1 to 25 of 27 Contract Vulnerability Management Jobs in the UK excluding London

Cyber & Risk Compliance Specialist to join their Risk & Compliance function. This is an excellent opportunity to play a key role in driving cyber risk management, vulnerability remediation, and regulatory compliance within a complex, enterprise-scale environment. You will support the delivery of risk and compliance activities, with … particular focus on cyber security vulnerability management and control assurance . Working across technology, security, and business teams, you'll help ensure risks are identified, assessed, and effectively mitigated. Key Responsibilities Identify, assess, and track regulatory, operational, and cyber risks Coordinate cyber security vulnerability management , ensuring ...

Cybersecurity Solution Architect OT/ICS/Vulnerability Management We are seeking an experienced Cybersecurity Solution Architect to design and deliver enterprise security solutions across IT and OT (Operational Technology) environments. This is a hands-on role focused on vulnerability management, risk mitigation, and secure architecture … design within large-scale, complex environments. Key Responsibilities: Design end-to-end cybersecurity architecture across IT and OT/ICS environments Lead vulnerability management lifecycle (identification, assessment, remediation) Implement risk-based security solutions aligned to enterprise standards Work closely with infrastructure, application and OT teams to embed security ...

Months Contract with InsideIR35 Job Description: Role Overview: A cross-functional role combining advisory and hands-on responsibilities. Focus areas include security assurance, risk management, architecture review, vulnerability management, cyber defence, and embedding risk-aligned security controls across IT and OT systems. You will work across hybrid … security audits & remediation Platform security (Entra ID, M365 E5, Azure IaaS/PaaS, Windows/Linux/Unix) Security tools: SIEM, EDR/XDR, vulnerability management Policy development, access control (RBAC/ABAC), logging standards Supporting assurance/government reviews (Secure by Design, GovAssure) Incident management, vulnerability ...

Ivanti Neurons experience to join one of our Insurance clients on a 6-month contract. Inside IR35 Hybrid Responsibilities: Support the day-to-day vulnerability and patch management operations using Ivanti Neurons, including discovery, risk assessment, prioritisation, deployment coordination, validation and reporting. Maintain accurate asset and vulnerability coverage by monitoring agent health, scan cadence and data quality; work with endpoint and infrastructure teams to resolve gaps. Perform risk-based vulnerability triage and analysis using factors such as CVSS, exploitability, asset criticality, exposure and compensating controls. Coordinate routine and emergency patch cycles, including change planning, maintenance ...

Azure IaaS/PaaS, Windows/Linux/Unix. Strong knowledge of security tooling such as SIEM, endpoint detection (EDR/XDR), and vulnerability management platforms. Hands-on experience with policy development, access control models and logging standards. Experience supporting assurance activities or government-mandated reviews (e.g. GovAssure … Secure by Design). Knowledge of Incident Management, Vulnerability Assessments, SIEM & SOC Systems. Familiarity with ITSM workflows and change control procedures Experience designing or reviewing secure software supply chain and CI/CD security . Ability to interpret CVEs, CVSS scores, and threat intelligence feeds. Strong stakeholder engagement ...

automated controls. Partner with platform owners to remediate critical gaps and implement scalable solutions for artifact integrity, access control, and configuration security. Integrate vulnerability management, SBOM, provenance, and code-signing practices within engineering workflows. Roadmap Development & Execution Prioritise identified gaps based on business risk, regulatory impact, and operational … pipeline design, integration of security scanning tools, and automation of security controls. Strong knowledge and understanding of service mesh, cryptography, network security, application security, vulnerability management, and risk management. Demonstrable ability to conduct threat modelling, platform security assessments, and gap analysis. Experience building and implementing maturity models, frameworks ...

clients in understanding CAF objectives, principles, and outcomes Review policies, governance, and technical/operational controls against CAF requirements Assess cyber capabilities across: Risk management Protective security Monitoring & logging Incident management Supply chain security Operational resilience Produce high-quality outputs including: Assessment reports Risk findings Observations Improvement recommendations … Excellent report writing and communication skills Experience working within public sector, regulated, or enterprise environments Solid understanding of cyber security domains, including: Identity & Access Management Vulnerability Management Incident Response SIEM/Monitoring & Logging Resilience and business continuity Supply chain security Ability to manage multiple priorities and deliver ...

monitoring, logging, and threat response Establish a use-case driven monitoring and alerting capability to improve threat detection and response times Oversee threat intelligence, vulnerability management, and proactive risk mitigation across the estate Lead the analysis of network traffic and behaviours, identifying threats and communicating insights … response, threat detection, and cyber resilience Hands-on experience with SIEM, IDS/IPS, endpoint security, and monitoring tools Solid understanding of threat intelligence, vulnerability management, and remediation practices Knowledge of cyber frameworks and regulations including GDPR, NIS, and National Cyber Security Centre guidance Familiarity with frameworks such ...

Compliance Specialist (Risk Management & Assurance) Are you a risk professional with a knack for bridging the gap between technical security and business compliance? We are looking for a Compliance Specialist to join our Risk, Legal, and Regulatory Affairs function. In this role, you will play a pivotal part … safeguarding the organization by identifying and managing a broad spectrum of risks, with a specific focus on leading our cyber security vulnerability management efforts. The Role You will support the design and delivery of compliance activities, ensuring that regulatory, operational, and cyber risks are mitigated effectively. You will ...

scores to firm suppliers and partners. - Conduct on-site audits of high-risk vendors reviewing security and controls. Required Experience: - Strong knowledge of risk management, vulnerability management, and third party risk. - Possess a sufficient understanding of technical concepts including systems, networks and security architecture best practices ...

role will fall outside IR35 and will require 3 days in the office per week. You will play a key role in the operational management of security and privacy risk across the firm's technology environment which includes Microsoft Defender & Sentinel. Key Responsibilities: * Monitor security event identification … actions (e.g., Logic Apps). * Verifying compliance with expected practice in the operation of technology services, including security baseline and access right reviews. * Support vulnerability management by tracking remediation, validating fixes, and assisting with reporting. * Develop and maintain playbooks, runbooks, and procedural documentation. Required Skills: * Microsoft Defender ...

procurement experience within the public sector (PCR 2015, PA 2023). Proven leadership experience managing teams in a high-volume, dynamic environment. Effective stakeholder management and influencing skills at senior levels. Experience in high value works procurement, including facilities management, construction, design, and cost management Essential Skills … Experience with SIEM tools (ArcSight) including engineering/configuration Creation of use cases, analytics, and playbooks Cloud technology knowledge Incident management from detection to resolution Desirable: Technical/engineering/computing degree Leadership experience (Tier 2 acceptable) Defence experience Responsibilities: Support info security delivery: policies, standards, processes Monitor ...

SMEs and external consultancy partners - ensure alignment with NIST Cybersecurity Framework Outcomes Qualifications, Skills and Experience Strong Understanding of Cybersecurity domains such as Asset Management, identity and access management, incident response, network security, data protection, vulnerability management, and third-party security. Experience working with recognised security ...

configuration) i.e. ArcSight within an enterprise SOC. Experience in creation of use-cases, analytics and playbooks . An understanding of cloud Conduct real-time management of security incidents from detection to resolution. Technical Knowledge within anti-virus, networking, vulnerability management, encryption, Microsoft technologies, Linux. Knowledge of Information … ITIL based environment. Strong problem-solving ability, with flexibility to think creatively and adapt to and implement rapidly changing systems and services. Incident management experience and an ability to quickly tailor responses to deal with fast-moving situations. Highly desirable: Degree level qualification; preferably in technical, engineering or computing ...

Maintain awareness of attacker tactics, tools, and campaigns relevant to the organisation Act as a key interface between SOC, Threat Intel, Red Team, and Vulnerability Management Reporting & Metrics Track and report on hunt coverage, outcomes, dwell time, MTTR, and investigation quality Provide regular insights to senior leadership ...

must bring expertise in the following areas: Cloud Technologies: Experience with AWS, with additional knowledge in Azure and GCP being beneficial Cyber Security: Vulnerability management tools, such as Tenable IDAM systems like Azure AD or Keycloak Vulnerability scanning through tools like SonarQube Network security, including the secure … provision of certificates and tokens Virtualisation and Containerisation: Experience with Docker or Podman for containerisation Container management using Kubernetes GPU containerisation experience with tools like NVIDIA Container Toolkit or Run:AI Architectural Styles: Strong knowledge in Microservices, Serverless, and Edge compute Proficiency with APIs, both RESTful and Protobuf GRPC ...

both AWS and GCP (essential) Deep understanding of CI/CD pipelines, build tools, artifact repositories, and developer platforms Expertise in secure software delivery, vulnerability management, and platform security Experience with threat modelling, security frameworks, and maturity assessments Strong knowledge of application security, network security, and cloud security … principles Excellent stakeholder management and communication skills Desirable: Experience in financial services or regulated environments Knowledge of Kubernetes and container security Familiarity with supply chain security, SBOM, and secure development practices Relevant certifications (eg CISSP, CISM, CCSP) This is a key role focused on shaping and embedding secure ...

Infrastructure Remediation Engineer, SCCM, Vulnerability, Patching, Hybrid. Our client, a leading business based in Bristol, is looking to hire contractor with a background in Wintel/infrastructure. The successful candidate will be responsible for ensuring security and integrity for our clients IT infrastructure, taking responsibility for patching and vulnerability … address vulnerabilities, ensuring compliance with security policies. Manage patching windows and downtime coordination with various business units to minimise disruption during updates. Monitor patch management systems to ensure all systems are up to date and protected from security threats. Server hardening to Windows systems, both physical and virtual. Maintain ...

hosted private cloud environment and its associated services. You will play a key role in active defence of live services, combining security, vulnerability management, platform hardening, and operational security assurance. You will work across infrastructure, platform and data layers to ensure systems are secure, compliant and resilient within … highly governed environment. Key Responsibilities Monitor and respond to security events, alerts and incidents across cloud, platform, and application layers. Execute vulnerability scanning, patch assurance and configuration compliance checks. Maintain security tooling such as SIEM, EDR, vulnerability scanners, and cloud-native controls. Support ISO 27001 control operation ...

risk frameworks (ISO 31000, NIST, OWASP etc.) Knowledge of GovAssure, CAF, ISO27001, Cyber Essentials Entra ID/Azure/M365 SIEM/EDR/vulnerability management tools Access control models (RBAC/ABAC) Experience supporting audits, assurance reviews, and remediation plans Ability to translate technical risk into clear ...

responsibility for security operations, risk, incident response, and overall security maturity across the business. Key Responsibilities Lead global IT and product security Own risk management, SOC, and incident response Drive security strategy, governance, and awareness Deliver key programmes (cloud, identity, vulnerability management) Engage at C-suite level ...

Until end of November 2025 Overview We are looking for a technically strong Security Officer/Engineer to take ownership of security monitoring, risk management, and compliance across our products and services. This is a hands-on technical role, not an administrative position. The successful candidate will work independently … proactively, raising risks, documenting processes, and performing risk assessments, reporting directly to the Security Lead and Senior Management Team in a timely and structured manner. Key Responsibilities Apply AWS security best practice across Guard Duty, VPC networking, Security Groups, IAM, WAF, and other firewall configurations Monitor the security posture ...

Bring Strong experience in DevSecOps, CI/CD, and Infrastructure as Code Knowledge of AWS and containerised environments Experience with security tooling, vulnerability management, and automation A passion for continuous improvement and mentoring others Desirable Experience in defence, aerospace, or other highly regulated sectors Exposure to MLOps, edge ...

regulatory standards (E-CAF) Managing and securing core infrastructure across: Windows & Linux servers SQL databases Cisco networks WAN and data centre environments Driving patching, vulnerability management and system hardening best practice Supporting rollout and optimisation of security tooling including EDR and intrusion detection Integrating and maintaining Active Directory … administration experience across Windows, Linux and network environments Solid understanding of infrastructure security, patching and hardening Experience with Active Directory and identity/access management Knowledge of SQL Server and enterprise environments Ability to manage multiple priorities in a structured (ITIL-driven) environment Strong problem-solving skills ...

/industrial software where applicable Cybersecurity & Compliance Support secure OT operations aligned with IEC 62443/ISO 27001 Assist with patching, secure configuration, and vulnerability management Support incident response for cyber/operational events Asset & Service Support Maintain OT asset inventory and documentation Support backup, recovery, and disaster ...