12 of 12 Vulnerability Management Jobs in the City of London

testable RPG code in accordance with development standards Ensure all development adheres to secure coding principles and the Bank's IT Development and Risk Management frameworks Participate in Show and Tell sessions with stakeholders Troubleshoot, debug, and enhance existing applications Evaluate and improve legacy systems, including reprogramming and adding … hours support where required Ensure appropriate escalation of risks, incidents, and security concerns Security & Controls Focus Maintain and enhance system security through effective management of user profiles, authorities, and object-level security Implement and review adopted authority, authorization lists, and role-based access controls Ensure compliance with auditing ...

development and implementation of a forward‐thinking cyber security strategy, ensuring systems, data, and services are protected through robust controls, governance, and risk management practices. Working closely with senior stakeholders, you will act as the organisation’s subject matter expert on cyber security, providing clear, actionable advice on risks … ensure alignment with wider technology strategy Drive continuous improvement through security assessments, testing, and reporting Ensure effective incident detection, response, and recovery capabilities Lead vulnerability management and remediation across all technology environments Oversee third‐party security testing, including penetration testing and phishing simulations Promote a strong cyber‐security ...

Infrastructure Operations & Service Reliability (Run) Own and continuously improve the reliability, availability, performance, and security of the UK/EU infrastructure estate. Lead operational management across: On‐prem data centre services (compute, storage, virtualisation, power/cooling/vendor support, capacity) Office infrastructure and connectivity (LAN/WAN/… related integrations Backups, disaster recovery, and business continuity Storage platforms and data protection controls Establish and run effective operational practices: Incident, problem and change management (modern ITSM/ITIL-aligned) Capacity, availability, and performance management Cloud Migration Programme Leadership (Change/Transform) Lead UK/EU infrastructure contribution ...

Infrastructure teams, playing a key role in defending a complex exchange environment against an evolving threat landscape. Key Responsibilities Operate and optimise security and vulnerability management platforms, including liaison with external SOC providers (SIX Group). Lead incident response, ensuring documentation and reporting aligns with DORA timelines; participate … hardening experience (production environment is Linux-based). Knowledge of Windows security & MDM frameworks. Experience with PKI and digital certificates (CA processes, lifecycle management). Deep understanding of network security (firewalls, IDS/IPS, packet analysis). Scripting skills in Python for automation and threat analysis. Strong AWS security ...

outcomes. Key Responsibilities- Lead cyber assurance activities across deployed and planned cyber infrastructure and endpoint environments. Provide assurance over cyber configurations, security controls, access management, risks, and mitigations. Define and implement second-line assurance processes, reporting, and governance approaches. Ensure alignment with cyber security frameworks and standards including ISO27001 … risks are identified, logged, managed, and mitigated through appropriate governance mechanisms. Produce meaningful dashboards, reporting, and assurance evidence for security and leadership teams. Support vulnerability management, penetration testing activities, and baseline compliance assurance. Advise stakeholders on modern cyber tooling and security capabilities, particularly within Microsoft security ecosystems. Evaluate ...

Privacy Operations Analyst, 6 months, London/Hybrid, £525 - £600/day Role Overview This role plays a key role in the operational management of security and privacy risk across the firm’s technology environment. Working with third party service providers, it ensures the effective operation of threat detection … actions (e.g., Logic Apps). Verifying compliance with expected practice in the operation of technology services, including security baseline and access right reviews. Support vulnerability management by tracking remediation, validating fixes, and assisting with reporting. Gather and analyse data to help identify trends, gaps, and areas for control ...

principles Strong communicator: able to advise IT teams on practical security steps, not just theory Experience mentoring staff or junior analysts (no direct line management required) Adaptability to a medium-sized, SME environment What you’ll be doing: Security oversight: Guide InfoSec operations with practical, hands-on input … compliance Azure (and AWS) – IAM, monitoring, encryption Defender, web proxy, CrowdStrike-equivalent – Endpoint & email protection Panorays – Third-party risk Protecht – Enterprise risk & audit management Rapid7/Armis – Vulnerability management and threat detection Why this role? Hands-on, high-impact role in a dynamic SME environment Influence across ...

delivering enterprise security capabilities. Work within SAFe Agile practices, participating in daily stand-ups, sprint planning, retrospectives, and other delivery ceremonies. Maintain accurate workload management, delivery tracking, and time logging within Jira. Engineer, support, and maintain Next Generation Firewall (NGFW) and Secure Access Service Edge (SASE) solutions. Translate customer … following technologies as possible: Enterprise-grade Next Generation Firewalls, particularly: Palo Alto Networks Fortinet Firewall policy administration, security profile configuration, and lifecycle management. Management platforms such as: Panorama FortiManager FortiAnalyzer Strong Routing & Switching fundamentals. Secure Access Service Edge (SASE) platforms and architectures. Load balancing and application delivery technologies, primarily ...

/SOAR Ownership: Enhance and automate our Azure Sentinel capabilities. Incident Response: Investigate real-world threats (malware, phishing, cloud misconfigurations) and ensure rapid remediation. Vulnerability Management: Conduct regular assessments, penetration testing, and risk analysis. Compliance & GRC: Maintain SOC 2 Type II accreditation and lead ISO 27001 readiness. Administer ...

SentinelOne Experience with Microsoft Security platforms and Windows security fundamentals. Familiarity with Linux/Unix-based systems and basic scripting knowledge. Exposure to vulnerability management tools like Rapid7, Tenable, or Qualys. Understanding of the MITRE ATT&CK Framework and Cyber Kill Chain. Ability to communicate technical information clearly ...

optimise SIEM and SOAR platforms, specifically Splunk ES and Splunk SOAR Design and implement integrations between SIEM/SOAR and wider security tooling (EDR, vulnerability management, IAM, etc.) Develop, enhance, and maintain SOAR playbooks to automate investigation and response workflows Support onboarding of log sources into SIEM, ensuring … commercial experience in SOC, SIEM, SOAR, or security engineering roles Strong hands-on experience with Splunk (essential) Solid understanding of SIEM architecture and log management principles Experience building integrations using APIs and scripting languages (e.g. Python, PowerShell) Knowledge of automation and orchestration within security operations Familiarity with security tooling ...

doing: Leading infrastructural improvements in security, recovery and automation Day-to-day support of the cleanroom environment, including incident, problem and change management Ensuring systems meet security and vulnerability management standards Working across compute, converged, storage, backup and archive environments Building and delivering cutting-edge, highly automated ...