1 to 25 of 26 Threat and Vulnerability Management Jobs in England

is responsible for is the effective management of the Security Operations pillar within the IT Security, Compliance & Identity function. This includes Security technology and Security Operations Centre management. Key focus areas for this role, the ideal candidate will have experience in each of the below; Threat & Vulnerability Management … Security Operations Centre - 24/7 Outsourced Web & Content Filtering - ProofPoint, Zscaler, etc. Endpoint Security Infrastructure Security Accountabilities * Lead the Security Operations pillar, determining and delivering requirements, methods, and tools to provide value and reduce risk across proactive monitoring, incident response, threat management and vulnerability management (among … other activity) . * Lead the creation and maintenance of Security Operations policy, standards procedures, and documentation (including playbooks and guidance). * Manage the application and compliance of security operations procedures, reviewing actual and potential security breaches, and ensuring their investigation. * Lead the Security Operations team's response to incidents, recommending more »

Position: Information Security Lead Salary: £59k Location: Oxford ( Hybrid ) Responsibilities: Develop and maintain an Information Security improvement plan for the group. Work with IT staff within the group to build on an existing information security program and ongoing security projects that address information security risks and compliance requirements. Recommend, coordinate … and where appropriate, implement agreed technical controls. Be responsible for decisions regarding operational activities in relation to Information Security improvement within the group. Work with the Head of IT and College governance structures to create and maintain security policies. Monitor and report on compliance with security policies, as well as … the enforcement of policies. Plan and prioritise own work ensuring effective support to the group and delivery of key Cyber Security improvement objectives. Research, evaluate, design, test, recommend and plan the implementation of new or updated information security hardware or software, and analyse its impact on the existing environment; provide more »

Threat Intelligence Specialist 6 months £540 per day (Inside IR35) 5 Days per week in Reading My client in the telecommunications industry are looking for a Threat Intelligence Specialist to join their fast-paced team on an initial 6 month contract. The role will be fully on site in Reading … so a local candidate will be most ideal. Responsibilities in the role; Identify information security and Threat Intelligence requirements and oversight of delivery by: Identifying business unit Priority Intelligence Requirements that enable the business unit to conduct its business continuously in a secure manner. Analysis of information across Strategic, Operational … and Tactical arenas into actionable intelligence that allows stakeholders to make informed decisions. Ensuring delivery of the Threat Intelligence programme within the business unit, delivery of services and products provided by Group Security. Where services are delivered by external providers, ensuring delivery of the Threat Intelligence services as per requirements more »

Job Overview: Join a dynamic and high-performing team as a Senior Analyst in Vulnerability Management & Security Testing. This role offers the unique opportunity to enhance a best-in-class Threat Defence capability and make significant contributions to our security operations. Ideal candidates will bring a strong background … in threat management, vulnerability assessment, and security testing, aiming to drive innovation and excellence in our security practices. Key Responsibilities: Conduct thorough vulnerability assessments across various platforms, including networks, systems, applications, and devices. Analyze risks associated with vulnerabilities, provide detailed reporting, and recommend actionable remediation strategies. Work … collaboratively with multiple stakeholders to prioritize vulnerabilities based on severity, impact, and exploitability. Manage end-to-end security testing processes, including penetration testing for identifying security weaknesses across IT, IoT, and OT environments. Coordinate and oversee remediation efforts to ensure timely and effective resolution of security vulnerabilities. Requirements: Extensive experience more »

Job: Security Architect Location: Reading, UK, Hybrid Job Type: Permanent Job Description We are seeking a highly skilled and experienced Security Architect to join our team who will be responsible for development of the Security Architecture that ensures the appropriate protection of all aspects of security, (people, process, electronic, data … physical) in Spring Fibre. • You will be a subject matter expert and provide security guidance and recommendations to technology/business teams and contribute to Spring’s security policies, standards, and guidelines related to information and Network security. • This is a technical role and suitable for someone who has hands … on experience in Cybersecurity. Responsibilities Help develop an Enterprise Security Architecture Framework, including patterns for identity & authentication, authorization and access control, cryptographic key and certificate management, auditing and security monitoring, data leakage prevention, privacy enhancement & protection and other standards in alignment with Enterprise Architect platforms. • Establish metrics and monitoring more »

Our established client in the financial services sector are expanding their security function and are looking for an enthusiastic and innovative IT Security Engineer. Security Engineer main responsibilities will include, but are not necessarily limited to, the following: Vulnerability Management o Take lead on the daily vulnerability management activities, including but not limited to application vulnerability and infrastructure vulnerability assessments. o Manage prioritisation of vulnerabilities through a risk-based approach, to meet patch management policies, regulatory compliance, and audit findings. o Management and configuration of vulnerability management tools (Microsoft … Azure and Qualys) o Support the InfoSec function in proactively identifying and leveraging threat intelligence sources to inform strategic vulnerability mitigation measures. Threat Management o Take lead on the daily threat management activities o Maintain and update incident response playbooks and automation o Monitor security dashboards and more »

Xpertise are working with a client in the Insurance industry who are searching for a talented Threat and Vulnerability Lead to join their team. Job Title: Threat and Vulnerability Lead Salary: £75,000 - £90,000 Location: 3 days a week in Central London office About the role: You … will work closely with the company's Information Technology and Security teams to assess the vulnerabilities and reduce the Cyber related risks. My client is looking for people with the following skillset: - Familiarity with vulnerability scanning and detection technologies. - Familiarity with MITRE ATT&CK framework - Excellent ability to present … information and results to the business - Pen testing experience Key responsibilities in this role will include: - This role will involve working closely with the Enterprise Security team - Great understanding of Threat and vulnerability management practises - Working closely with, and reporting into the BISO If keen please apply more »

super exciting growth project across their established Cyber Security function! As a Cyber Risk Manager, you will play a key role in assessing, mitigating, and managing cyber risks across our client and their vendors/3rd party suppliers. Our client is looking for candidates who hold strong skills in vulnerability management, vendor relationship management, incident response, and possess a deep understanding of cyber risk. Main Responsibilities: Develop and implement cyber risk management strategies, policies, and procedures. Lead vulnerability management efforts, including identifying, assessing, prioritising, and remediation of vulnerabilities. Establish and maintain strong vendor relationships … to ensure third-party vendors comply with cybersecurity requirements and standards. Oversee incident response activities, including incident detection, analysis, containment, eradication, and recovery. Conduct risk assessments to identify potential cyber threats and vulnerabilities. Manage various relationships with our clients vendors and 3rd party suppliers, acting as a cyber risk specialist more »

Job Title: SOC Manager Company Overview: Our client, a leading organization in the financial services sector, is seeking a dedicated and experienced SOC Manager to join their team. This pivotal role will contribute to safeguarding the organization's digital assets and infrastructure from cybersecurity threats, ensuring a robust security posture … and effective incident response. Starting ASAP, paying up to £90,000 per annum. Role Overview: As the SOC Manager, you will be responsible for providing strategic leadership, technical expertise, and operational oversight to the Security Operations Center (SOC) team. Your role will involve managing both external and internal SOC personnel … overseeing security monitoring and analysis, incident response, threat intelligence, and vulnerability management activities. Key Responsibilities: Act as the subject matter expert on SOC matters for the organization. Manage the external SOC team and a small internal team, ensuring alignment with organizational security objectives. Review output from the external more »

Specialist to join their team. As a TVM Specialist, you will play a crucial role in enhancing the company's cybersecurity by managing vulnerabilities and ensuring the protection of sensitive data. This is a contract position offering a competitive daily rate and the opportunity to work remotely. Key Responsibilities Implement … and maintain vulnerability management programs and processes. Identify, assess, and prioritize vulnerabilities within the company's technology infrastructure. Perform regular scans, audits, and penetration testing to identify potential weaknesses. Create reports and provide insights to stakeholders regarding vulnerability status and remediation strategies. Collaborate with cross-functional teams … to address vulnerabilities and implement security controls. Maintain up-to-date knowledge of emerging security threats and industry best practices. Participate in incident response and provide guidance in the event of a security breach. Job Requirements Significant experience in vulnerability management, including vulnerability assessment, penetration testing, and more »

Manager to come on board to effectively manage the Security Operations pillar within the IT Security, Compliance & Identity function. This involves overseeing Security technology and Security Operations Centre management. Additionally, this position involves leveraging and applying understanding of business objectives and security needs to identify issues and establish priorities for … both internal and external delivery teams. Key skills and responsibilities, * Strong IT Security Management experience * Direct the Security Operations pillar, devising and implementing requirements, techniques, and resources to enhance value and mitigate risks across proactive monitoring, incident response, threat management, and vulnerability management, among other areas. … Spearhead the development and upkeep of Security Operations policies, standards, procedures, and documentation, including playbooks and guidelines. * Oversee the implementation and adherence to security operations procedures, assessing real and potential security breaches, and ensuring thorough investigation and resolution. * Familiarity with IT Service Frameworks, methodologies, and industry best practices such as more »

Manager to come on board to effectively manage the Security Operations pillar within the IT Security, Compliance & Identity function. This involves overseeing Security technology and Security Operations Centre management. Additionally, this position involves leveraging and applying understanding of business objectives and security needs to identify issues and establish priorities for … both internal and external delivery teams. Key skills and responsibilities, * Strong IT Security Management experience * Direct the Security Operations pillar, devising and implementing requirements, techniques, and resources to enhance value and mitigate risks across proactive monitoring, incident response, threat management, and vulnerability management, among other areas. … Spearhead the development and upkeep of Security Operations policies, standards, procedures, and documentation, including playbooks and guidelines. * Oversee the implementation and adherence to security operations procedures, assessing real and potential security breaches, and ensuring thorough investigation and resolution. * Familiarity with IT Service Frameworks, methodologies, and industry best practices such as more »

Threat & Vulnerability Manager London – Hybrid Salary: DoE Gresham Hunt is currently partnered with a leading financial services client in the search for an experienced Vulnerability Management professional for their London based team. This is an exciting opportunity to help drive the vulnerability management programme as … years experience across different technical disciplines within the Cybersecurity landscape. Experience using vulnerability scanning tools such as Nessus, Qualys, Rapid7, Wiz, OpenVAS, and penetration testing frameworks like Metasploit. Knowledge of security and risk frameworks, plus regulatory compliance frameworks e.g. NIST, Cobit, ISO 27001. Understanding of OWASP, MITRE, CVSS and … other standards/frameworks relevant to application security and vulnerability management. Experience with cloud technologies, preferably Azure and AWS. Familiarity with security methodologies: Attack and Defensive, Threat Hunting, etc. Scripting experience would be beneficial i.e. Python, Shell, Ansible, Jenkins, etc. Hold relevant industry certifications such as CISSP, CISM, CRISC more »

This opportunity is within our Digital and Technical Service, which is responsible for the University’s use of digital systems and services that support teaching and learning across our campuses. You will collaborate with a variety of teams gaining technical knowledge and experience with a wide number of enterprise technologies. … Role The role of the Cyber Security Analyst Apprentice will perform the following: • Security event monitoring and management • Initiate incident response • Review and act on threat intelligence • Undertake vulnerability management and liaise with Digital Services teams to remediate • Undertake security reviews and security control verification • Raise user … awareness in all matters of Cyber Security · To provide first line technical and user support, covering all aspects of cyber security · Ensure issue resolution is carried out promptly and effectively in a compliant and secure manner · Help to identify risks to security posture · Develop new and review existing information security more »

Cyber Incident Response Manager Cyber Incident Respond Principal/Manager will own all cyber security events throughout the incident life-cycle, ensuring all reporting and escalation flows are performed in adherence to agreed documentation and SLA’s. You will work side by side with the Cyber Detect Team. Cyber Detect … manage all security alerts undertaking triage analysis and technical incident response. Incident readiness is the first step of the incident life-cycle, preparing for the next incident if of the upmost importance. As Respond Manager you will be expected to deliver a strong incident readiness program. This is based in … days a week, x3 remote. £70 – 90,000 + Financial Industry Employment Benefits + Bonuses Lead cross-functional post-incident process reviews to identify and implement continuous improvement initiatives. Partner with Legal, 2LoD, Major Incident Management, Threat Management, Vulnerability Management, Attack Surface Reduction, Software Engineering, Security more »

Yeovil Position: Cyber Security Engineer Location: Yeovil, Somerset, United Kingdom Salary: £40,000 - £45,000 + Great Benefits A longstanding (20+ years) Digital Transformation and IT Service Provider has an exciting new opportunity for a Cyber Security Engineer to join them in Yeovil, securing the infrastructure of high-profile customers. … This business partners with leading tech vendors including Microsoft, Cisco, Juniper, and many more. They add to their customer base year upon year leading them to where they are today, one of the UK's best rated MSPs with an extensive list of clients in the local area and further … someone with a passion for all things Cyber Security, this is the opportunity for you. It offers full responsibility for ensuring customers' data, systems, and networks remain secure, and any possible threats eliminated. The position will see you accountable for implementing, configuring, and maintaining security tools and platforms to prevent more »

Working within the Cyber Security team you'll get the opportunity to further your skills across the implementation, maintenance, and configuration of security tools and platforms; creating policy changes, completing constant monitoring, identifying/resolving issues. and performing vulnerability testing. The role is very diverse covering all aspects of … Cyber Security and would offer an excellent opportunity to further your skills and expand your knowledge working across a variety of different security products and offer the chance to gain additional certifications and experience. You will gain further exposure to End to end threat & vulnerability management Operational support … of security technologies, products, and services Vulnerability scans and identifying vulnerabilities in systems Monitoring for unusual activities, implement defensive protocols, and report incidents Actively assist in evolving the toolkits to deal with potential threats. You will need to have Strong Knowledge of controls or tools such as SIEM, IDS more »

Cyber Security Engineer My client, a leading MSP based in Exeter, is currently looking for a Cyber Security Engineer to join their team and hit the ground running - delivering a suite of technical, operational, and risk management services. Collaborating closely with regional teams, you'll ensure compliance with industry … standards, policies, and procedures, while actively mitigating evolving threats, thus driving forward a diverse array of security enhancement initiatives. Salary: Up to £35,000 DOE Location: Exeter Key responsibilities: Monitor for attacks, intrusions and unusual, Unauthorised or illegal activity Creating and executing strategies to secure and protect networks and data … resources Planning computer and network security upgrades and testing hardware and software related to the upgrade Use advanced analytic tools to determine emerging threat patterns and vulnerabilities i.e. SentinelOne Managing technical problems related to applications and production equipment Addressing intrusions using expertise in computer forensics Engage in 'ethical hacking', for more »

Information Security Manager Are you passionate about safeguarding critical information assets in the fast-paced realm of engineering and technology? Do you thrive on the challenge of ensuring compliance within the intricate landscape of pharmaceutical research? If so, we have the perfect opportunity for you! Overview: As a Information Security … Manager, you will play a pivotal role in fortifying my clients defenses and upholding regulatory compliance across their operations in the US, UK, and Europe. You'll work independently to champion and enforce best practice inline with policies and frameworks. Responsibilities: Governance, Risk, and Compliance (GRC): Lead the development and … implementation of robust information security policies, procedures, and controls to ensure compliance with industry standards and regulations. Risk Management: Identify, assess, and mitigate information security risks across all facets of our business operations, with a focus on safeguarding sensitive data and intellectual property. Security Operations: Oversee the day-to more »

a UK-wide MSP in hiring an IT Engineer to their IT Function due to excited growth. This role is pivotal to delivering, maintaining, and supporting the internal IT infrastructure. The main purpose of the role is to provide 1st and 2nd line support to the business through end-user … support, whilst also supporting the on-going maintenance and improvement of systems. There will also be opportunities to deliver digital transformation projects across the business. This is an amazing opportunity for an Junior Engineer who is looking to join a high-performing team, and an organisation that will support and … propel future career opportunities. Duties and Responsibilities: - Work as part of a fast-paced and vibrant team - Support internal and external end users - 1st and 2nd Line Support to analyse queries and customer incidents - Establishing and maintaining high standards of incident ownership throughout the full lifecycle Essential: - Proven track record more »

Are you a Cloud technologist? You could be progressing your career in a senior, hands-on role at a global FinTech with flexible working and a range of perks and benefits including continual professional development. As a Senior Cloud Engineer you will join a global team responsible for delivering Azure … cloud based platforms and services for use by engineering teams across the global business. The Azure estate consists of 74 active subscriptions, 3000 IaaS boxes, thousands of PaaS services with over 5000 containers running at one time. You'll help to improve cloud technologies including automation, IaC and security by … design. There's a broad range of responsibilities including handling requests related to system administration, operations governance, threat/vulnerability management and incident response, you'll collaborate with engineering teams to evaluate and identify optimal cloud solutions providing subject matter expertise across a range of Azure based services. more »

Lead. This role will be responsible for establishing an Application Security function from the ground up, which will involve the implementation of tooling, processes and frameworks. As the first Application Security hire, you will work closely with Application, Platform, and Support teams, to embed a shift left culture within SDLC. … Responsibilities: Lead on application threat and vulnerability management for prioritising and fixing vulnerabilities. Cultivate strong relationships with IT and Security stakeholders. Monitor application security tools and metrics against SLAs. Collaborate with the wider Security and development teams on deploying scanning tech. Partner with Security teams to assess and … mitigate application vulnerabilities. Coordinate with IT and Enterprise Security for deploying and maintaining scanning solutions. Requirements: Experience in building Application Security programmes. Previous hands-on experience as an AppSec Engineer, Software Security Engineer or Software Engineer will be advantageous. Experience in implementing SAST/DAST/SCA tooling. Knowledge of more »

Security & Network Operations Analyst is wanted by an established FinTech software company, who are undertaking a large digital transformation into AI, Automation and Chat GPT. This role will play a vital role in supporting, maintaining, and monitoring tooling and business application logs that ensure protection against cyber security threats, and … remain compliant. This analyst will help develop and mature security/operational functions whilst rubbing shoulders with other incredible tech talent. Someone with strong knowledge of Network Security and Security Operations is desired. We’re seeking a Analyst that is able to demonstrate skills/knowledge such as; Ability to … react to high pressure dynamic changing environments Demonstrable experience SIEM & Network technologies using Sentinel. Detailed experience of log analysis including KQL and SQL queries. An understanding of Threat and Vulnerability Management. Experience with Defender XDR, Defender Endpoint Identity, Defender for Cloud and Cloud Apps. Strong understanding of Azure and more »

Senior Security Engineer (UK-based, Perm (Hybrid)) is required by a leading financial trading organisation. The firm is currently experiencing a period of expansion and is looking to appoint a senior Security technologist to join the team in London. The role is a blend of security engineering (design-build) and … SecOPs (operations-mitigation) ostensibly across the organisations' corporate systems and (security) vendor products, and would suit an experienced engineer with deep knowledge of security principles in line with the CISSP CBK domains such as security monitoring, intrusion prevention & detection, network security, endpoint management & protection, identity management, threat detection … vulnerability management. Whilst the position entails significant exposure to vendor products and tooling, the incoming engineer should demonstrate an open-source mentality and an appetite to automate where possible, strong coding skills are preferable. Culturally, the organisation can be described as collegiate with a data-driven approach to trading more »

a leading international bank who are seeking a well-rounded Cyber professional, to work alongside the CISO as a senior member of the team and trusted advisor on a range of cyber challenges and issues. The successful candidate will have: Strong Security governance, risk and compliance (GRC) with knowledge of … information security standards such as Cyber Essentials, ISO 27001, NIST. Experience developing and implementing operational policies and standards. Demonstrable experience in a variety of areas such as cloud security, IAM, 3rd party risk, threat assessments and vulnerability management. Strong knowledge of cyber security architecture. Relevant certifications would be beneficial … e.g. TOGAF, SABSA). Ability to interact with and challenge technical teams and the methodologies they are implementing. Experience working with the Financial Services industry. Strong interpersonal skills and experience of developing strong relationships and significant influencing abilities, within a large corporate environment. Relevant cyber qualifications, e.g. CISSP, CISM, CRISC. more »