Vulnerability Manager

Outside IR35

Hybrid (2/3 days in the London office a week)

We're supporting a leading financial services organisation in the search for an experienced Vulnerability Manager to join their Cyber Security team on an initial 6-month contract.

This is a hands-on role for a cyber security professional who can take ownership of the vulnerability management lifecycle from end to end. You'll assess the current framework, identify gaps in processes and controls, improve vulnerability management capabilities, and work closely with technology teams to drive remediation activities.

We're looking for a do-er rather than a project manager - someone who is comfortable getting into the detail, analysing security risks, challenging stakeholders, and helping the business reduce its overall attack surface.

Key Responsibilities:

• Manage the full vulnerability management lifecycle, from identification through to remediation and closure.
• Conduct vulnerability assessments and analyse findings across infrastructure, cloud and endpoint environments.
• Identify gaps in existing processes, tooling and controls, and recommend improvements.
• Work closely with technology teams to prioritise and remediate security vulnerabilities.
• Produce meaningful reporting, metrics and dashboards for stakeholders.
• Support ISO27001 and wider cyber security governance requirements.
• Leverage Microsoft security technologies to improve vulnerability visibility and management.

Key Skills & Experience:

• Proven experience managing vulnerability management programmes within complex enterprise environments.
• Strong understanding of vulnerability assessment, risk prioritisation and remediation processes.
• Hands-on experience with Microsoft Defender and the wider Microsoft security ecosystem.
• Experience using Microsoft Security Copilot.
• Strong KQL (Kusto Query Language) skills.
• Ability to identify weaknesses, implement improvements and drive security best practice.
• Excellent stakeholder management and communication skills.

If you're an experienced vulnerability management specialist with strong Microsoft security expertise and are available for a new contract opportunity, I'd be keen to hear from you.