1 to 25 of 60 Vulnerability Management Jobs in the North of England

background is required to join our global client's UK cybersecurity team. This role is predominantly end-client facing, advising on security best practices, vulnerability management and security standard compliance (e.g. NIST, ISO, PCI DSS etc), and leading audits and examinations. Skills & Experience Required: 2+ years of experience … working in Cyber Security within an AWS cloud environment Vulnerability management & Compliance Strong Security standard knowledge and experience, consulting on a range of security policies and standards such as GDPR, ISO, PCI, NIST Confidence when speaking with stakeholders and clients, as well as the ability to provide training ...

organisation's information assets. You will design, implement, and maintain robust security measures to defend against evolving cyber threats. Working closely with IT, risk management, and compliance teams, you will help shape and enforce our security policies and practices. Benefits Competitive salary package reflecting your skills and experience. Comprehensive … Security Engineering (AppSec) Secure Development Lifecycle (SDLC): Integrate security tools and processes into the CI/CD pipelines (DevSecOps), ensuring security is "shifted left." Vulnerability Management: Manage and execute Static Application Security Testing (SAST) and Dynamic Application Security Testing (DAST) on proprietary applications. Remediation & Guidance ...

organisation's information assets. You will design, implement, and maintain robust security measures to defend against evolving cyber threats. Working closely with IT, risk management, and compliance teams, you will help shape and enforce our security policies and practices. Benefits Competitive salary package reflecting your skills and experience. Comprehensive … Security Engineering (AppSec) Secure Development Lifecycle (SDLC): Integrate security tools and processes into the CI/CD pipelines (DevSecOps), ensuring security is "shifted left." Vulnerability Management: Manage and execute Static Application Security Testing (SAST) and Dynamic Application Security Testing (DAST) on proprietary applications. Remediation & Guidance ...

Vulnerability Management SME 6-month contract Market rate - inside IR35 Hybrid 2/3 days a week in Sheffield We are seeking an experienced contractor to provide specialist expertise in identifying, analysing, and prioritising technology resilience vulnerabilities across critical services. The role will support resilience risk assessments, vulnerability remediation activities, and regulatory assurance requirements across the technology environment. Key Responsibilities Support the identification and assessment of technology resilience vulnerabilities Analyse vulnerability impacts against resilience tolerances and critical service requirements Support remediation planning and challenge the effectiveness of control improvements Produce vulnerability insight, prioritisation, and assurance ...

appetite with a particular focus on AI Technical Engineering Leadership Oversee the engineering and integration of security controls across platforms including identity and access management network security endpoint protection and data security Champion automation and secure by design principles Platform Security Drive the secure design and operation of critical … technology platforms collaborating with platform owners and engineering teams to embed security throughout the lifecycle Incident Response Threat Management Provide technical oversight for incident response threat detection and vulnerability management Lead root cause analysis and remediation of complex security incidents Stakeholder Engagement Act as a trusted advisor ...

function responsible for protecting the organisation's information assets, technology services, and users. This role oversees all security operation functions, incident response, threat detection, vulnerability management, and continuous improvement of the organisation's security posture. Working closely with Infrastructure, Cloud, Architecture, Governance, Compliance and Risk teams, the manager … operational procedures, playbooks, and response frameworks. Direct the full incident response lifecycle: detection, triage, containment, eradication, recovery, and post-incident review. Coordinate major incident management with IT Infrastructure, Cloud, and Business teams. Ensure lessons learned are captured and drive meaningful improvement. Oversee the vulnerability management programme, ensuring ...

automated controls. Partner with platform owners to remediate critical gaps and implement scalable solutions for artifact integrity, access control, and configuration security. Integrate vulnerability management, SBOM, provenance, and code-signing practices within engineering workflows. Roadmap Development & Execution Prioritise identified gaps based on business risk, regulatory impact, and operational … pipeline design, integration of security scanning tools, and automation of security controls. Strong knowledge and understanding of service mesh, cryptography, network security, application security, vulnerability management, and risk management. Demonstrable ability to conduct threat modelling, platform security assessments, and gap analysis. Experience building and implementing maturity models, frameworks ...

platforms in a fast paced and highly regulated (FCA) environment. The role ensures high availability and uptime of business-critical systems, leads proactive operational management, and governs planned change delivery to minimise business disruption. The Head of IT Infrastructure owns the infrastructure operating model, including incident/problem management, capacity planning, patching and vulnerability management, supplier management & performance, and technical governance, while providing clear executive-level reporting on operational health, risk posture, and service performance. You will support the vision and strategy for service management in line with company strategy, ensuring processes are owned ...

responding to security threats, while driving continuous improvement across our security operations capability. Youll play a key role in incident response, threat intelligence, vulnerability management and ensuring effective use of our security tools and processes to reduce risk across the technology estate. Key responsibilities Monitor, triage and respond … trends, risks and potential threats Act as an escalation point for information security queries from colleagues and service delivery teams Support and coordinate patch management activities, validating effectiveness through vulnerability scanning Oversee and operate key security technologies, including SIEM, email and web gateways, and endpoint protection tools Monitor ...

cybersecurity experience, strong technical expertise, and a risk-focused mindset. Key Responsibilities Implement, manage, and monitor security solutions across networks, systems, and applications Conduct vulnerability assessments, risk analysis, and security testing Monitor security alerts and respond to incidents in line with security policies Configure and maintain firewalls, endpoint protection … related field Minimum 3+ years of experience in cybersecurity engineering or information security roles Strong understanding of cybersecurity principles, frameworks, and risk management Hands-on experience with firewalls, SIEM tools, endpoint protection, and security monitoring solutions Knowledge of networking concepts, protocols, and security practices Experience with vulnerability management ...

upgrading enterprise server and storage hardware • Providing internal support for office hardware including, PCs, laptops, mobile devices (Windows OS, iOS, MacOS and Android) • Vulnerability management using scanning tools such as Nessus • Remediation/automation of software rollout using Ninite/PDQ • Configuring and monitoring of Anti-virus software … Mobile Device Management • Firewall/Switch management - Configuration, patching and upgrading • Administering Microsoft Active Directory, Exchange Server & Office 365 • Achieving recognised Cyber Security accreditation • Management of video conferencing • Management of enterprise level phone system • Monitoring and managing the availability and scalability of resources, including CPU usage ...

controls Experience developing cyber resilience and disaster recovery Confidence to communicate effectively with all layers of the business, including the delivery of reports to management and training and best-practice guidance to all staff Drive efficiency through automation utilising PowerShell, with integration to Microsoft services such as Active Directory … Graph API Responsibilities: End to end management of phishing, through design, scheduling, reporting and training. Conduct staff training covering emerging threats, end-user best practices, phishing, password management and more. Vulnerability management life cycle including detection and remediation Maintain third party 24/7 SOC relationship ...

controls Experience developing cyber resilience and disaster recovery Confidence to communicate effectively with all layers of the business, including the delivery of reports to management and training and best-practice guidance to all staff Drive efficiency through automation utilising PowerShell, with integration to Microsoft services such as Active Directory … Graph API Responsibilities: End to end management of phishing, through design, scheduling, reporting and training. Conduct staff training covering emerging threats, end-user best practices, phishing, password management and more. Vulnerability management life cycle including detection and remediation Maintain third party 24/7 SOC relationship ...

controls Experience developing cyber resilience and disaster recovery Confidence to communicate effectively with all layers of the business, including the delivery of reports to management and training and best-practice guidance to all staff Drive efficiency through automation utilising PowerShell, with integration to Microsoft services such as Active Directory … Graph API Responsibilities: End to end management of phishing, through design, scheduling, reporting and training. Conduct staff training covering emerging threats, end-user best practices, phishing, password management and more. Vulnerability management life cycle including detection and remediation Maintain third party 24/7 SOC relationship ...

solutions to reduce identified risks Configure and manage a range of security technologies such as firewalls, intrusion detection/prevention tools, endpoint protection, device management, and monitoring platforms Investigate and respond to cybersecurity incidents, ensuring timely resolution and mitigation Carry out routine audits and risk assessments to maintain … strong security framework Monitor and maintain security controls, producing remediation strategies where necessary Conduct vulnerability assessments and support penetration testing activities Collaborate with internal IT, cloud, and global teams to maintain secure infrastructure Work alongside security operations teams to address threats and operational issues Ensure adherence to recognised standards ...

Python and/or PowerShell to reduce manual effort Build and maintain integrations using APIs, connectors, and webhooks Support infrastructure as code and configuration management initiatives Continuously identify opportunities to automate repetitive security tasks Risk & Governance Support vulnerability management processes and remediation programmes Work closely with Technology … Azure cloud environments Experience with SIEM platforms such as Microsoft Sentinel, Elastic, Splunk, or similar Strong knowledge of detection engineering, alert tuning, and log management Experience with SOAR or security automation tooling Scripting skills in Python and/or PowerShell Experience with EDR, endpoint security, and identity controls Good ...

function, including oversight of any outsourced SOC Managing the full incident response lifecycle (detection through to recovery and post-incident review) Overseeing threat detection, vulnerability management, and cyber defence capabilities Driving improvements across SIEM, SOAR, EDR/XDR, and security tooling Ensuring robust monitoring, alerting, and response across … Operations or SOC function Strong understanding of SIEM, SOAR, EDR/XDR, IDS/IPS, and security tooling Experience managing incident response and threat management in complex environments Strong knowledge of frameworks such as NIST, ISO 27001, or CIS Controls Experience working in cloud environments (Azure ...

both AWS and GCP (essential) Deep understanding of CI/CD pipelines, build tools, artifact repositories, and developer platforms Expertise in secure software delivery, vulnerability management, and platform security Experience with threat modelling, security frameworks, and maturity assessments Strong knowledge of application security, network security, and cloud security … principles Excellent stakeholder management and communication skills Desirable: Experience in financial services or regulated environments Knowledge of Kubernetes and container security Familiarity with supply chain security, SBOM, and secure development practices Relevant certifications (eg CISSP, CISM, CCSP) This is a key role focused on shaping and embedding secure ...

drive remediation activities Coordinate gap assessments and readiness reviews Provide senior leadership with audit and risk reporting Security Testing & Assurance Coordinate penetration testing and vulnerability assessments Work with internal teams and third-party providers Track remediation of security findings Embed testing into change and release processes Support supplier security … certification Familiarity with SWIFT CSCF (desirable) Background in fintech or regulated financial services (preferred) Experience managing audits and working with auditors Understanding of risk management frameworks Experience with control testing and evidence management Knowledge of cloud, infrastructure, and application security concepts Experience coordinating penetration testing and vulnerability ...

cases and automation (SOAR/playbooks) Embed threat intelligence–driven operations and lead proactive threat hunting Align SOC activity to organisational risk and vulnerability prioritisation Act as key interface with national cyber services and internal stakeholders Build and lead a high-performing SOC team, including recruitment and capability development … case development · Team leadership/mentoring Desirable: · NHS experience · SOAR/threat hunting Knowledge & Skills Essential: · SOC operations and threat detection · Threat intelligence and vulnerability management · Strong communication Desirable: · Cloud monitoring · Automation or scripting ...

secure-by-design principles are embedded across all IT changes and lead on security input at the Change Advisory Board. Work closely with Senior Management Team IT & Change colleagues to prioritise security improvements and reduce organisational risk. Ensure security-related changes and risks are communicated clearly and promptly … security. Experience producing and maintaining security documentation (standards, procedures, runbooks). Experience supporting Cyber Essentials, ISO27001, or similar frameworks, including audit readiness. Familiarity with vulnerability management tools and workflows. Experience managing email security, web security, WAFs, Azure tenants, firewalls, and SaaS platforms from a security perspective. What ...

platforms) to strengthen overall security posture Lead on the investigation of security alerts and incidents, ensuring appropriate triage, escalation, and resolution Carry out regular vulnerability assessments, track remediation progress, and provide clear reporting on risk exposure Support the configuration of secure systems and ensure infrastructure is aligned with security … data protection measures Skills & Experience: Demonstrable experience in a cybersecurity or infrastructure-focused security role Practical, hands-on exposure to SIEM platforms and vulnerability management tools Strong understanding of endpoint detection and response technologies (EDR, XDR, MDR) Good working knowledge of common cyber threats, attack methods, and core ...

first line of defence: detect, analyse, and respond to real-time security incidents across razorblue and client networks Take the lead in vulnerability management from scanning and risk analysis to remediation coordination Run proactive security audits and phishing simulations to strengthen awareness and resilience Collaborate with infrastructure … apply. Full UK Driving License Entry-level security certifications (CompTIA Security+, CySA+, etc.) or working toward one Hands-on experience in security incident response, vulnerability assessments, and root cause analysis Skilled in producing incident reports, security metrics, and supporting awareness training Comfortable with internal security audits and refining SOPs ...

first line of defence: detect, analyse, and respond to real-time security incidents across razorblue and client networks Take the lead in vulnerability management from scanning and risk analysis to remediation coordination Run proactive security audits and phishing simulations to strengthen awareness and resilience Collaborate with infrastructure … apply. Full UK Driving License Entry-level security certifications (CompTIA Security+, CySA+, etc.) or working toward one Hands-on experience in security incident response, vulnerability assessments, and root cause analysis Skilled in producing incident reports, security metrics, and supporting training Comfortable with internal security audits and refining SOPs ...

within a cloud environment Have good Security architecture experience, ideally with a DevSecOps environment Excellent experience with PCI DSS and able to lead design Vulnerability management & Compliance Strong Security standard knowledge and experience, consulting on a range of security policies and standards such as GDPR ...