6 of 6 Vulnerability Management Jobs in Sheffield

Vulnerability Management SME 6-month contract Market rate - inside IR35 Hybrid 2/3 days a week in Sheffield We are seeking an experienced contractor to provide specialist expertise in identifying, analysing, and prioritising technology resilience vulnerabilities across critical services. The role will support resilience risk assessments, vulnerability remediation activities, and regulatory assurance requirements across the technology environment. Key Responsibilities Support the identification and assessment of technology resilience vulnerabilities Analyse vulnerability impacts against resilience tolerances and critical service requirements Support remediation planning and challenge the effectiveness of control improvements Produce vulnerability insight, prioritisation, and assurance ...

appetite with a particular focus on AI Technical Engineering Leadership Oversee the engineering and integration of security controls across platforms including identity and access management network security endpoint protection and data security Champion automation and secure by design principles Platform Security Drive the secure design and operation of critical … technology platforms collaborating with platform owners and engineering teams to embed security throughout the lifecycle Incident Response Threat Management Provide technical oversight for incident response threat detection and vulnerability management Lead root cause analysis and remediation of complex security incidents Stakeholder Engagement Act as a trusted advisor ...

automated controls. Partner with platform owners to remediate critical gaps and implement scalable solutions for artifact integrity, access control, and configuration security. Integrate vulnerability management, SBOM, provenance, and code-signing practices within engineering workflows. Roadmap Development & Execution Prioritise identified gaps based on business risk, regulatory impact, and operational … pipeline design, integration of security scanning tools, and automation of security controls. Strong knowledge and understanding of service mesh, cryptography, network security, application security, vulnerability management, and risk management. Demonstrable ability to conduct threat modelling, platform security assessments, and gap analysis. Experience building and implementing maturity models, frameworks ...

both AWS and GCP (essential) Deep understanding of CI/CD pipelines, build tools, artifact repositories, and developer platforms Expertise in secure software delivery, vulnerability management, and platform security Experience with threat modelling, security frameworks, and maturity assessments Strong knowledge of application security, network security, and cloud security … principles Excellent stakeholder management and communication skills Desirable: Experience in financial services or regulated environments Knowledge of Kubernetes and container security Familiarity with supply chain security, SBOM, and secure development practices Relevant certifications (eg CISSP, CISM, CCSP) This is a key role focused on shaping and embedding secure ...

Implement and own RESTful APIs ; contribute to API design standards Apply secure coding principles throughout the development lifecycle (OWASP Top 10, input validation, secrets management, least privilege) Write high-quality, testable code with unit and integration test coverage (JUnit, Mockito, Cucumber/BDD ) Manage CI/CD pipelines using … versioning, HATEOAS OpenAPI/Swagger specification and documentation API security: OAuth2, JWT, token verification Secure Coding Input validation, SQL injection prevention, XSS prevention Secrets management (Jasypt, Vault, or equivalent) Dependency vulnerability management Testing – Cucumber/BDD Writing and maintaining Gherkin feature files Cucumber step definitions and test ...

practices. Proven track record in designing and implementing security controls and solutions at scale. Strong technical expertise in areas such as network security, identity management, cryptography, and automation. Experience leading technical teams and managing cross-functional projects. Willingness to travel as required Excellent communication skills, with the ability … appetite with a particular focus on AI. Technical Engineering Leadership: Oversee the engineering and integration of security controls across platforms, including identity and access management, network security, endpoint protection, and data security. Champion automation and secure-by-design principles. Platform Security: Drive the secure design and operation of critical ...