Senior Vulnerability Management Engineer

Senior Vulnerability Management Engineer

Pontefract, West Yorkshire - Permanent | £50,000 - £65,000 | 3 days in the office

VIQU are partnering with a leading organisation to recruit a Senior Vulnerability Management Engineer to join their Information Security team. This is a hands-on role focusing on Vulnerability and Threat Management across the organisation's technology estate, with particular attention to the Warehouse environment. You'll take ownership of identifying, assessing, and communicating vulnerabilities, managing vulnerability tools, and reviewing threat intelligence to proactively mitigate risks. This role also includes mentoring team members and participating in a shift rota.

Key Responsibilities:

Manage and maintain vulnerability scanning and risk reporting tools.

Identify, triage, risk assess, and assign vulnerabilities to remediation teams.

Provide guidance and recommend mitigation strategies for vulnerabilities.

Assist Incident Response team with investigations and resolution of security incidents.

Plan, scope, and deliver key projects while communicating progress clearly.

Review threat intelligence and validate findings against the organisation's people, processes, and technologies.

Prepare reports summarising findings and recommendations for different audiences, including senior stakeholders.

Coordinate and lead efforts to mitigate significant threats or vulnerabilities.

Maintain operational procedures, technical documentation, metrics, and reporting to a high standard.

Act as a subject matter expert and mentor less experienced team members.

Key Skills & Experience:

Strong experience managing and maintaining vulnerability management tools.

In-depth understanding of Information Security, malware, attacks, and vulnerability management.

IT knowledge including network protocols, server infrastructure, Windows Server, and Linux.

Familiarity with change management and ability to coordinate major issues under pressure.

Knowledge of vulnerability and threat frameworks such as CVSS, CVE, CWE, OWASP, MITRE.

Experience with Operational Technology (OT) vulnerability scanning.

Competent in Cyber Threat Intelligence (CTI) monitoring and assessment.

Strong analytical, prioritisation, communication, and reporting skills.

Desirable: experience with PCI-DSS or ISO27001, retail environments, cloud infrastructure, DevOps/code scanning, SCADA/PLC systems, TIP management, offensive security, and custom AI usage.

Apply now to speak with Phoebe Rees at VIQU IT in confidence. Call or email (see below) Do you know someone great? We'll thank you with up to £1,000 if your referral is successful (terms apply).