Cyber Security VulnerabilityManagement Associate: The Global Information Security (GIS) organization delivers proactive cybersecurity defense for the global Pfizer. Our mission is to identify and drive out critical vulnerabilities across all of Pfizer's digital information assets ranging from the manufacturing floor, distribution centers, core data centers, enterprise … tier technologies, industry leading best practices, advanced analytics and the promotion of a cybersecurity ownership and partnership culture across the company. The Cyber Security VulnerabilityManagement Associate is responsible for performing vulnerability scanning & assessments throughout the enterprise to protect the confidentiality, integrity & availability of information assets using … a risk-based approach. They ensure continuous vulnerability life cycle management with focus on analysis & validation of scan results, setting relative Pfizer risk ratings, providing remediation recommendations, tracking & reporting of vulnerabilities to improve the overall security posture of Pfizer. Please visit the Pfizer UK careers webpage for full more »
Glasgow, City of Glasgow, United Kingdom Hybrid / WFH Options
Lorien
VulnerabilityManagement Analyst (Qualys) £500/day inside IR35 6-month contract Fully remote Lorien's client, a large financial services organization, are recruiting multiple VulnerabilityManagement Analysts (Qualys) in a fully remote, 6-month contract to join their Threat & Vulnerability team, focusing on supporting … their drive to embed and optimise VulnerabilityManagement The VulnerabilityManagement Analysts will support the Bank's security controls for vulnerabilitymanagement, reviewing scanning output in Qualys, assessing and identifying remediation targets, and engaging with key stakeholders to facilitate and manage resolution, with tracking … as a point of escalation, providing specialist security expertise for vulnerabilities which threaten Virgin Money by leading the appropriate incident response. Essential: The Qualys VulnerabilityManagement solution, with a good level of knowledge and understanding, the ability to operate as an SME, and to provide support to develop more »
VulnerabilityManagement Analyst (Security) Glasgow (Hybrid) £500 p/d (Inside IR35) 6 month contract Are you a cybersecurity enthusiast ready to make a real impact? Join our dynamic Threat & Vulnerability team as a VulnerabilityManagement Analyst on a 6 month contract. We're seeking … two individuals to collaborate closely with our teams, prioritising and managing remediation efforts. The VulnerabilityManagement Analyst will support the client's security controls for vulnerabilitymanagement, reviewing scanning output in Qualys, assessing and identifying remediation targets, and engaging with key stakeholders to facilitate and manage … resolution, with tracking of work to report on progress. Key Responsibilities: The Qualys VulnerabilityManagement solution, with a good level of knowledge and understanding, the ability to operate as an SME, and to provide support to develop existing team members Use VulnerabilityManagement solutions, supporting team more »
Cyber Security Vulnerability Manager Our client, a leading organization in the energy and utilities industry, and is seeking a highly motivated and experienced Cyber Security Vulnerability Manager to join their team. The ideal candidate will have a deep understanding of vulnerabilitymanagement principles and practices, as … well as the ability to develop, implement, and manage a comprehensive vulnerabilitymanagement program for a complex enterprise environment. In addition, the candidate should ideally have experience in OT vulnerabilities and their impact on industrial control systems (ICS) and critical infrastructure. Essential Duties and Responsibilities Lead the development … and implementation of a robust vulnerabilitymanagement program aligned with the organization's overall security strategy and risk tolerance. Utilize a variety of vulnerability scanning tools, penetration testing methodologies, and threat intelligence feeds to identify, assess, and prioritize security vulnerabilities across the organization's systems and networks more »
Cyber Security Vulnerability Manager Our client, a leading organization in the energy and utilities industry, and is seeking a highly motivated and experienced Cyber Security Vulnerability Manager to join their team. The ideal candidate will have a deep understanding of vulnerabilitymanagement principles and practices, as … well as the ability to develop, implement, and manage a comprehensive vulnerabilitymanagement program for a complex enterprise environment. In addition, the candidate should ideally have experience in OT vulnerabilities and their impact on industrial control systems (ICS) and critical infrastructure. Essential Duties and Responsibilities Lead the development … and implementation of a robust vulnerabilitymanagement program aligned with the organization's overall security strategy and risk tolerance. Utilize a variety of vulnerability scanning tools, penetration testing methodologies, and threat intelligence feeds to identify, assess, and prioritize security vulnerabilities across the organization's systems and networks more »
Security Engineer (VulnerabilityManagement Microsoft Azure) Reigate to £80k Do you have a good knowledge of Microsoft Security, Vulnerability and Patch management? You could be progressing your career in a hands-on role at a global FinTech with flexible working and a range of perks and … benefits including continual professional development. As a Security Engineer within the Vulnerability and SecOps team you will be responsible for managing vulnerability across business critical services that are used by clients and internal colleagues across the globe. You will act as the SME and primary point of contact … for Patch Management, VulnerabilityManagement and Technical Security Testing (i.e. Penetration Testing). You will support the investigation and remediation of the vulnerabilities identified, conducting root cause analysis for vulnerabilities related to critical incidents and driving the prioritisation and risk reduction, collaborating across teams to undertake vulnerabilitymore »
security controls and processes within Insight Investment in line with cyber security risks and the cyber security policies and standards. This includes Identity & Access Management (IAM), PAM security monitoring, cloud security, scheduled security checks, security monitoring working with the MSSP (SIEM and other), security incident management, pen-testing. … vulnerabilitymanagement and KRI/KPI reporting. Role Responsibilities Developing a familiarity with new tools and best practices for security operations Defining, implementing and maintaining operational security processes Reviewing and maturing the Identity and Access Management process in line with industry best practice Reviewing incoming SOC requests … the report and following through mitigations/remediation plans Assisting in the development of new and changes to existing security policies and standards Chairing Vulnerabilitymanagement meetings and following through on reports and remediation with the tech teams. Performing risk analysis on when vulnerabilitymanagement incidents more »
Glasgow City, Scotland, United Kingdom Hybrid / WFH Options
Change Digital – Digital & Tech Recruitment
VulnerabilityManagement Analysts – Glasgow – up to £500 per day (Inside IR35 – Remote) Change Digital are working on a couple of exciting contract roles with a leading financial services organisation in the UK within their Threat and Vulnerability team. The role will involve working closely with the Application … technical and communication skills to really make a difference to the customers and your own colleagues. You will support the organisations security controls for vulnerabilitymanagement, reviewing scanning output in Qualys, assessing and identifying remediation targets, and engaging with key stakeholders to facilitate and manage resolution, with tracking … expertise for vulnerabilities which threaten the organisation by leading the appropriate incident response measures. To be brilliant you’ll bring experience in: The Qualys VulnerabilityManagement solution, with a good level of knowledge and understanding, the ability to operate as an SME, and to provide support to develop more »
per day via Umbrella Start: asap Location: Glasgow but remote considered Duration: 6 month contract Our financial Services client is looking for a Vulnerability and Threat Management Analyst to support their IT Security Function The VulnerabilityManagement Analyst will support the Bank's security controls for … vulnerabilitymanagement, reviewing scanning output in Qualys, assessing and identifying remediation targets, and engaging with key stakeholders to facilitate and manage resolution, with tracking of work to report on progress. The Analyst will also support the team as a point of escalation, providing specialist security expertise for vulnerabilities … which threaten the bank by leading the appropriate incident response. Experience needed: Qualys VulnerabilityManagement solution - good level of knowledge and understanding, the ability to operate as an SME, and to provide support to develop existing team members Industry related security qualification (e.g. CISSP, CISM) or equivalent practical more »
Vulnerability and Compliance Manager - 65k + 20% Bonus Hertfordshire based defence company are recruiting for a Vulnerability and Compliance Manager to join there UK team. The opportunity: Supporting the IM SOC to defend against cyber threats and vulnerabilities by ensuring the company is following best practice. You will … through compliance to relevant security standards and confirm that remediation is completed in accordance with the identified risk categorisation. This role has first line management responsibilities. This is a traversal function that covers all areas of IM and the business which will require international collaboration. Responsibilities Familiarity with Infrastructure … and web application scanning tools (e.g. Tenable or Qualys) and relevant remediation management/risk tools supported in the Security Operations Centre (SOC) Demonstrable experience managing vulnerabilities (planning and remediation) Experience of first line management A demonstrable knowledge of Vulnerability lifecycle management (MITRE) and IT/ more »
Stevenage, England, United Kingdom Hybrid / WFH Options
Anson McCade
Vulnerability Manager Location: Stevenage - SG1 2DA - Onsite 2-3 Days per week Clearance: Must be able to obtain or hold active SC Clearance!* Employment Type: Full Time The Opportunity: Europe's #1 Integrated Defence Company seeks an influential Vulnerability & Compliance Manager to help support the Cyber Defence capabilities … our Armed Forces. Role & Responsibilities: Remediation Oversight: Report, track, and manage remediation activities for all IM estate infrastructure and applications. Leadership: Lead first-line vulnerability analysts and collaborate on strategic plans for vulnerabilitymanagement and accreditation compliance. Compliance Support: Assist in compliance, due diligence, and audits while … staying updated on regulatory requirements. Security Advocacy: Champion security best practices and provide technical advice on both vulnerabilitymanagement and remediation. Threat Management: Proactively identify and communicate external threats and themes. Prioritisation Guidance: Advise on prioritizing patch deployment and remediation activities for technical and non-technical audiences. more »
Stevenage, Hertfordshire, South East, United Kingdom
Henderson Scott
Vulnerability and Compliance Manager - 65k + 20% Bonus Hertfordshire based defence company are recruiting for a Vulnerability and Compliance Manager to join there UK team. The opportunity: Supporting the IM SOC to defend against cyber threats and vulnerabilities by ensuring the company is following best practice. You will … through compliance to relevant security standards and confirm that remediation is completed in accordance with the identified risk categorisation. This role has first line management responsibilities. This is a traversal function that covers all areas of IM and the business which will require international collaboration. Responsibilities Familiarity with Infrastructure … and web application scanning tools (e.g. Tenable or Qualys) and relevant remediation management/risk tools supported in the Security Operations Centre (SOC) Demonstrable experience managing vulnerabilities (planning and remediation) Experience of first line management A demonstrable knowledge of Vulnerability lifecycle management (MITRE) and IT/ more »
City of London, London, United Kingdom Hybrid / WFH Options
Vanquis Banking Group
You and Your Team: The Security Engineering team is responsible for the security technology stack of the group; design, implementation, and ongoing maintenance/management, in order to maintain and strengthen the groups security posture. Reporting into the Head of Cyber Security Operations, this role is responsible for performing … are defined in the Cyber Security Operating Model, as well as managing an agile engineering team - responsible for the day-to-day direction and management of direct reports. The Principal Security Engineer is responsible for implementing and communicating technical security policies and standards, ensuring other technical teams build systems … key Security standards such as ISO27001, SANS, PCI-DSS and NIST, and the ISC2 Common Body of Knowledge. SME level knowledge of SIEM configuration & management experience (e.g., Splunk) with strong conceptual knowledge and hands on experience. Experience of identity-based access controls (Zero trust). Knowledge and experience of more »
Bradford, West Yorkshire, Yorkshire, United Kingdom Hybrid / WFH Options
Vanquis Banking Group
You and Your Team: The Security Engineering team is responsible for the security technology stack of the group; design, implementation, and ongoing maintenance/management, in order to maintain and strengthen the groups security posture. Reporting into the Head of Cyber Security Operations, this role is responsible for performing … are defined in the Cyber Security Operating Model, as well as managing an agile engineering team - responsible for the day-to-day direction and management of direct reports. The Principal Security Engineer is responsible for implementing and communicating technical security policies and standards, ensuring other technical teams build systems … key Security standards such as ISO27001, SANS, PCI-DSS and NIST, and the ISC2 Common Body of Knowledge. SME level knowledge of SIEM configuration & management experience (e.g., Splunk) with strong conceptual knowledge and hands on experience. Experience of identity-based access controls (Zero trust). Knowledge and experience of more »
Petersfield, Hampshire, South East, United Kingdom Hybrid / WFH Options
Vanquis Banking Group
You and Your Team: The Security Engineering team is responsible for the security technology stack of the group; design, implementation, and ongoing maintenance/management, in order to maintain and strengthen the groups security posture. Reporting into the Head of Cyber Security Operations, this role is responsible for performing … are defined in the Cyber Security Operating Model, as well as managing an agile engineering team - responsible for the day-to-day direction and management of direct reports. The Principal Security Engineer is responsible for implementing and communicating technical security policies and standards, ensuring other technical teams build systems … key Security standards such as ISO27001, SANS, PCI-DSS and NIST, and the ISC2 Common Body of Knowledge. SME level knowledge of SIEM configuration & management experience (e.g., Splunk) with strong conceptual knowledge and hands on experience. Experience of identity-based access controls (Zero trust). Knowledge and experience of more »
Chatham, Kent, South East, United Kingdom Hybrid / WFH Options
Vanquis Banking Group
You and Your Team: The Security Engineering team is responsible for the security technology stack of the group; design, implementation, and ongoing maintenance/management, in order to maintain and strengthen the groups security posture. Reporting into the Head of Cyber Security Operations, this role is responsible for performing … are defined in the Cyber Security Operating Model, as well as managing an agile engineering team - responsible for the day-to-day direction and management of direct reports. The Principal Security Engineer is responsible for implementing and communicating technical security policies and standards, ensuring other technical teams build systems … key Security standards such as ISO27001, SANS, PCI-DSS and NIST, and the ISC2 Common Body of Knowledge. SME level knowledge of SIEM configuration & management experience (e.g., Splunk) with strong conceptual knowledge and hands on experience. Experience of identity-based access controls (Zero trust). Knowledge and experience of more »
other entities. The Secure Cloud Platform function will work closely with other security tracks (application and container security, ISMS, data security, Operational security and Vulnerabilitymanagement) to provide inputs and shape the design and implementation of each track. a. Security input to the design of the hosting platform … copied to an "output" folder for the integration platform to collect and forward. d. Security input to the design of the identity and access management and privilage access management: i. This will include the creation of a self-service mechanism for requests and renewals. e. Security input to … tooling (Trend Micro Deep Security and associated scanning script) to Consulting g. Provide input to PKI, DLP, Application Security and DevSecOps, Operational security and vulnerabilitymanagement tracks. h. Provide inputs to operational security processes (ISMS) i. Compliance management ii. Vulnerabilitymanagement iii. Disposal processes i. more »
Bradford, Yorkshire, United Kingdom Hybrid / WFH Options
Spencer Rose Ltd
defined in the Cyber Security Operating Model, as well as managing an agile engineering team - responsible for the day-to-day direction and people management of direct reports. Due to the organisation operating a Hybrid work model, you must be within commutable distance of their Bradford offices and willing … validation. Skills/Experience required: 5+ years of experience in technical information security role, and 3+ of experience with regulatory compliance and information security management frameworks (eg, IS027001, PCI-DSS, NIST, etc.) as well as use of Agile and Azure DevOps. Experience in team management. You will possess one … key Security standards such as ISO27001, SANS, PCI-DSS and NIST, and the ISC2 Common Body of Knowledge. SME level knowledge of SIEM configuration & management experience (eg, Splunk) with strong conceptual knowledge and hands on experience. Experience of identity-based access controls (Zero trust). Knowledge and experience of more »
security standards, performing risk assessments, and providing recommendations for remediating identified risk. This role will also have an opportunity to be involved in Policy Management, Risk Assessment, and other program improvement initiatives as part of a matrixed Security Governance, Risk & Compliance team. What we'll offer: A competitive salary … planning An inclusive culture that celebrates what makes you unique Basic Qualifications Bachelor's degree in Information Systems, Computer Science, Engineering, Computer Information Systems, Management Information Systems, Accounting or related field or equivalent relevant work experience At least 4 years in Information Technology security programs, audits, assessments, risk, or … remediation management work experience At least 2 years of Privacy law, data protection/security regulations, and frameworks, such as BITS, HITRUST, COBIT, NIST and ISO27002 work experience Preferred Qualifications Experience with information security risk management including: Risk Assessment Issues Management Exception Management Executive and Leadership more »
audits required for Oracle Health to maintain security certifications. This role will also have an opportunity to be involved in Governance, Risk Assessment, Risk Management, and other program improvement initiatives as part of a matrixed Security Governance, Risk & Compliance team. What we'll offer: A competitive salary with exciting … data protection/security regulations, and frameworks, such as BITS, HITRUST, COBIT, NIST and ISO27002 work experience Preferred qualifications : Experience with information security risk management including: Risk Assessment Issues Management Exception Management Executive and Leadership Reporting Experience in Consulting or Advisory preferably within the Big 4 accounting … and Automation a plus Security+, SANS GIAC, CISSP (Certified Information Systems Security Professional), CISM (Certified Information Security Manager) or CISMP (Certificate in Information Security Management Principles) Expectations : Willing to work additional or irregular hours as needed Work in accordance with corporate and organizational security policies and procedures, understand personal more »
is pivotal in shaping and implementing security measures vital to the business operations and critical service delivery of the organization. This position requires adept management of third-party security service providers across multiple domains, including VulnerabilityManagement, Incident Response, Security Monitoring, Threat Intelligence, Data Centre Operations & Backup. … maturing the entire spectrum of security operations within the organization. Responsibilities include: collaborating with Cybersecurity Data Governance and Security leads to define and manage VulnerabilityManagement policies, working closely with the wider CIO function to ensure efficient deployment of fixes and updates to remediate vulnerabilities maintain detailed incident … response plans for various cybersecurity incidents, managing Security Operations Center (SOC) services, including the managed security services provider MSSP contributing to risk management and compliance monitoring, implementing and maintaining data recovery solutions, providing critical threat intelligence, and efficiently managing crisis response teams to ensure readiness and availability during potential more »
Information Security Vulnerability Manager £65,000 - £75,000 Hybrid - 2 days per week in either Horley/Portsmouth/Glasgow/Edinburgh office depending on location We are looking for a brilliant Vulnerability Manager to join a market leading organisation within the energy sector embarking on a transformation … integral part of their business operation, so this role is critical to the business. Within this role, you will be flying the flag for 'VulnerabilityManagement' . You will be responsible for the IT and OT vulnerabilities across the organisation’s estate, leading on the identification, prioritisation, and … remediation tracking of vulnerabilities to ensure that the Critical National Infrastructure is securely maintained. Relationship management will be at the core of everything you do - you will act as the main point of contact in liaising with the operational teams and third parties, and will report up to the more »
We are seeking a VulnerabilityManagement Analyst for an initial 6-month remote contract. The client is for someone to help withdriving down current vulnerabilities by assessing the current situation and deciding where to put the focus. The successful candidate will have experience working with technical and non … stakeholders. The role will be inside IR35, and you must work via an FCSA-accredited umbrella company. Desired skills: - Information Security best practise - Qualys VulnerabilityManagement Solution - PowerBI knowledge would be a bonus If you are interested, apply via the link. more »
Security Services. Due to this continued growth and the demand for our Security Operations and Offensive Security services, we are looking for a Senior VulnerabilityManagement Analyst that will work directly with some of our largest clients to ensure that they are adopting a risk and intelligence-based … approach to VulnerabilityManagement, supported by the services we deliver. What you’ll be doing Working closely with other Security Operation and Offensive Security teams, the role will offer the opportunity to build and develop our own capabilities, as well as the below: Working with customers to help … to vulnerabilities found within their environment. Work with Cyber Threat Intelligence to review new vulnerabilities, their exploitability, and risks. Work within several Threat and Vulnerability solutions including Tenable and Microsoft to manage customer activity and scans. Develop the Bridewell services to improve the value of our services to our more »
Worthing, West Sussex, South East, United Kingdom Hybrid / WFH Options
REAL Technical Solutions Ltd
with external SOC teams to ensure the uninterrupted delivery of essential services. This role will perform Security Operational duties responsible for incident response and vulnerabilitymanagement and other core capabilities. Responding immediately to security threats across their networks, using cutting edge technology to prevent, detect and analyse security … operations. Documentation: Maintain detailed records of incident reports, investigations, and resolutions, adhering to specific compliance and reporting requirements in utilities and operational technology sectors. VulnerabilityManagement: Utilise Qualys and Tenable to identify, assess, and remediate vulnerabilities specific to our IT infrastructure and operational technology systems, ensuring their integrity … and availability. Security Tool Management: Manage and maintain security tools and systems, ensuring they are up to date and configured correctly. Responsibilities for the IT Security Operations Centre Specialist/SOC Engineer position: VulnerabilityManagement: Utilise Qualys and Tenable to identify, assess, and remediate vulnerabilities specific to more »