1 to 25 of 35 Vulnerability Management Jobs in the North of England

required to join our global client's new UK cybersecurity team. This role is predominantly end-client facing, advising on security best practices, vulnerability management and security standard compliance (e.g. NIST, ISO, PCI DSS etc), and leading audits and examinations. You will be reporting to the UK Head … Skills & Experience Required: 4+ years of experience working in Cyber Security within an AWS cloud environment Any experience with CrowdStrike would be a bonus Vulnerability management & Compliance Strong Security standard knowledge and experience, consulting on a range of security policies and standards such as GDPR, ISO, PCI, NIST ...

. Providing senior leadership with insightful reports, dashboards, and actionable recommendations on security posture, risks, and incidents. Leading cyber risk assessments, third-party risk management, vulnerability remediation, patch management (soon transitioning to a third-party provider-opportunity to put your stamp on processes), and supplier compliance. Overseeing … incident management, coordinating audits, penetration testing (third-party delivered, but you will shape scoping and remediation), and contributing to disaster recovery/business continuity. Mentoring and developing the team to high performance, aligned with SFIA framework. Building strong relationships with stakeholders, executive leaders, SOC partners, vendors, and auditors. Championing ...

Please find below the updated job description for the Governance & Risk Management Consultant role: Need Active SC Clearance Role Summary We are looking for a Governance & Risk Management Consultant (15+ years experience) with strong expertise in compliance mapping, vulnerability risk management, and risk escalation. The role … focuses on aligning platforms to security frameworks and managing vulnerability lifecycles across hybrid and cloud environments. Key Skills Required Security Controls Framework mapping (NIST, ISO 27001, NHS DSP Toolkit, NCSC CAF) Strong exposure to vulnerability risk management across hybrid and cloud estates (AWS, Azure) Governance oversight ...

Senior Security Threat & Vulnerability Manager role at a leading UK telecoms provider. Own the end-to-end TVM lifecycle across hybrid on-prem/cloud environments: strategy, scanning, triage, remediation, and governance.? Lead Enterprise Threat & Vulnerability Management - Own the Cyber Frontline! Senior Security Threat & Vulnerability Manager … client is a leading UK Telecoms Provider looking for an experienced Threat & Vulnerability Manager to lead enterprise threat and vulnerability management across hybrid on-prem and cloud environments. Own it all : From asset discovery & scanning to patch orchestration and exec reporting - unblock teams, automate noise, integrate with ...

documentation, standards, and risk registers. Security Operations & SOC Monitor, analyse, and respond to security events and incidents. Strengthen detection, response, and resilience capabilities. Support vulnerability management and remediation activities. OT & Cross Domain Security Provide expertise in Operational Technology environments. Design and assure secure cross-domain solutions and data … transfer mechanisms. Evaluate network segregation and high-assurance controls. Penetration Testing & Vulnerability Management Conduct or oversee penetration testing engagements. Assess vulnerabilities and validate remediation strategies. Support red/blue team activities where required. Service & Product Security Embed security into live service management processes. Act as Product Security ...

Cybersecurity consultant with experience of working in OTICS environment and done consulting and implementation work Proven experience in OTICS cybersecurity including risk assessment and vulnerability management Strong knowledge of OTICS systems protocols and security best practices Highly skilled in conducting network analysis and scanning to identify potential cyber … NISTCSF NERC CIP C2M2 OTCC etc Skills Mandatory Skills : OT Security - OT/ICS Cybersecurity, OT Security - OT/ICS Cybersecurity Threat and Vulnerability Management, OT Security - OT/ICS Network Segmentation ...

upgrading enterprise server and storage hardware Providing internal support for office hardware including, PCs, laptops, mobile devices (Windows OS, iOS, MacOS and Android) Vulnerability management using scanning tools such as Nessus Remediation/automation of software rollout using Ninite/PDQ Configuring and monitoring of Anti-virus software … Mobile Device Management Firewall/Switch management Configuration, patching and upgrading Administering Microsoft Active Directory, Exchange Server & Office 365 Achieving recognised Cyber Security accreditation Management of video conferencing Management of enterprise level phone system Monitoring and managing the availability and scalability of resources, including CPU usage ...

upgrading enterprise server and storage hardware • Providing internal support for office hardware including, PCs, laptops, mobile devices (Windows OS, iOS, MacOS and Android) • Vulnerability management using scanning tools such as Nessus • Remediation/automation of software rollout using Ninite/PDQ • Configuring and monitoring of Anti-virus software … Mobile Device Management • Firewall/Switch management - Configuration, patching and upgrading • Administering Microsoft Active Directory, Exchange Server & Office 365 • Achieving recognised Cyber Security accreditation • Management of video conferencing • Management of enterprise level phone system • Monitoring and managing the availability and scalability of resources, including CPU usage ...

responsible for assisting with the day to day operation of CISO office tasks. Analysts are also encouraged to participate in proactively identifying sources of vulnerability and threat. The role will be part of a worldwide team that is empowered to operate the activities within their assigned function. Daily activities … will focus heavily on request, event and incident management and direction will be provided by the Information Security Manager. Norton Rose Fulbright is committed to the professional development of its staff. There will be significant development opportunities for the Senior Information Security Analyst role, both through ...

security controls. You will also be responsible for the design and implementation of security solutions to mitigate risks. Your responsibilities will include: Implementation, and management of security systems, including Firewalls, intrusion detection/prevention systems, DLP, endpoint protection, MDM, SIEM, IAM, vulnerability management Responding to security events … incidents Performing regular security audits and risk assessments Maintaining security controls, identify risks and propose treatment plans Conducting regular vulnerability scans and penetration tests Ensuring compliance with relevant regulations, standards, and frameworks (eg, GDPR, ISO 27001, NIST) Essential experience includes: Experience in networking, infrastructure (on-prem ...

place within the firm. The team operates a number of security solutions directly, such as anti-malware solutions, Internet security proxy servers, and the vulnerability scanning platforms. Key Responsibilities: * Review, action, and escalate, any unusual event behaviour identified. * Assist with development and maintenance of the Firm-wide security infrastructure … Azure Sentinel for detecting, investigating, and responding to suspicious behaviors and anomalous activities. * Familiarity with endpoint security solutions and security infrastructure, including EDR, vulnerability management tools, DLP solutions, and removable media encryption. * Working knowledge of cloud based web and email filtering solutions such as , Zscaler, Mimecast, Proofpoint ...

Responsibilities Full end-to-end ownership of corporate IT operations (cloud, infrastructure, frontline support) Administration and optimisation of multi-tenant Microsoft Azure environments Management of Microsoft 365, Windows Server (2016+), Active Directory/Entra ID, and hybrid environments Oversight of a UK offsite data centre Leadership of Business Continuity … testing Maintenance and enhancement of ISO 27001 security posture Acting as the senior technical escalation point Driving ITIL-aligned incident, change, asset, and identity management processes Leading vulnerability management, patching, and security awareness initiatives Managing third-party vendors and managed service providers Owning documentation, governance, and compliance ...

activity using analysis tools; resolve or escalate issues/incidents as appropriate Support the IT team in conducting security impact assessments Assist with change management reviews where IT security may be affected Promote and maintain security awareness across the organisation Manage the IT Controls Assurance Program (ICAP) for internal … understanding, or experience in some of the following: IT operations, preferably with exposure to governance, internal audit, or cybersecurity ISO 27001, GDPR, and risk management frameworks Security tools for Vulnerability Management, SIEM, AV/EDR/XDR, and DLP (e.g., Splunk, Qualys, Defender, Purview, CrowdStrike) Windows Server ...

backups, and disaster recovery planning Respond to and resolve major incidents and technical issues , performing root cause analysis where required Implement security best practices , vulnerability management, and compliance controls Develop automation and infrastructure-as-code solutions to streamline operations Provide technical support and mentoring to colleagues and Service … organisations , including due diligence and infrastructure planning Work with third-party providers and vendors to maintain service delivery Maintain clear technical documentation and change management processes Skills & Experience 3 years’ plus experience in a Cloud or Infrastructure Engineering role Strong troubleshooting, analytical, and problem-solving skills Ability to manage ...

ISMS in line with ISO/IEC 27001. Maintain Cyber Essentials Plus certification, ensuring ongoing compliance with technical controls. Develop and maintain the Security Management Plan, with a focus on resilience, availability, and service continuity. Provide regular assurance reporting to senior leadership and stakeholders. Risk Management & Compliance … guidance from the National Cyber Security Centre. Work with internal teams and suppliers to implement proportionate and effective security controls. Security Operations & Incident Management Act as the primary point of contact for security incidents, leading or coordinating response activities. Take a hands-on role in incident investigation, root cause ...

cybersecurity. They offer a supportive environment with investment in modern tools, frameworks, and professional development. Description Conduct and support information security risk assessments, vulnerability reviews, and the maintenance of the risk register. Monitor security alerts across platforms such as SIEM, endpoint security, and DLP tools, investigating incidents as required. … external security risks. Profile Experience in information security, risk assessment, and incident response within a regulated or structured environment. Familiarity with security monitoring tools, vulnerability management, and supporting audit activities. Understanding of security frameworks such as ISO 27001, NIST, or Cyber Essentials. Strong communication skills, with the ability ...

both AWS and GCP (essential) Deep understanding of CI/CD pipelines, build tools, artifact repositories, and developer platforms Expertise in secure software delivery, vulnerability management, and platform security Experience with threat modelling, security frameworks, and maturity assessments Strong knowledge of application security, network security, and cloud security … principles Excellent stakeholder management and communication skills Desirable: Experience in financial services or regulated environments Knowledge of Kubernetes and container security Familiarity with supply chain security, SBOM, and secure development practices Relevant certifications (eg CISSP, CISM, CCSP) This is a key role focused on shaping and embedding secure ...

based platforms and data environments (Azure preferred) Contribute to cybersecurity R&D, prototyping new capabilities and exploring emerging technologies Support Real Time threat detection, vulnerability response, and cyber operations Collaborate with cross-functional teams to deliver scalable, production-grade solutions Key Requirements Strong data engineering and analytics experience (essential … alongside cybersecurity expertise Proven experience in IAM (Identity & Access Management), cyber operations, and/or vulnerability management Hands-on experience with big data technologies (eg Databricks, Spark) and cloud platforms Proficiency in Python or similar programming languages Experience developing data-driven solutions within cybersecurity environments Strong understanding ...

cybersecurity. They offer a supportive environment with investment in modern tools, frameworks, and professional development. Description Conduct and support information security risk assessments, vulnerability reviews, and the maintenance of the risk register. Work closely with SOC team and infrastructure team for remediation plan Assist with regulatory and audit obligations … ongoing monitoring of external security risks. Profile Experience in information security, risk assessment within a regulated or structured environment. Familiarity with security monitoring tools, vulnerability management, and supporting audit activities. Understanding of security frameworks such as ISO 27001, NIST, or Cyber Essentials. Strong communication skills, with the ability ...

Experience Required: 3+ years of experience as a SOC/Security Engineer within a cloud environment Experience with a range of SIEM, SOAR and vulnerability management tools Experience advising on security best practices and developing SOC playbooks Networking and infrastructure experience, including with Firewalls and IDS/… Ideally, some relevant cybersecurity certifications Hands-on technical implementation AWS policies configuration CrowdStrike setup and management Security tools deployment This is a nice, varied role carrying out detect and response duties in-house as well as consulting on security with external end-clients for our client's application suite ...

Skills: Strong analytical and problem-solving skills are essential. The analyst must be able to assess complex IT systems and identify risk factors, interpret vulnerability data, and quantitatively rate risks. Attention to detail is critical for reviewing large lists of EOL assets and ensuring nothing is missed. Cybersecurity Knowledge … security and risk principles (e.g., CompTIA Security+, Certified Ethical Hacker (CEH), or GIAC/GSEC) would be a plus. Certifications specifically in risk management or governance (such as CRISC, Certified Information Systems Auditor (CISA), or ISO 27001 Lead Auditor/Implementer) are also advantageous for this role, as they ...

within a cloud environment Have good Security architecture experience, ideally with a DevSecOps environment Excellent experience with PCI DSS and able to lead design Vulnerability management & Compliance Strong Security standard knowledge and experience, consulting on a range of security policies and standards such as GDPR ...

projects both remotely and onsite Troubleshooting advanced issues across servers, networks, security and cloud platforms Working across Microsoft 365, Entra, virtualisation, scripting and endpoint management Managing and maintaining documentation, SOPs and technical guides Providing mentorship to junior engineers and supporting wider service improvement Ensuring best practice across security, compliance … administration, networking (LAN/WAN, firewalls, VPNs), and cloud technologies Advanced troubleshooting skills across hardware, software and infrastructure Understanding of security principles, compliance and vulnerability management Excellent communication skills and a strong client-focused mindset Full UK driving licence Why this role stands out Real technical variety across ...

clients targeted by cyber-attacks. Produce accurate and timely incident reports for both internal and client-facing audiences. Deploy and configure SIEM, EDR, and Vulnerability Management tools as part of client onboarding. Perform malware analysis and event correlation to extract and operationalise Indicators of Compromise. Develop new detection ...

impacted by cyber incidents or suspicious activity. Assist with the onboarding of new environments, including deployment and configuration of SIEM, EDR, and vulnerability management tools. Support threat hunting activities, malware analysis, and identification of indicators of compromise (IOCs). Correlate security events across multiple systems to identify patterns ...