1 to 25 of 29 Permanent Vulnerability Management Jobs in Central London

with contractual KPIs, SLAs, and client expectations. This role requires a blend of SAP service delivery leadership, AMS operational expertise, commercial acumen, customer success management, people management, and continuous improvement mindset. Roles & Responsibilities AMS Strategy, Leadership & Governance Build and lead the end-to-end SAP AMS function … Maintain a forward-looking view of risks, service gaps, and capacity to ensure proactive support planning. Oversee incident triaging, root cause analysis (RCA), patch management, vulnerability management, and technical optimisation. Ensure structured governance Daily stand-ups Weekly operational reviews Monthly service reviews (MSRs) Quarterly executive reviews Commercial ...

engage deeply with architecture, designs, and risk trade-offs Talk audit and risk (!) – talk at board and committee level Lead incident response, risk management, and disaster recovery with both strategic oversight and technical understanding Line manage two Data Protection Officers (DPOs), ensuring privacy, governance, and cyber security operate together … actively manage third-party security partners including SOC, vulnerability management, patching, and firewall services Work closely with Heads of Infrastructure and Heads of Programmes, influencing secure design, delivery, and change across the organisation Drive Cyber Essentials Plus accreditation and continuous improvement across security controls Translate technical risk into ...

Cyber Security Remediation Engineers to support a largescale passenger processing technology portfolio. These roles are part of a targeted security programme focused on reducing vulnerability exposure and remediating identified risks across cloud environments. The engineers will work through an existing backlog of security findings, partnering with platform, infrastructure … prioritised backlog of vulnerabilities, misconfigurations and risk items originating from security tooling, audits and assessments • Perform hands-on remediation across: o Identity & access management (IAM/RBAC) o Network security and segmentation o Cloud configuration and posture management o Logging, monitoring and alerting gap • Collaborate with engineering, DevOps ...

experienced engineer who brings both depth and judgment to Windows platform security. You’ll be responsible for designing and implementing robust security controls, driving vulnerability management initiatives, and developing automation to scale protection across thousands of endpoints and servers. The role is technically hands-on, strategic in influence … security controls across Windows systems in hybrid environments Lead efforts to harden the Windows estate, including application control, host firewalls, auditing, and encryption Drive vulnerability management and patching strategy, ensuring consistent remediation across enterprise endpoints and servers Build automation in PowerShell and related frameworks to streamline detection, response ...

supporting major incident response activities. The successful candidate will work closely with infrastructure and network teams to manage and optimise endpoint, email, identity, and vulnerability management platforms, while contributing to continuous improvement of the organisation’s security posture. This role offers the opportunity to evaluate and transition between … maintain email hygiene, troubleshooting false positives and tune detection rules. Perform email investigations as required in response to phishing or BEC attempts, producing monthly vulnerability reports and prioritising remediation efforts based on risk. Work with infrastructure and application teams to test patches and drive vulnerability counts down. Attend ...

What the ideal candidate would look like Hands-on ability to lead a firm through a Azure cloud migration Excellent day-to-day management of a small team Strong project management, using Manage Engine or Jira Job Responsibilities To lead the Infrastructure team, ensuring the firm … positioned for transformation. The role includes establishing an Infrastructure Development Lifecycle (IDLC), maintaining ISO27001 and Cyber Essentials Plus compliance, developing and managing the Configuration Management Database (CMDB), and creating a technology roadmap to transition from traditional on-premises infrastructure to Microsoft Azure. Define architecture standards, policies, and automation practices ...

someone who can take ownership, make clear technical decisions and build security controls that scale. You will work across Windows engineering, endpoint security, automation, vulnerability management and platform hardening. The role mixes hands-on engineering with advisory responsibility and proactive threat mitigation. The environment is fast moving … wider IT teams rely on for clarity and sound judgement. What you’ll be doing: Designing and implementing security controls across Windows platforms Driving vulnerability management initiatives and closing remediation at scale Building automation around configuration, monitoring and incident response Improving endpoint security across EDR, AV, patching ...

function, responsible for implementing, operating, and monitoring technical security controls across IT and operational environments. The role is hands-on and delivery-focused, covering vulnerability management, incident response, identity and access controls, security tooling, and technical risk mitigation, while working in alignment with governance and risk requirements. … Responsibilitie s Security Controls & Architecture Vulnerability & Threat Management Incident Response Identity, Access & Data Security Risk & Compliance Support Security Training and awareness Required Technical Experience: Proven experience in a hands-on IT security/cybersecurity role Logging and monitoring Security Tooling (vulnerability scanning (Tenable, Qualys, Rapid7) Endpoint ...

Senior Security Engineer Focus: Cloud First/Zero Trust/Azure/Identity Management/Security Principles Salary: £90,000 + 20% Bonus + 20% Pension Location: Central London – Hybrid Join a prestigious, family-run financial organisation embarking on a large-scale digital transformation. With around 500 employees … mature the organisation’s security posture. Your remit will span areas such as: Security strategy and roadmap Security architecture and design Incident response and management SOC operations Compliance and vulnerability management Identity and access management Network security and DLP You don’t need experience ...

manage complex tasks with broad scope and ambiguity. Strong background in cybersecurity assurance, policies, and standards. Expertise across IT security domains: Governance, IAM, Risk Management, Security Testing, Incident Management, Vulnerability Management. Experience in senior stakeholder engagement and management reporting. Ability to coach and mentor team members. … Controls Experience: Strong background in implementing and assessing security controls. Splunk Knowledge: Familiarity with SIEM tools and log analysis. CyberArk: Experience with privileged access management solutions. Package Salary: Up to £120,000 Up to 20% Bonus Hybrid, with travel to London Career Development Opportunities Benefits: Pension scheme, professional training ...

cloud environments. Ensure centralised security, monitoring, and incident response platforms operate effectively. You will collaborate closely with our Service Desk, Projects and Account Management teams to maintain high standards of service, document solutions and mentor junior engineers in line with cybersecurity best practices and frameworks such as ISO27001, NIST … analyse, and respond to alerts from client security platforms (MDR/XDR, SentinelOne, Huntress, Fortinet, Mimecast, Avanan, Defender) to ensure rapid threat mitigation. Conduct vulnerability assessments, risk analyses and security audits across client environments, providing actionable recommendations and remediation guidance. Implement and maintain security hardening across infrastructure, cloud services ...

skills, with the ability to articulate complex technical findings and nuanced threat intelligence insights clearly and concisely to diverse audiences. Strong organizational and time management skills, with a proven ability to effectively manage and prioritize multiple concurrent engagements. Current CREST CRT certification or higher is essential. Desirable Skills: Experience … with Breach Attack Simulation tools and methodologies. Experience in Vulnerability Management processes and integrating threat intelligence. Understanding of Risk Management frameworks and how threat intelligence informs risk assessments. Hands-on experience with security reviews of AWS, Azure, and GCP environments, incorporating cloud-specific threats. Experience with ...

Cyber Security Engineer Focus: Azure/M365/Identity Management/SIEM/SOAR/Firewalls Salary: £70,000 + 20% Bonus + 20% Pension Location: Central London – Hybrid Join a prestigious financial organisation that has recently migrated to Azure Cloud and is now strengthening its security posture. With … ensure compliance with best practices. Key Responsibilities: Configure and optimise Azure security services (Defender for Cloud, Sentinel, Conditional Access) Manage Identity and Access Management across Azure AD and M365 Implement Zero Trust principles and security best practices Support incident response, vulnerability management, and compliance initiatives Collaborate with ...

applications operate reliably, meet performance and availability targets, and evolve to support business growth. You will drive operational excellence and continuous improvement through measurable management, proactive monitoring, and a focus on automation, observability, and digital-experience monitoring. In addition, you will develop and empower your team, providing the technical … leadership, tools, and standard approaches needed to deliver consistent value to the business. This role requires deep knowledge of infrastructure implementation, review, and lifecycle management across physical, virtual, and cloud environments, together with the ability to interface effectively with business stakeholders, optimise vendor relationships, and contribute to the delivery ...

Lead enterprise security governance and senior stakeholder engagement Own policies, compliance and frameworks (GDPR, PCI DSS, ISO 27001, Cyber Essentials Plus) Oversee incident response, vulnerability management and threat monitoring Secure hybrid platforms (Azure, AWS, Nutanix, Zero Trust, SASE, CASB) Drive security culture, awareness and third-party risk management ...

guide the organisation toward a more resilient and mature security environment. The successful candidate will hold a degree in Technology, Information Security, Risk Management, or an equivalent field , alongside professional certifications such as CISSP, CISM, CRISC, or ISO 27001 . They will bring proven experience in strategic planning, risk … based information assurance, business impact analysis, and threat/vulnerability management , as well as deep expertise in compliance, policy design, and information security frameworks including ISO 27001, NIST, COBIT, and CIS Controls. This role requires a leader with a strong track record of transforming security organisations , structuring high ...

strategies aligned with business objectives. Lead information security initiatives, ensuring compliance with industry standards and regulatory requirements. Manage incident response, risk assessments, and vulnerability management. Collaborate with cross-functional teams to support technology-driven projects. Mentor and lead IT teams, fostering a culture of accountability and innovation. Qualifications: Proven ...

solution and SecOps solutions as and when needed. Knowledge of various modules like Policy Mgmt. Compliance & Audit Mgmt., Vendor Mgmt., Business Continuity Management, Vulnerability Response, Incident Response, Security Dashboard on ServiceNow IRM platform Assess as-is IRM processes for maturity and automation on ServiceNow platform Knowledge of Advance … risk management and continuous control monitoring. Create & execute test plans and participate in client UAT & production migration Manage GRC Use-stories in agile team and lead the iterations from delivery perspective Understand Observables, Indicators of Compromise (IOC) and IoC Look Ups Good to have experience with configuring and implementing ...

GuardDuty, Security Hub, and AWS Config Conformance Packs for continuous compliance. Perform CIS Benchmark assessments, capture evidence, and maintain exception registers. Support incident readiness, vulnerability management, and compliance reporting. What We’re Looking For: Strong experience in AWS security engineering and cloud compliance frameworks. Knowledge of CIS Level ...

alignment with recognised security frameworks (ISO 27001, NIST, CIS, SOC2, etc.) Embed security by design across infrastructure, cloud, networks, and applications Lead incident response, vulnerability management, and threat mitigation Partner closely with engineering, infrastructure, and leadership teams Support audits, risk assessments, and regulatory requirements relevant to financial markets ...

solution and SecOps solutions as and when needed. Knowledge of various modules like Policy Mgmt. Compliance & Audit Mgmt., Vendor Mgmt., Business Continuity Management, Vulnerability Response, Incident Response, Security Dashboard on ServiceNow IRM platform Assess as-is IRM processes for maturity and automation on ServiceNow platform Knowledge of Advance … risk management and continuous control monitoring. Create & execute test plans and participate in client UAT & production migration Manage GRC Use-stories in agile team and lead the iterations from delivery perspective Understand Observables, Indicators of Compromise (IOC) and IoC Look Ups Good to have experience with configuring and implementing ...

solid understanding of software design principles, good analytical and problem-solving capability, strong communication skills and a meticulous approach to detail and time management are also essential. Experience of Agile delivery environments, a willingness to continually improve engineering outcomes, and a degree in computer science or a related field … will be advantageous. Additional exposure to Citrix server administration or vulnerability management would be beneficial. This is a rare chance to join an organisation at the start of a major technological evolution, contributing directly to the redesign of systems, processes and services that will define the future ...

solid understanding of software design principles, good analytical and problem-solving capability, strong communication skills and a meticulous approach to detail and time management are also essential. Experience of Agile delivery environments, a willingness to continually improve engineering outcomes, and a degree in computer science or a related field … will be advantageous. Additional exposure to Citrix server administration or vulnerability management would be beneficial. This is a rare chance to join an organisation at the start of a major technological evolution, contributing directly to the redesign of systems, processes and services that will define the future ...

SOC2 Own audit readiness and support internal/external audits Maintain security risk register and track remediation actions Provide assurance over IAM/PAM, vulnerability management, data protection Produce clear executive-level security reporting Work closely with Cyber, Risk, IT, and Compliance teams Key Skills & Experience Strong background … Information Security Assurance/GRC Experience in regulated environments Knowledge of security frameworks and controls Stakeholder management at senior level Familiarity with security tooling and assurance processes ...

requirements Engineer, implement, and maintain IAM solutions for infrastructure components and enterprise tools in a cloud-native manner Design, implement, and manage a comprehensive vulnerability management program using industry-standard tools to effectively prioritise and remediate security risks Qualifications: Experience developing and operating in a DevSecOps life cycle ...