31 Threat and Vulnerability Management Jobs in the UK

Lead. This role will be responsible for establishing an Application Security function from the ground up, which will involve the implementation of tooling, processes and frameworks. As the first Application Security hire, you will work closely with Application, Platform, and Support teams, to embed a shift left culture within SDLC. … Responsibilities: Lead on application threat and vulnerability management for prioritising and fixing vulnerabilities. Cultivate strong relationships with IT and Security stakeholders. Monitor application security tools and metrics against SLAs. Collaborate with the wider Security and development teams on deploying scanning tech. Partner with Security teams to assess and … mitigate application vulnerabilities. Coordinate with IT and Enterprise Security for deploying and maintaining scanning solutions. Requirements: Experience in building Application Security programmes. Previous hands-on experience as an AppSec Engineer, Software Security Engineer or Software Engineer will be advantageous. Experience in implementing SAST/DAST/SCA tooling. Knowledge of more »

we are looking for is Security Operations Senior with experience working within a Cloud/Devsecops environment, you will have experience in the development and operation of the cyber defence function. as part of this you will play a crucial role in the monitoring of malicious activity within the organisation. … you will be working closely with key stakeholders and the security team to ensure the safety and preparedness of the organisation against current and future security risks Key skills and Experience -you will have prior experience as acting as either a lead or an escalation point to the SOC -prior … experience with incident response, threat and vulnerability management -development of incident response plans, processes and procedures -Working with Security frameworks MITRE, cyber kill chain and APT campaigns - cloud environment experience such AWS, Kubernetes, Cloudflare, Terraform and Python -working knowledge of the centre for Internet security ( CIS) if this more »

an exciting opportunity to work for an award-winning Cyber Security & Risk Management company? Our client is a leader in cyber incident response and security managed services. Rapidly expanding and seeking Mid & Senior level IT Infrastructure Engineers with a focus on project delivery and ransomware recovery. About the Role … With a focus on project delivery and ransomware recovery, you will be instrumental in ensuring the security and integrity of their clients 'digital assets, by activelycontributingtothedevelopmentandexecutionofrobustcybersecurity strategies. Who You Are Looking for seasoned Infrastructure Engineers looking to develop capabilities in Security. You will have extensive experience working with Microsoft Technologies … VMware and Azure, and have an understanding of Firewalls. The client will provide training and certification program across their service portfolio. Experience working for a Managed Service Provider (MSP) . IT project delivery Microsoft Azure/Server OS. Fortinet Firewall, FortiSIEM, FortiEDR beneficial. Understanding of cyber security principles,networking concepts more »

Senior Security Engineer (UK-based, Perm (Hybrid)) is required by a leading financial trading organisation. The firm is currently experiencing a period of expansion and is looking to appoint a senior Security technologist to join the team in London. The role is a blend of security engineering (design-build) and … SecOPs (operations-mitigation) ostensibly across the organisations' corporate systems and (security) vendor products, and would suit an experienced engineer with deep knowledge of security principles in line with the CISSP CBK domains such as security monitoring, intrusion prevention & detection, network security, endpoint management & protection, identity management, threat detection … vulnerability management. Whilst the position entails significant exposure to vendor products and tooling, the incoming engineer should demonstrate an open-source mentality and an appetite to automate where possible, strong coding skills are preferable. Culturally, the organisation can be described as collegiate with a data-driven approach to trading more »

a leading international bank who are seeking a well-rounded Cyber professional, to work alongside the CISO as a senior member of the team and trusted advisor on a range of cyber challenges and issues. The successful candidate will have: Strong Security governance, risk and compliance (GRC) with knowledge of … information security standards such as Cyber Essentials, ISO 27001, NIST. Experience developing and implementing operational policies and standards. Demonstrable experience in a variety of areas such as cloud security, IAM, 3rd party risk, threat assessments and vulnerability management. Strong knowledge of cyber security architecture. Relevant certifications would be beneficial … e.g. TOGAF, SABSA). Ability to interact with and challenge technical teams and the methodologies they are implementing. Experience working with the Financial Services industry. Strong interpersonal skills and experience of developing strong relationships and significant influencing abilities, within a large corporate environment. Relevant cyber qualifications, e.g. CISSP, CISM, CRISC. more »

My client, a high-end systematic trading firm is on the lookout for a Senior Security Engineer to join a growing team and play a key role in shaping the security function. You'll have the opportunity to take lead on a variety of projects utilising the latest technology to … help protect the company through implementing a number of robust controls. Requirements: Deep understanding of security engineering and implementing security controls Hands on experience of SecOps and security systems Understanding of threat detection, Vulnerability management Cloud & network security Scripting experience - Preferably Python Ability to lead projects and resolve more »