Threat & Vulnerability Management Team Lead
Threat & Vulnerability Management Team Lead
đź“Ť Central London (Office-Based)
đź“… 12-Month Initial Contract (ASAP Start)
đź’· ÂŁ450 per day (Inside IR35)
The Opportunity
Our client is seeking an experienced Threat & Vulnerability Management (TVM) Team Lead to join a global financial services organisation operating across EMEA and international markets.
This is a high-impact leadership role responsible for driving the organisation’s vulnerability management strategy, enhancing security posture, and ensuring compliance across a complex, multi-country technology landscape. You’ll lead a team of engineers while overseeing an outsourced offshore service and acting as the central authority for vulnerability management across the business.
Key Responsibilities
Strategic Leadership
- Define and deliver the TVM strategy, roadmap, and operating model
- Establish measurable processes, KPIs, KRIs, and reporting frameworks
- Align security initiatives with business goals, IT risk appetite, and regulatory requirements
- Identify cost optimisation and efficiency opportunities across the organisation
Operational Oversight
- Lead and mentor a team of Threat & Vulnerability Engineers
- Oversee vulnerability scanning, patch management, and remediation processes
- Drive automation of patching and vulnerability workflows
- Manage vulnerability lifecycle using tools such as ServiceNow VR & AVR
- Categorise and prioritise vulnerabilities using risk-based methodologies
Risk & Remediation
- Partner with infrastructure, application, and cyber security teams to mitigate risks
- Support remediation of vulnerabilities from scanning, SAST, SCA, and penetration testing
- Act as SME for internal and external audits relating to vulnerability management
- Drive remediation prioritisation across business-critical systems
Stakeholder Engagement
- Act as the primary SME and point of contact for TVM across the organisation
- Engage with senior stakeholders, translating technical risks into business impact
- Collaborate with vendors and industry partners to stay ahead of emerging threats
- Promote cyber awareness and a proactive security culture
Skills & Experience
Leadership
- Proven experience leading Threat & Vulnerability Management teams
- Strong track record in building high-performing, collaborative teams
- Strategic thinker with the ability to shape and deliver security roadmaps
Technical Expertise
- Extensive experience across infrastructure and cloud platforms (AWS, Azure, Oracle)
- Strong knowledge of:
- Vulnerability tools: Tenable, Qualys, Rapid7, Veracode, JFrog Xray
- Platforms: Windows, Linux (RHEL/OEL)
- Tooling: Splunk, Ivanti LANDesk
- Scripting skills in PowerShell and/or Python
- Experience with ServiceNow SecOps (VR/AVR) highly desirable
Security & Risk
- Deep understanding of Vulnerability Management & Threat Intelligence; Incident Response & Security Operations; Frameworks such as NIST, ISO 27001
- Experience analysing threat intelligence and emerging risks
Certifications
- Essential: CISSP and/or CISM
- Desirable: CCSP
Personal Attributes
- Strong communicator with the ability to influence at all levels
- Highly organised, analytical, and detail-oriented
- Comfortable working in fast-paced, high-pressure environments
- Proactive, results-driven, and commercially aware
- Skilled at managing competing priorities and driving outcomes
Why Apply?
- Work within a global financial services environment
- Lead a critical security function with strategic impact
- Opportunity to shape enterprise-wide security capabilities
- Collaborative, high-performing technology environment
If you have the relevant skills & experience, please apply promptly to be considered.