1 to 25 of 50 Permanent Vulnerability Management Jobs in London

Company description: We are seeking a dynamic and motivated Vulnerability Management Lead to join our rapidly growing program. The ideal candidate will blend cybersecurity expertise with technical analytical skills to support diverse operational needs. The Vulnerability Management Lead will play a crucial role in tracking … managing the identification, assessment, and remediation of security vulnerabilities across the organizations infrastructure and monitoring and reporting on vulnerability and other security compliance status. The role requires collaboration with various partners to ensure that vulnerability assessments and emerging threats are prioritized and advanced. Additionally, the successful candidate will ...

Company description: We are seeking a dynamic and motivated Vulnerability Management Lead to join our rapidly growing program. The ideal candidate will blend cybersecurity expertise with technical analytical skills to support diverse operational needs. The Vulnerability Management Lead will play a crucial role in tracking ...

safeguard confidentiality, integrity and availability of systems. Working in a fast-paced environment, the SOC provides 24/7 vigilance, rapid incident response, vulnerability oversight and actionable threat intelligence to reduce cyber risk Who Are We Looking Fo r?We are seeking a Cyber Security Incident Response & Threat Intelligence … disseminate threat intelligence from internal and external so urces.Provide intelligence driven recommendations for improved SOC detection and con trols. Technical SkillsHands-on experience with vulnerability management tools (e.g., Nessus, Qualys, R apid7).Familiarity with threat intelligence platforms (e.g., Recorded Future, ThreatConnect, Man diant).Experience with SOC tools ...

best practices. Utilise Microsoft Security stack (Defender, Sentinel, Purview, Entra ID) to design, implement, and optimise security measures, including SIEM integration and automation. Support vulnerability management and embed security controls within CI/CD pipelines for automated testing and compliance. Assist with security assessments, aligning solutions with frameworks … . In-depth knowledge of Microsoft 365 security tools (Defender for Office 365, Entra ID, Purview). Familiar with SIEM (Microsoft Sentinel, SPLUNK), vulnerability management, incident response, and security standards like NIST, CIS, and ISO. Skilled in building relationships with senior stakeholders and integrating into cross-functional teams ...

workstreams include ensuring the capture and reporting of vulnerabilities and risk. Communication and education of the IT and wider business team, ensuring the management and maintenance of documentation that support security compliance and oversee the management and monitoring of IT Supply chain security. Maintain oversight of vulnerability management processes and mechanisms, monitoring KPIs, understanding key issues, engaging with the business to progress. Ensuring that mechanisms are in place and managed, that demonstrate engagement with the IT user community on Cyber Security awareness and education. Documentation is key to setting the framework of standards and defining ...

security frameworks. Key Responsibilities Lead and develop a team of cyber security engineers, providing technical and strategic direction. Oversee security operations including monitoring, incident management, and threat response. Conduct assessments across the IT estate to identify risks and emerging threats. Manage security events from detection through to remediation, ensuring … organisation's security posture in line with a rapidly evolving technology landscape. Maintain adherence to relevant security standards and regulatory frameworks. Oversee vulnerability management activities and ensure effective patch governance. Support cloud security programmes and the development of secure architecture patterns. Lead enhancements to threat detection, SIEM/ ...

standards, and mentor colleagues in best practices. Key Responsibilities Lead application and cloud security initiatives, ensuring systems and software are secure by design. Drive vulnerability management and implement a risk-based approach across the technology stack. Perform security testing (SAST, DAST, SCA) and work with developers to remediate … cloud security engineering. Deep understanding of web app vulnerabilities (OWASP Top 10, CWE) and secure coding practices. Proficiency with security testing tools and vulnerability management platforms. Broad knowledge of network and infrastructure security concepts (WAFs, ACLs, VPNs, etc.). Familiarity with security frameworks and principles such as Zero ...

standards, and mentor colleagues in best practices. Key Responsibilities Lead application and cloud security initiatives, ensuring systems and software are secure by design. Drive vulnerability management and implement a risk-based approach across the technology stack. Perform security testing (SAST, DAST, SCA) and work with developers to remediate … cloud security engineering. Deep understanding of web app vulnerabilities (OWASP Top 10, CWE) and secure coding practices. Proficiency with security testing tools and vulnerability management platforms. Broad knowledge of network and infrastructure security concepts (WAFs, ACLs, VPNs, etc.). Familiarity with security frameworks and principles such as Zero ...

complex technology, information security audits and high-level reviews, including designing test strategies, audit test papers and drafting of audit findings. Validation to confirm management's remediation of audit and regulatory issues. Management and tracking of businesses remediation activities. Actively contributing to the ongoing improvement of audit practices … standards/requirements (US, UK) ie, GDPR, BCBS 239, FFIEC 101, 3402, CHAP. Working experience and/or knowledge of Security domains including Access management, Threat management, Incident response and recovery, Data protection, Vulnerability management, Monitoring and logging, Physical security, and Security risk management ...

streamline processes Perform firmware/software upgrades and maintain accurate asset and documentation records Uphold rigorous change control and security best practices, including vulnerability management Mentor junior team members and contribute to the continuous improvement of systems and processes What We’re Looking For Proven experience … projects from concept through to implementation Scripting/automation skills (Python, Ansible, or similar) to improve efficiency Solid grasp of IT security principles and vulnerability management Excellent customer-facing skills with the ability to articulate technical concepts clearly Relevant industry certifications (CCNP, CCIE, JNCIP, Fortinet NSE, etc.) strongly ...

standards, with comprehensive documentation and audit trails. Partner with compliance and risk teams to monitor and report on IT governance metrics. Software Security & Risk Management Lead application security strategy, including vulnerability management, patching, and secure coding practices. Oversee penetration testing, threat modelling, and remediation plans. Manage identity … access controls across all systems, ensuring least-privilege principles. Systems Process Management Standardise and optimise system workflows for efficiency and compliance. Implement automated monitoring and alerting for critical applications. Maintain version control, change management, and release processes with full auditability. Incident Response & Business Continuity Develop and maintain incident ...

File Servers. Security Hardening Policies: Define, deploy, and maintain security hardening policies for Windows and Linux servers, following industry's best practices. PKI Management: Operate and enhance the company's Public Key Infrastructure (PKI), supporting use cases like certificate-based authentication and secure network access. Secure Admin Workflows: Implement … maintain secure administrative access using Privileged Access Workstations (PAWs), secure protocols (SSH, RDP), and Privileged Access Management (PAM) tools. Active Directory: Maintain and support Active Directory, including integration with Microsoft Entra ID. Automation & Configuration Management: Use Puppet and scripting tools (PowerShell, Python, Bash) to automate and maintain system ...

cloud environments. Ensure centralised security, monitoring, and incident response platforms operate effectively. You will collaborate closely with our Service Desk, Projects and Account Management teams to maintain high standards of service, document solutions and mentor junior engineers in line with cybersecurity best practices and frameworks such as ISO27001, NIST … analyse, and respond to alerts from client security platforms (MDR/XDR, SentinelOne, Huntress, Fortinet, Mimecast, Avanan, Defender) to ensure rapid threat mitigation. Conduct vulnerability assessments, risk analyses and security audits across client environments, providing actionable recommendations and remediation guidance. Implement and maintain security hardening across infrastructure, cloud services ...

cloud environments. Ensure centralised security, monitoring, and incident response platforms operate effectively. You will collaborate closely with our Service Desk, Projects and Account Management teams to maintain high standards of service, document solutions and mentor junior engineers in line with cybersecurity best practices and frameworks such as ISO27001, NIST … analyse, and respond to alerts from client security platforms (MDR/XDR, SentinelOne, Huntress, Fortinet, Mimecast, Avanan, Defender) to ensure rapid threat mitigation. Conduct vulnerability assessments, risk analyses and security audits across client environments, providing actionable recommendations and remediation guidance. Implement and maintain security hardening across infrastructure, cloud services ...

cloud environments. Ensure centralised security, monitoring, and incident response platforms operate effectively. You will collaborate closely with our Service Desk, Projects and Account Management teams to maintain high standards of service, document solutions and mentor junior engineers in line with cybersecurity best practices and frameworks such as ISO27001, NIST … analyse, and respond to alerts from client security platforms (MDR/XDR, SentinelOne, Huntress, Fortinet, Mimecast, Avanan, Defender) to ensure rapid threat mitigation. Conduct vulnerability assessments, risk analyses and security audits across client environments, providing actionable recommendations and remediation guidance. Implement and maintain security hardening across infrastructure, cloud services ...

business on what is good practice, what are the current threats and how to avoid appearing in the news. Providing specialist security advice to management, project teams and internal stakeholders. Continuous improvement of MI reporting up to and including board level audience. Monitoring the vendor and product landscape … know what products are available. Perform threat identification and vulnerability management duties. Responsible for ensuring that security vulnerabilities are raised to internal teams and/or 3rd parties suppliers and remediated according to agree timescales. Working with internal and external teams to mitigate and/or control Cyber ...

teams on remediation steps and ensure alignment with security best practices. Support WebOps activities including deployment and configuration of SIEM and CNAPP tools. Oversee vulnerability management processes and ensure timely remediation. Manage and maintain LogicMonitor for cloud platform monitoring: Create and update logicmodules Configure alert rules and escalation … Azure Policies for security posture Implement regulatory compliance templates Hands-on experience with LogicMonitor and ServiceNow integrations Proven ability to lead incident response and vulnerability remediation efforts Nice-to-Have Skills: Familiarity with multi-cloud environments (AWS, GCP) Experience in coordinating ITHC assessments and managing audit findings Knowledge ...

teams on remediation steps and ensure alignment with security best practices. Support WebOps activities including deployment and configuration of SIEM and CNAPP tools. Oversee vulnerability management processes and ensure timely remediation. Manage and maintain LogicMonitor for cloud platform monitoring: Create and update logicmodules Configure alert rules and escalation … Azure Policies for security posture Implement regulatory compliance templates Hands-on experience with LogicMonitor and ServiceNow integrations Proven ability to lead incident response and vulnerability remediation efforts Nice-to-Have Skills: Familiarity with multi-cloud environments (AWS, GCP) Experience in coordinating ITHC assessments and managing audit findings Knowledge ...

Plus, and ISO/IEC 27001:2022 aligned practices. Lead Data Protection Impact Assessments (DPIAs), data mapping, classification, and retention programs. Oversee incident response, vulnerability management, patch compliance, and secure configuration baselines using SCCM, Ivanti, Intune, GPO, and Azure Defender. Drive SOC integration, threat intelligence, and monitoring … hybrid architectures. Strong experience in Zero Trust security models. Experienced in security tooling selection and implementation. Deep understanding of data protection legislation, risk management frameworks, and compliance requirements. Exceptional leadership, stakeholder engagement, and influencing skills. ...

security controls, frameworks and processes Overseeing BAU security operations, ensuring services are delivered efficiently and in line with SLAs Leading activity across Threat & Vulnerability Management (TVM), PAM, IAM, DLP, Network Security and Penetration Testing Managing outsourced security providers and holding them to account on performance Acting … enterprise environments Industry-recognised certifications such as CISSP, TOGAF, CCSP, GCIH or equivalent Strong experience securing Microsoft cloud environments (Azure) design, deployment, configuration and management Broad knowledge of infrastructure and security solutions, including SIEM/SOAR Proven track record designing end-to-end solutions with security embedded across network ...

security controls, frameworks and processes Overseeing BAU security operations, ensuring services are delivered efficiently and in line with SLAs Leading activity across Threat & Vulnerability Management (TVM), PAM, IAM, DLP, Network Security and Penetration Testing Managing outsourced security providers and holding them to account on performance Acting … enterprise environments Industry-recognised certifications such as CISSP, TOGAF, CCSP, GCIH or equivalent Strong experience securing Microsoft cloud environments (Azure) - design, deployment, configuration and management Broad knowledge of infrastructure and security solutions, including SIEM/SOAR Proven track record designing end-to-end solutions with security Embedded across network ...

needed to ensure the secure release of products Identify and remediate vulnerabilities in systems and codebases Perform regular risk assessments, security testing and vulnerability analysis Create clear security documentation and guidelines Recommend improvements to security services and controls Ensure adherence to information security policies and standards Embed automation within … Azure and AWS security configuration Experience with security automation Knowledge of key security technologies such as IDS, SIEM/SOAR, email gateways, WAFs and vulnerability management tools Experience with SIEM platforms, including ELK stack Senior-level software development capability ...

email gateways, firewalls, and routing devices. ISO 27001, NIST, CIS Controls, and ITIL. Languages such as (e.g., PowerShell, Python) for configuration and compliance checks. Vulnerability management tools and practices. (IAM) principles and technologies If you tick the boxes above, please send me your cv as a word ...

roadmap Lead enterprise security governance and represent security at senior/board level Own policies, frameworks, compliance, DPIAs, and operating models Oversee incident response, vulnerability management, SOC integration, and threat monitoring Secure hybrid platforms (Azure, AWS, Nutanix, SD-WAN, Zero Trust, CASB, SASE) Lead risk assessments, KRIs … senior leadership Embed security culture through training, phishing simulations, and awareness programmes Drive security into operational teams, vendors, partners, and third-party risk management Success Measures Strategy delivered within first 90 days Strong GDPR & PCI audit outcomes Reduction in vulnerabilities and phishing incidents Improved audit ratings and team engagement ...

scaling secure cloud-native/SaaS platforms. Strong understanding of: Cloud architectures (AWS, Azure, GCP) Microservices, containers, CI/CD pipelines Secure SDLC and vulnerability management Experience coordinating penetration tests and working with CISOs/security leadership. Familiarity with compliance frameworks (ISO 27001, SOC2, GDPR). Preferred Skills … Excellent communication and stakeholder management skills. Ability to translate technical concepts for non-technical audiences. Strong organizational skills to manage multiple streams (product, security, compliance). Agile mindset with experience in scrum or kanban delivery. Key Attributes Visionary & pragmatic: Sets bold goals while delivering incremental value. Customer-focused: Prioritizes ...