19 of 19 Vulnerability Remediation Jobs in London

Primary Details Time Type: Full time Worker Type: Employee Vulnerability Management Data Analyst Permanent London/Hybrid At QBE, our purpose is to enable a more resilient future. We are an international insurer and reinsurer with a local presence in 27 countries. The Opportunity As part of our continuous improvement and expansion of the vulnerability management function, we … are seeking a highly motivated Vulnerability Management Data Analyst to join our Global Security Operations Centre. This permanent, hybrid role is based out of our London office and reports to the Threat & Vulnerability Manager. The successful candidate will play a key role in strengthening QBE’s cyber resilience by turning complex security data into meaningful insights. This role … will directly support the identification, prioritisation, remediation and reporting of vulnerabilities—helping QBE stay ahead of emerging threats. Your New Role As a Vulnerability Management Data Analyst, you’ll collaborate with teams across security engineering, vulnerability management, service management, cyber governance, risk and divisional consultancy to ensure data accuracy, develop dashboards and reports, and support decision-making More ❯

concerns, and fostering a security-first mindset. DevSecOps Enablement : Promote and implement secure development practices across CI/CD pipelines, secrets and key management, dependency management, and secure design. Vulnerability Management : Lead vulnerability remediation effortstriaging findings, prioritizing risks, and partnering with teams to deliver effective, pragmatic fixes. Tooling & Automation : Integrate security tools (e.g., SAST, DAST, SCA, secrets … GitHub workflows, and Terraform. Deep understanding of cloud security principles in AWS and Azure, particularly around IAM, secrets management, and networking. Proficient in secure coding practices, threat modeling, and vulnerability remediation. Familiar with a range of security tooling including static and dynamic analysis, software composition analysis, and container security. Excellent communication and collaboration skillsable to translate complex security concepts More ❯

infrastructure Automate deployments, testing, and infrastructure using scripting and CI/CD tools Configure networking components including VPNs, VPCs, and cloud integrations Ensure security compliance (ISO 27001) and support vulnerability remediation Oversee software deployments, backups, and monitoring strategies Collaborate with development, security, and infrastructure teams to embed DevOps practices Maintain clear documentation of systems, processes, and procedures Required More ❯

infrastructure Automate deployments, testing, and infrastructure using scripting and CI/CD tools Configure networking components including VPNs, VPCs, and cloud integrations Ensure security compliance (ISO 27001) and support vulnerability remediation Oversee software deployments, backups, and monitoring strategies Collaborate with development, security, and infrastructure teams to embed DevOps practices Maintain clear documentation of systems, processes, and procedures Required More ❯

telemetry and observability to enable proactive threat detection and automated response. Apply SRE principles to improve reliability, performance, and maintainability of security services. Lead platform health, patching automation, and vulnerability remediation workflows. Define service level objectives (SLOs) and key performance indicators (KPIs) for all security services. Compliance, Governance & Risk Management: Ensure alignment with global compliance requirements such as More ❯

and request fulfilment tickets within SLA’s Monitoring key health signs of infrastructure and responding to actual or predicted issues Support projects and new initiatives and participating in investigations & remediation of any vulnerabilities or Security breaches Implementation of infrastructure design and build best practices. There is minimum level of technical expertise required: MUST have NPPV3 Experienced 3rd line Infrastructure More ❯

and request fulfilment tickets within SLA’s Monitoring key health signs of infrastructure and responding to actual or predicted issues Support projects and new initiatives and participating in investigations & remediation of any vulnerabilities or Security breaches Implementation of infrastructure design and build best practices. There is minimum level of technical expertise required: MUST have NPPV3 Experienced 3rd line Infrastructure More ❯

security requirements are integrated into design and delivery.* Collaborate with stakeholders to identify and mitigate risks.Risk & Compliance* Perform security assessments on systems, applications, and processes.* Highlight vulnerabilities and recommend remediation measures.* Ensure adherence to internal policies and external standards.Awareness & Training* Drive security awareness initiatives across the organisation.* Develop and deliver engaging training sessions.* Keep informed on emerging threats, trends More ❯

requirements are integrated into design and delivery. * Collaborate with stakeholders to identify and mitigate risks. Risk & Compliance * Perform security assessments on systems, applications, and processes. * Highlight vulnerabilities and recommend remediation measures. * Ensure adherence to internal policies and external standards. Awareness & Training * Drive security awareness initiatives across the organisation. * Develop and deliver engaging training sessions. * Keep informed on emerging threats More ❯

technical diagrams, process flows, and system configurations. Acting as 2nd line support for our SailPoint IIQ infrastructure and its products.Conduct security assessments and risk analysis to identify vulnerabilities, recommend remediation strategies, and implement necessary controls. Monitor and maintain SailPoint IIQ infrastructure including servers, databases, and other components, ensuring optimal performance, availability, and scalability. Managing vulnerabilities and patching activities Troubleshoot More ❯

diagrams, process flows, and system configurations. Acting as 2nd line support for our SailPoint IIQ infrastructure and its products. Conduct security assessments and risk analysis to identify vulnerabilities, recommend remediation strategies, and implement necessary controls. Monitor and maintain SailPoint IIQ infrastructure including servers, databases, and other components, ensuring optimal performance, availability, and scalability. Managing vulnerabilities and patching activities Troubleshoot More ❯

one of the most ambitious Tech Transformations for one of the most renowned Investment Management firms in the UK. Responsibilities Perform hands-on security threat modelling, risk assessment and vulnerability remediation. Evaluate, architect, implement and support security focused tools and services. Work closely with Development teams to ensure security and privacy are built in by design, automating tasks wherever More ❯

security access and manage IDS/IPS configurations Establishing and implementing security 'best-practice' standards as well as departmental policies and procedures Responsible for Security scanning and the efficient remediation of vulnerabilities Responsible for analysing all security incidents to determine root cause Determine, recommend, and implement upgrade security measures and controls Delivery security responses for customer and client compliance More ❯

Secure our CI/CD pipelines and provide improvement plans and requirements to those that use them, while overseeing the consistent adoption of secure practices across teams. Support the vulnerability management process, raising awareness and embedding secure development principles with development teams. Evaluate, implement, support and communicate new tools and features to improve our security posture whilst supporting, consulting More ❯

security access and manage IDS/IPS configurations Establishing and implementing security 'best-practice' standards as well as departmental policies and procedures Responsible for Security scanning and the efficient remediation of vulnerabilities Responsible for analysing all security incidents to determine root cause Determine, recommend, and implement upgrade security measures and controls Delivery security responses for customer and client compliance More ❯

of experience in enterprise application support or IT operations Strong troubleshooting and analytical skills Familiarity with ITSM platforms (e.g., ServiceNow) and monitoring tools Understanding of access management, patching, and vulnerability remediation Exposure to ITIL practices and professional services environments Experience with documentation tools and scripting (e.g., PowerShell, Python) Relevant certifications (e.g., ITIL Foundation) preferred It offers the chance More ❯

Officer to interpret regulatory requirements (ISO27001, GDPR, DPAs) and translate them into technical controls, policies and run books. Audit & pen test lead - Coordinate external auditors, manage evidence collection, track remediation tickets and present technical posture to stakeholders. Threat & vulnerability management - Run container image scanning (Snyk), dependency SBOM generation and orchestrate patch cycles across clusters. Incident readiness - Own on … deep dive of existing CI/CD, Terraform and security policies. Shadow DPO on open compliance items to build context. Within three months, you will Lead the next quarterly vulnerability scan and deliver remediation plan. Introduce SBOM + container image scanning gates to GitHub Actions. Publish updated incident response runbook and run a tabletop drill. Within six months More ❯

Officer to interpret regulatory requirements (ISO27001, GDPR, DPAs) and translate them into technical controls, policies and run books. Audit & pen test lead - Coordinate external auditors, manage evidence collection, track remediation tickets and present technical posture to stakeholders. Threat & vulnerability management - Run container image scanning (Snyk), dependency SBOM generation and orchestrate patch cycles across clusters. Incident readiness - Own on … deep dive of existing CI/CD, Terraform and security policies. Shadow DPO on open compliance items to build context. Within three months, you will Lead the next quarterly vulnerability scan and deliver remediation plan. Introduce SBOM + container image scanning gates to GitHub Actions. Publish updated incident response runbook and run a tabletop drill. Within six months More ❯

Public Sectors. The Roles Involve: Incident Response : Enhance coordination, assess impact, inform guidance, and develop playbooks. Threat Intelligence : Deliver tailored intelligence, monitorTTPs, and manage tooling (OpenCTI, MISP, sandboxes). Vulnerability Management : Identify and triage vulnerabilities, support remediation, and improve disclosure schemes. Requirements : Proven experience in SOC environments and incident response. Deep understanding of threat actors and intelligence platforms. … Expertise in vulnerability scanning and remediation. Reasonable Adjustments: Respect and equality are core values to us. We are proud of the diverse and inclusive community we have built, and we welcome applications from people of all backgrounds and perspectives. Our success is driven by our people, united by the spirit of partnership to deliver the best resourcing solutions for More ❯