1 to 25 of 253 Permanent Vulnerability Management Jobs in England

largest global platform for the LGBTQ+ business community. Please do not contact the recruiter directly. Fitch Group is currently seeking a Director of Vulnerability Risk based out of our Manchester office. We are seeking a Director to lead our Vulnerability Management (VM) team. This role is ideal … experienced security leader with a risk mindset who can oversee all aspects of vulnerability management, including identification, risk prioritization, and remediation of vulnerabilities discovered. The ideal candidate for this role will bring innovative ideas on how to consistently apply risk prioritization through automation, leveraging AI where appropriate. Success ...

risk‐based approach to prioritise them, and to drive effective remediation activity. Accountabilities Allocation of the correct risk rating and remediation prioritisation to a vulnerability based on industry standards for assessment, available threat intelligence concerning exploitation, the reachability of the host (or asset) and the value of the service … running on the impacted host. Development of vulnerability management operating model, policies and procedures to ensure consistency in vulnerability identification, remediation and reporting. Element owner of the Vulnerability Management Standard including Issues Management and Regulatory alignment. Communication of vulnerabilities to relevant parties including senior ...

GitHub-based CI/CD pipelines, AWS environments and infrastructure-as-code workflows. This includes improving SAST, software composition analysis, secret scanning, IaC scanning, vulnerability management and AWS misconfiguration management so that findings are actionable, low-noise and owned by the right teams. … practical threat-modelling sessions, review application and cloud designs, improve security playbooks, support vulnerability and misconfiguration remediation, and build automation that reduces toil. We’re looking for someone who has demonstrably improved security outcomes in real engineering environments, not just someone with theoretical knowledge of tools or frameworks. Depending ...

looking for a Cyber Threat & Vulnerability Analyst to join our Cyber Security team, helping protect the systems that deliver essential water services to millions of customers every day. You'll play a key role in identifying, assessing, and reducing cyber risk across a large and complex technology estate, making … with technical teams and business stakeholders to keep our services safe, resilient, and running smoothly. What you'll be doing as a Cyber Threat & Vulnerability Analyst: As a Cyber Threat & Vulnerability Analyst, you'll be responsible for supporting and improving how we identify, assess, and manage cyber vulnerabilities ...

senior Cyber Security leadership role with a well respect global financial organisation. This is a high-visibility position focused on leading a global vulnerability risk programme across a complex technology environment. It would suit someone who can combine technical security knowledge with strong risk judgement, stakeholder management and the ability to drive remediation across multiple teams. The role sits around vulnerability risk, but it is broader than simply managing scan outputs. The successful candidate will help bring together security findings from across infrastructure, cloud, application security, open-source software and testing activity, then ensure ...

Vulnerability Governance Lead Location: [London 2-3 days a week onsite] Basic salary: £70K One of our clients are looking for a Vulnerability Governance Lead to redefine how cyber risk is managed and mitigated across this evolving organisation. This is not a traditional patching or operational security role … strategic position focused on governance, visibility, and accountability . The successful applicant for the Vulnerability Governance Lead will establish a modern, risk-led vulnerability management capability , giving the business a clear, unified view of exposure across infrastructure, cloud, and applications. The vulnerability Governance Lead will drive ...

driving automation initiatives within a mature but evolving cyber function.The role offers broad exposure across security engineering, detection engineering, cloud security, incident response, vulnerability management, and security architecture.Key Responsibilities Design, implement, and improve security controls across cloud and enterprise infrastructure Enhance SIEM, SOAR, and EDR/XDR capabilities … using scripting and AI-assisted tooling Lead technical investigations and incident response activities Improve threat visibility and reduce false positives through detection engineering Conduct vulnerability management and remediation initiatives Partner with engineering, infrastructure, and DevOps teams to embed security into operational processes and CI/CD pipelines Perform ...

protect critical business systems, data, and infrastructure. Leads security operations, threat detection, incident response, and cyber resilience initiatives while ensuring alignment with organisational risk management objectives. Key Responsibilities Lead and manage the Cyber Defence function, overseeing security operations, threat intelligence, vulnerability management, and incident response capabilities. Develop … programmes, identifying emerging risks and implementing proactive defensive measures. Lead cyber incident response activities, coordinating technical teams and business stakeholders during security events. Manage vulnerability assessment and remediation programmes across enterprise infrastructure and applications. Collaborate with technology, risk, compliance, and business teams to strengthen organisational cyber resilience. Provide strategic ...

Vulnerability Manager Up to £85,000 depending on experience Cheltenham (Hybrid working - 3 days onsite per week) We're looking for an experienced InfoSec/Vulnerability Management professional to join a collaborative Application Security team . This is a key role for a proactive, hands-on individual … help drive a more preventative, strategic and business-aligned approach to vulnerability management. Working closely with the team lead and supporting a junior team member, you'll take ownership of vulnerability activity across the business, build strong relationships with technology and cyber stakeholders, and help ensure risks ...

cyber security professional looking to further develop their experience within a mature Security Operations environment, gaining exposure to incident response, threat detection, vulnerability management and modern Microsoft security technologies. Working within a highly regulated customer environment, you will help monitor, investigate and respond to security incidents while supporting … strong security posture across customer environments. Key Responsibilities Monitor and investigate security alerts and events across cloud, endpoint, identity and network environments Support the management of security incidents through the incident response lifecycle Perform security investigations and root cause analysis Validate indicators of compromise and assess potential business impact ...

cyber security professional looking to further develop their experience within a mature Security Operations environment, gaining exposure to incident response, threat detection, vulnerability management and modern Microsoft security technologies. Working within a highly regulated customer environment, you will help monitor, investigate and respond to security incidents while supporting … strong security posture across customer environments. Key Responsibilities Monitor and investigate security alerts and events across cloud, endpoint, identity and network environments Support the management of security incidents through the incident response lifecycle Perform security investigations and root cause analysis Validate indicators of compromise and assess potential business impact ...

Drive automation and security tooling improvements to improve visibility, detection, and response. Security Operations & Detection Engineering Manage and optimise security tooling including SIEM, EDR, vulnerability management, and monitoring platforms. Develop and improve detection engineering capabilities and threat monitoring use cases. Partner with the external SOC provider to ensure … effective alerting, triage, escalation, and response processes. Lead vulnerability management activities from identification through remediation tracking and reporting. Support and lead technical incident response activities, including investigation, containment, recovery, and lessons learned. Security Standards & Continuous Improvement Develop and maintain technical security standards, baselines, and engineering controls. Partner with ...

background is required to join our global client's UK cybersecurity team. This role is predominantly end-client facing, advising on security best practices, vulnerability management and security standard compliance (e.g. NIST, ISO, PCI DSS etc), and leading audits and examinations. Skills & Experience Required: 2+ years of experience … working in Cyber Security within an AWS cloud environment Vulnerability management & Compliance Strong Security standard knowledge and experience, consulting on a range of security policies and standards such as GDPR, ISO, PCI, NIST Confidence when speaking with stakeholders and clients, as well as the ability to provide training ...

VULNERABILITY MANAGEMENT ENGINEER Up to £85,000 ( Dependent on Experience ) + Bonus + Shares + Staff Benefits Fully Remote ( UK ) SECURE has Strategically Partnered with a Multi-Award-Winning, Platform-Based Organisation at the forefront of Pre-Emptive Exposure Management. As a market leader backed by significant venture … funding, they are expanding their Offensive Security capabilities, specifically by scaling an Elite Vulnerability Research & Engineering Function across the globe. Role Overview: Step in as a Hybrid Threat Hunter & Tooling Engineer . You will own the lifecycle from Discovery to Detection, conducting 0-Day/N-Day Research whilst ...

Technical Support Manager, IT Support Manager, Service Desk Manager or Senior Support Engineer looking for the opportunity to step beyond traditional support management and build a career in infrastructure, cloud technology and IT operations? This is a newly created role within a high-growth, technology-driven organisation that … technically, acting as the senior escalation point for more complex issues across Microsoft Azure, Microsoft 365, Entra ID, Intune, Exchange Online, VPN connectivity, endpoint management and business-critical SaaS platforms. You will have the opportunity to introduce structure, improve service levels, strengthen reporting, enhance documentation, improve ticket ownership ...

Cybersecurity to lead and evolve its cybersecurity function. We're looking for a hands-on cybersecurity leader with expertise in: Cybersecurity Strategy & Risk Management Microsoft 365, Entra ID & Azure Security Incident Response & Vulnerability Management Microsoft Defender, Intune & Conditional Access ISO27001, NIST & Security Governance Key Responsibilities Define … Entra ID, Azure, endpoints, cloud services, SaaS platforms, and collaboration tools. Drive continuous improvement of key security controls including MFA, Conditional Access, privileged access management, endpoint protection, vulnerability management, encryption, DLP, logging, and monitoring. Lead cyber incident response planning, testing, and execution, including playbooks, tabletop exercises, escalation ...

performance. Lead, develop, and mentor a multidisciplinary team covering cyber security operations and network security functions. Own and drive cyber security governance, risk management, and compliance activities across the organisation. Maintain and enhance security controls aligned to recognised frameworks including ISO 27001, NIST Cybersecurity Framework, CIS Controls, and other … operational security functions. Strong understanding and practical application of ISO 27001 and related governance, risk, and compliance frameworks. Experience with security monitoring, incident response, vulnerability management, and threat management processes. Proven stakeholder management skills with the ability to engage effectively at all levels of the organisation. ...

performance. Lead, develop, and mentor a multidisciplinary team covering cyber security operations and network security functions. Own and drive cyber security governance, risk management, and compliance activities across the organisation. Maintain and enhance security controls aligned to recognised frameworks including ISO 27001, NIST Cybersecurity Framework, CIS Controls, and other … operational security functions. Strong understanding and practical application of ISO 27001 and related governance, risk, and compliance frameworks. Experience with security monitoring, incident response, vulnerability management, and threat management processes. Proven stakeholder management skills with the ability to engage effectively at all levels of the organisation. ...

department’s controls design and effectiveness, ensuring controls are proportionate and embedded in day‐to‐day department activity* Provide proactive assurance around risk management through appropriate data driven monitoring and through the implementation of structured sampling techniques to validate that controls are functioning as intended before failure* Educate … with industry and company standards* Work in partnership with the Digital Engineering Solutions and Services Product and Platform owners, challenging and advising on risk management for new products, processes and change programmes. Provide risk-based decision making, supporting the department to make informed, risk-based decisions by providing ...

Cyber Security Consultant x 2 (Project Management focus) Join a growing cyber security consultancy that helps organisations strengthen their security posture, manage risk, and navigate an increasingly complex threat landscape. This is a client-facing role where you'll play a key part in delivering trusted advice, leading engagements … across a diverse client base. Conduct cyber maturity assessments, risk reviews, and gap analyses to identify areas for improvement. Advise organisations on governance, risk management, compliance, and security best practice. Develop practical security roadmaps and recommendations aligned to business objectives. Support clients with certification and compliance initiatives, including recognised ...

assurance reporting to Digital governance groups, Audit/Risk & Assurance Committees, & the Trust Board. Provide strategic oversight of cyber operations (monitoring, incident response, vulnerability management, identity & access management) delivered internally & via third parties; assure the effectiveness of managed services. Embed secure-by-design principles across architecture, procurement … cyber policy.2. Act as the Trusts senior strategic authority on cyber security risk, providing expert advice, assurance, and challenge to Information Asset Owners, Executive Management Team members and Board-level forums.3. Translate national frameworks and requirements (including DSPT and NCSC Cyber Assessment Framework (CAF)) into pragmatic, risk-based implementation.4. ...

capabilities Supporting data protection, information governance and security best practice Developing and maintaining security controls across identity, endpoint and cloud environments Conducting threat hunting, vulnerability management and security reviews Assessing risks associated with business applications and user access Supporting the secure adoption of new technologies and business initiatives … Experience in some of the following areas would be beneficial: Security Operations (SecOps) Microsoft Sentinel Microsoft Purview Microsoft Defender Entra ID/Identity & Access Management Threat Hunting Vulnerability Management Data Protection & Information Governance Security Monitoring & Incident Investigation Cloud Security (Azure and/or AWS) We're particularly ...

maintain high standards across ISO 27001, Cyber Essentials Plus and wider compliance frameworks. You will: Supporting ISO 27001 activities and ongoing security control management and improvements Supporting vulnerability management processes including remediating findings with both software and configurations Supporting security configuration improvements across our Microsoft 365 environment … Supporting the maintenance of Cyber Essentials Plus, NCSC CAF and other compliance frameworks Contributing to risk management processes, including maintaining risk registers Helping to develop, test and maintain Business Continuity and Disaster Recovery strategies Be comfortable with supporting security documentation creation and maintenance Supporting security awareness initiatives and wider ...

requirements are integrated from design through to deployment. You will also play a key role in shaping and governing the organisation's Identity & Access Management (IAM) strategy, helping to drive improvements in Zero Trust security, privileged access controls, and identity lifecycle management. Key Responsibilities Lead and enhance the organisation … adoption across Azure and AWS environments Drive IAM governance, including MFA, RBAC, PAM/PIM, Conditional Access, and Zero Trust controls Support penetration testing, vulnerability management, and remediation activities Collaborate with internal stakeholders, suppliers, and external partners to improve security posture Contribute to security standards, policies, audits ...

organisation's security posture across endpoint, identity, and cloud environments. You will play a key role in Security Operations, working across incident response, vulnerability management, and endpoint security, whilst helping drive improvements across the Microsoft security ecosystem. Key skills:- Strong Security Operations & Incident Response experience Experience working with … SIEM tools (QRadar or similar) for monitoring and alert triage Vulnerability Management experience using tools such as Qualys (including Patch Management module) Strong experience across Microsoft Security stack, including: Microsoft Intune (endpoint security, device compliance, policy management) Windows OS Security/Endpoint Hardening Microsoft 365 & Azure ...