing: System improvements Vulnerability management Threat management Threat analysis Reporting Process/Documentation writing, aligning to Azure benchmarking, aligning to CIS benchmarking Improvements to AppSec (including SAST, DAST, and CICD … configuration) Network security improvements Azure cloud platform security improvements Incident/investigation and resolution. What you’ll bring: Experience in Microsoft Azure and Defender Engineering. Application security experience including DAST & SAST. Microsoft threat analysis experience and EASM tools. Strong security testing experience including penetration testing. Strong security baseline knowledge In more »

The role: • Provide guidance on advanced engineering methods to safeguard the network from security threats associated with various architectures, including web, mobile, and client/server. • Evaluate the security measures of third-party systems and applications to ensure compliance with bank policies and standards, including authentication, authorization, and error handling. … Collaborate with teams across different regions to address technology and cybersecurity regulations not covered by the global framework. • Lead the implementation of security measures across different platforms by collaborating with technology infrastructure teams, demonstrating expertise and leadership in information and cybersecurity. • Investigate potential security incidents to determine their severity and … whether they constitute a breach. • Work with stakeholders to enhance the cyber program, including refining detection tools and improving access to data sources. • Serve as a point of contact for stakeholders during security incidents and investigations, including those outside the technology team. • Respond to regulatory inquiries regarding security incidents and more »

Lead. This role will be responsible for establishing an Application Security function from the ground up, which will involve the implementation of tooling, processes and frameworks. As the first Application Security hire, you will work closely with Application, Platform, and Support teams, to embed a shift left culture within SDLC. … Responsibilities: Lead on application threat and vulnerability management for prioritising and fixing vulnerabilities. Cultivate strong relationships with IT and Security stakeholders. Monitor application security tools and metrics against SLAs. Collaborate with the wider Security and development teams on deploying scanning tech. Partner with Security teams to assess and … mitigate application vulnerabilities. Coordinate with IT and Enterprise Security for deploying and maintaining scanning solutions. Requirements: Experience in building Application Security programmes. Previous hands-on experience as an AppSec Engineer, Software Security Engineer or Software Engineer will be advantageous. Experience in implementing SAST/DAST/SCA tooling. Knowledge of more »

be centred on ensuring security is delivered into a wide range of projects. There will be a focus on working closely with DevOps teams and embedding security throughout a software development life cycle. Responsibilities: Act as the main security point of contact & SME for required projects Manage security risk for … the whole project life cycle Perform security activities, including but not limited to, security design reviews, risk assessments, threat modelling, and vulnerability management and risk mitigation on internally & externally developed software Embedding security within DevOps (eg CI/CD pipelines), developing security requirements On-demand Security assessment of … various components like Web apps, Containers, Platforms etc Reviewing security assessment reports and create a remediation pipeline Experience in web application security assessments like SAST, DAST etc. Act as the Security subject matter expert within Agile/waterfall project planning, development, and execution Obtain and review all required artefacts as more »

Senior Security Engineer (UK-based, Perm (Hybrid)) is required by a leading financial trading organisation. The firm is currently experiencing a period of expansion and is looking to appoint a senior Security technologist to join the team in London. The role is a blend of security engineering (design-build) and … SecOPs (operations-mitigation) ostensibly across the organisations' corporate systems and (security) vendor products, and would suit an experienced engineer with deep knowledge of security principles in line with the CISSP CBK domains such as security monitoring, intrusion prevention & detection, network security, endpoint management & protection, identity management, threat detection … vulnerability management. Whilst the position entails significant exposure to vendor products and tooling, the incoming engineer should demonstrate an open-source mentality and an appetite to automate where possible, strong coding skills are preferable. Culturally, the organisation can be described as collegiate with a data-driven approach to trading more »

a leading international bank who are seeking a well-rounded Cyber professional, to work alongside the CISO as a senior member of the team and trusted advisor on a range of cyber challenges and issues. The successful candidate will have: Strong Security governance, risk and compliance (GRC) with knowledge of … information security standards such as Cyber Essentials, ISO 27001, NIST. Experience developing and implementing operational policies and standards. Demonstrable experience in a variety of areas such as cloud security, IAM, 3rd party risk, threat assessments and vulnerability management. Strong knowledge of cyber security architecture. Relevant certifications would be beneficial … e.g. TOGAF, SABSA). Ability to interact with and challenge technical teams and the methodologies they are implementing. Experience working with the Financial Services industry. Strong interpersonal skills and experience of developing strong relationships and significant influencing abilities, within a large corporate environment. Relevant cyber qualifications, e.g. CISSP, CISM, CRISC. more »