Vulnerability Management Analyst

Job Title: Vulnerability Management Analyst

Location: Preston or Frimley. We offer a range of hybrid and flexible working arrangements - please speak to your recruiter about the options for this particular role

Salary: Circa £45,000 per annum dependent on skills and experience

What you’ll be doing:

• Contributing and manage the vulnerability management lifecycle, including scanning, identifying, assessing, prioritizing, and tracking vulnerabilities
• Conducting regular vulnerability assessments across networks, systems, applications, and cloud environments using industry-standard tools
• Collaborating with IT, development, and infrastructure teams to validate and remediate identified vulnerabilities within agreed SLAs
• Performing risk analysis and provide recommendations for vulnerability mitigation based on potential impact and exploitability
• Coordinating with patch management teams to ensure timely deployment of security patches and updates
• Stay current with emerging threats, vulnerabilities, and mitigation techniques by researching cybersecurity trends and threat intelligence
• Assisting in compliance audits related to vulnerability management and cybersecurity frameworks (e.g., PCI-DSS, ISO 27001, Cyber Essentials Plus)

  Your skills and experiences:

  Essential:

  • Ability to analyse and interpret large datasets
  • Understanding of IT Fundamentals
  • Excellent communication skills, both written and verbal, with the ability to explain complex security issues to technical and non-technical audiences

    Desirable:

    • Knowledge of Tableau (or similar tool) would be beneficial, but training is available
    • Cyber Foundation cert: CompTIA Network+, Security + etc
    • Experience of SIEM tools
    • Able to demonstrate understanding of cyber security practices and environments and is able to successfully converse with cyber security SMEs

      Benefits:

      As well as a competitive pension scheme, BAE Systems also offers employee share plans, an extensive range of flexible discounted health, wellbeing and lifestyle benefits, including a green car scheme, private health plans and shopping discounts - you may also be eligible for an annual incentive.

      The Cyber Operations Team:

      Cyber Operations is responsible for protecting BAE Systems from Cyber Attack by various threat actors. Not only do we protect BAE Systems and its employees, indirectly we protect those who protect us - who serve in our military and rely on the products and services we create. Across Threat Intelligence, Detection, Incident Response and now Active Defence we work to evolve cyber operations as a world class capability.

      Why BAE Systems?

      This is a place where you’ll be able to make a real difference. You’ll be part of an inclusive culture that values diversity of thought, rewards integrity, and merit, and where you’ll be empowered to fulfil your potential. We welcome people from all backgrounds and want to make sure that our recruitment processes are as inclusive as possible. If you have a disability or health condition (for example dyslexia, autism, an anxiety disorder etc.) that may affect your performance in certain assessment types, please speak to your recruiter about potential reasonable adjustments.

      Please be aware that many roles at BAE Systems are subject to both security and export control restrictions. These restrictions mean that factors such as your nationality, any nationalities you may have previously held, and your place of birth can restrict the roles you are eligible to perform within the organisation. All applicants must as a minimum achieve Baseline Personnel Security Standard. Many roles also require higher levels of National Security Vetting where applicants must typically have 5 to 10 years of continuous residency in the UK depending on the vetting level required for the role, to allow for meaningful security vetting checks.

      Closing Date: 13th October 2025

      We reserve the right to close this vacancy early if we receive sufficient applications for the role. Therefore, if you are interested, please submit your application as early as possible.

      #LI-NP1

      #LI-Hybrid