12 of 12 Vulnerability Management Jobs in the East Midlands

maintain high standards across ISO 27001, Cyber Essentials Plus and wider compliance frameworks. You will: Supporting ISO 27001 activities and ongoing security control management and improvements Supporting vulnerability management processes including remediating findings with both software and configurations Supporting security configuration improvements across our Microsoft 365 environment … Supporting the maintenance of Cyber Essentials Plus, NCSC CAF and other compliance frameworks Contributing to risk management processes, including maintaining risk registers Helping to develop, test and maintain Business Continuity and Disaster Recovery strategies Be comfortable with supporting security documentation creation and maintenance Supporting security awareness initiatives and wider ...

requirements are integrated from design through to deployment. You will also play a key role in shaping and governing the organisation's Identity & Access Management (IAM) strategy, helping to drive improvements in Zero Trust security, privileged access controls, and identity lifecycle management. Key Responsibilities Lead and enhance the organisation … adoption across Azure and AWS environments Drive IAM governance, including MFA, RBAC, PAM/PIM, Conditional Access, and Zero Trust controls Support penetration testing, vulnerability management, and remediation activities Collaborate with internal stakeholders, suppliers, and external partners to improve security posture Contribute to security standards, policies, audits ...

Infrastructure as Code (Terraform or Bicep) Owning complex incidents, changes and escalations across customer environments Driving improvements in automation, security and platform consistency Supporting vulnerability management and security configuration across cloud environments Drive observability across cloud services using Azure Monitor, Log Analytics and application insights Acting … Azure Container Apps) Strong scripting capability (PowerShell essential) Comfortable working across Windows and basic Linux environments Experience working within structured environments (incident, change, problem management) Nice to haves: Familiarity with vulnerability management and security configuration across cloud environments whilst implementing security best practices utilising MS Defender, Entra ...

date policies and procedures? Are you passionate about technology, with a strong customer service ethos, focused on keeping abreast with Information Security Management frameworks and standards ( ISO2701, COBIT, ITIL) Lead Information Security Engineer/Analyst About the company: Do you want to be part of a successful organisation, that … practice relating to information security maintain compliance to these standards. Lead Information Security Engineer/Analyst - Key Responsibilities: Oversee information security, compliance and risk management practices following industry frameworks Take ownership of and establish information security policies, standards and procedures ensuring confidentiality and integrity Conduct regular risk assessments ...

place to alleviate security issues? Are you passionate about technology, with a strong customer service ethos, focused on keeping abreast with Information Security Management frameworks and standards ( ISO2701, COBIT, ITIL) Lead Information Security Engineer/Analyst/Architect - About the company: Do you want to be part … practice relating to information security maintain compliance to these standards. Lead Information Security Engineer/Analyst - Key Responsibilities: Oversee information security, compliance and risk management practices following industry frameworks Take ownership of and establish information security policies, standards and procedures ensuring confidentiality and integrity Conduct regular risk assessments ...

executive incident communications, regulator notifications, and post-incident improvements. Act as escalation point for any security related service failures or major incidents. Threat and Vulnerability Management Support the TVM team in continuously reducing vulnerability levels in the organisation. Recommend procedural improvements and reporting to drive constant improvement. … remediation governance; lead policy lifecycle and attestations. Oversee the enterprise risk process (RCSA, KRIs), executive reporting, and board risk briefings. Improve third-party risk management (carriers, 4PL/3PL partners, SaaS/IaaS providers) and regulatory alignment Business Partnering & PMO Ensure the Business Partnering function embeds security in product ...

maintain current policies, standards, and documentation in line with relevant frameworks such as ISO27001, Cyber Essentials, GDPR and Defence Cyber Certification (DCC). Lead vulnerability management, from scanning and assessment through to remediation. Skills that are a must have are: Used to securing hybrid environments combining on-premises ...

staging, and production environments Implement Infrastructure as Code (IaC) using tools such as Terraform, Ansible, or equivalent Drive best practices for environment consistency, configuration management, and release governance Cyber Security & Compliance Ensure infrastructure is secure by design, incorporating system hardening and access controls Manage vulnerability remediation, patching strategies … databases and messaging systems (PostgreSQL, RabbitMQ) Exposure to monitoring and observability tools (e.g., Prometheus, Grafana) Strong understanding of cyber security best practices, patching, and vulnerability management Ability to produce clear technical documentation and communicate with both technical and non-technical stakeholders Desirable Experience working in industrial, manufacturing ...

large team. Strong cyber security background across infrastructure and systems environments Experience delivering or supporting Cyber Essentials/ISO 27001 Knowledge of: Identity & access management (Entra ID, MFA, Conditional Access) Endpoint & network security (EDR/MDR, Firewalls) Vulnerability management & patching Incident response processes Ability to translate technical ...

level of customer service Provide day-to-day support across Microsoft 365 services and end-user systems (Outlook, Teams, SharePoint, OneDrive), including user account management, device support, and platform administration, carrying out configuration, troubleshooting, and issue resolution Supporting mobile device management (MDM) using IBM MaaS360 & Intune, including device … Assist with VOIP services and data connections, supporting setup, configuration, and fault resolution Support cybersecurity and managed service tools, including system monitoring, patching, backups, vulnerability management, and security alert handling Communicate clearly and professionally with customers at all technical levels, ensuring issues are understood, expectations are managed ...

business and operational risk in clear and pragmatic terms. Lead and participate in cyber incident response exercises and real incidents Own cyber risk management and contribute to the enterprise risk register. Ensure compliance with relevant standards and frameworks (e.g. ISO 27001, NIST, Cyber Essentials, ICS security guidance). Define … customer assurance activities. Remain hands-on in the day-to-day operation of cyber security, including: Incident response and investigation. Security tooling, monitoring, and vulnerability management. Supplier and third-party risk assessment. Experience required Experience owning a cyber security strategy encompassing SecOps, GRC and elements of OT/ ...

organisation. Hands-On DeliveryRemain hands-on in the day-to-day operation of cyber security, including: Incident response and investigation. Security tooling, monitoring, and vulnerability management. Supplier and third-party risk assessment. Lead and participate in cyber incident response exercises and real incidents, ensuring lessons learnt are embedded. Governance … Risk & Compliance Own cyber risk management and contribute to the enterprise risk register. Ensure compliance with relevant standards and frameworks (e.g. ISO 27001, NIST, Cyber Essentials, ICS security guidance). Define and maintain cyber security policies, standards, and procedures across IT and OT. Support audits, assessments, and regulatory ...