1 to 25 of 61 Permanent Vulnerability Management Jobs in London

GitHub-based CI/CD pipelines, AWS environments and infrastructure-as-code workflows. This includes improving SAST, software composition analysis, secret scanning, IaC scanning, vulnerability management and AWS misconfiguration management so that findings are actionable, low-noise and owned by the right teams. … practical threat-modelling sessions, review application and cloud designs, improve security playbooks, support vulnerability and misconfiguration remediation, and build automation that reduces toil. We’re looking for someone who has demonstrably improved security outcomes in real engineering environments, not just someone with theoretical knowledge of tools or frameworks. Depending ...

Vulnerability Governance Lead Location: [London 2-3 days a week onsite] Basic salary: £70K One of our clients are looking for a Vulnerability Governance Lead to redefine how cyber risk is managed and mitigated across this evolving organisation. This is not a traditional patching or operational security role … strategic position focused on governance, visibility, and accountability . The successful applicant for the Vulnerability Governance Lead will establish a modern, risk-led vulnerability management capability , giving the business a clear, unified view of exposure across infrastructure, cloud, and applications. The vulnerability Governance Lead will drive ...

driving automation initiatives within a mature but evolving cyber function.The role offers broad exposure across security engineering, detection engineering, cloud security, incident response, vulnerability management, and security architecture.Key Responsibilities Design, implement, and improve security controls across cloud and enterprise infrastructure Enhance SIEM, SOAR, and EDR/XDR capabilities … using scripting and AI-assisted tooling Lead technical investigations and incident response activities Improve threat visibility and reduce false positives through detection engineering Conduct vulnerability management and remediation initiatives Partner with engineering, infrastructure, and DevOps teams to embed security into operational processes and CI/CD pipelines Perform ...

protect critical business systems, data, and infrastructure. Leads security operations, threat detection, incident response, and cyber resilience initiatives while ensuring alignment with organisational risk management objectives. Key Responsibilities Lead and manage the Cyber Defence function, overseeing security operations, threat intelligence, vulnerability management, and incident response capabilities. Develop … programmes, identifying emerging risks and implementing proactive defensive measures. Lead cyber incident response activities, coordinating technical teams and business stakeholders during security events. Manage vulnerability assessment and remediation programmes across enterprise infrastructure and applications. Collaborate with technology, risk, compliance, and business teams to strengthen organisational cyber resilience. Provide strategic ...

Drive automation and security tooling improvements to improve visibility, detection, and response. Security Operations & Detection Engineering Manage and optimise security tooling including SIEM, EDR, vulnerability management, and monitoring platforms. Develop and improve detection engineering capabilities and threat monitoring use cases. Partner with the external SOC provider to ensure … effective alerting, triage, escalation, and response processes. Lead vulnerability management activities from identification through remediation tracking and reporting. Support and lead technical incident response activities, including investigation, containment, recovery, and lessons learned. Security Standards & Continuous Improvement Develop and maintain technical security standards, baselines, and engineering controls. Partner with ...

VULNERABILITY MANAGEMENT ENGINEER Up to £85,000 ( Dependent on Experience ) + Bonus + Shares + Staff Benefits Fully Remote ( UK ) SECURE has Strategically Partnered with a Multi-Award-Winning, Platform-Based Organisation at the forefront of Pre-Emptive Exposure Management. As a market leader backed by significant venture … funding, they are expanding their Offensive Security capabilities, specifically by scaling an Elite Vulnerability Research & Engineering Function across the globe. Role Overview: Step in as a Hybrid Threat Hunter & Tooling Engineer . You will own the lifecycle from Discovery to Detection, conducting 0-Day/N-Day Research whilst ...

department’s controls design and effectiveness, ensuring controls are proportionate and embedded in day‐to‐day department activity* Provide proactive assurance around risk management through appropriate data driven monitoring and through the implementation of structured sampling techniques to validate that controls are functioning as intended before failure* Educate … with industry and company standards* Work in partnership with the Digital Engineering Solutions and Services Product and Platform owners, challenging and advising on risk management for new products, processes and change programmes. Provide risk-based decision making, supporting the department to make informed, risk-based decisions by providing ...

Cyber Security Consultant x 2 (Project Management focus) Join a growing cyber security consultancy that helps organisations strengthen their security posture, manage risk, and navigate an increasingly complex threat landscape. This is a client-facing role where you'll play a key part in delivering trusted advice, leading engagements … across a diverse client base. Conduct cyber maturity assessments, risk reviews, and gap analyses to identify areas for improvement. Advise organisations on governance, risk management, compliance, and security best practice. Develop practical security roadmaps and recommendations aligned to business objectives. Support clients with certification and compliance initiatives, including recognised ...

organisation's security posture across endpoint, identity, and cloud environments. You will play a key role in Security Operations, working across incident response, vulnerability management, and endpoint security, whilst helping drive improvements across the Microsoft security ecosystem. Key skills:- Strong Security Operations & Incident Response experience Experience working with … SIEM tools (QRadar or similar) for monitoring and alert triage Vulnerability Management experience using tools such as Qualys (including Patch Management module) Strong experience across Microsoft Security stack, including: Microsoft Intune (endpoint security, device compliance, policy management) Windows OS Security/Endpoint Hardening Microsoft 365 & Azure ...

sector. Through its various business units, it builds and operates renewable projects (such as solar, wind, and batteries), manages investment funds, and provides asset management services across the energy lifecycle. Overall, its mission is to accelerate the transition to sustainable energy while delivering strong financial returns for investors … Services (TDS) function in maintaining and improving the organisation’s cybersecurity capability. This role provides hands-on experience across cyber security operations, governance, risk management, architecture, and security assurance. The successful candidate will work alongside internal technology teams and external partners to support day-to-day security activities, contribute ...

SENIOR VULNERABILITY ENGINEER Up to £115,000 + Bonus + Share Scheme + Staff Benefits Fully Remote ( UK ) SECURE has Strategically Partnered with a Multi-Award-Winning, Software-Based Organisation at the forefront of Pre-Emptive Exposure Management. As a market leader backed by significant venture funding, they … expanding their Offensive Security capabilities, specifically by scaling an Elite Vulnerability Research & Engineering Function across the globe. Role Overview: Step in as the highly technical LeadVulnerability Engineer . Acting as a true Hybrid Researcher & Software Engineer, you will conduct original 0-Day & N-Day Research while Engineering the Production ...

growing SecOps function protecting a modern Microsoft and cloud environment. This is a highly technical role focused on incident response, SIEM optimisation, vulnerability management, and security engineering, helping drive a Zero Trust journey and supporting ISO 27001 & CIS controls. What you'll be doing Lead and support incident … response, threat monitoring and root-cause analysis Tune and optimise SIEM & CrowdStrike EDR for maximum effectiveness Drive vulnerability management, remediation and risk reduction Secure cloud and infrastructure across Intune, Entra ID, Palo Alto, Cisco ISE, Mimecast and more Implement key security controls including MFA, SSO, PAM, WAF, DDoS ...

security policies and standards. Perform risk assessments, threat modelling, and compliance gap analysis. Advise on ISO 27001, NIST, PCI DSS, and GDPR. Threat and Vulnerability Management Interpret threat intelligence and guide remediation strategies. Support patching, OS hardening, and configuration management. Assess vendor advisories and emerging threats. Stakeholder Engagement … security. Knowledge of NAC, IDS/IPS, DDoS, segmentation, encryption, and cloud security (AWS/Azure/GCP). Experience with vulnerability management, secure configuration, and incident response. General Requirements Strong communication and presentation skills. Ability to work independently and manage multiple priorities. Experience with enterprise customers ...

security guardrails across GitHub-based CI/CD pipelines, application repositories and engineering workflows. This includes working with SAST, software composition analysis, secret scanning, vulnerability management and secure coding guidance so that security findings are clear, actionable and owned by the right teams. You’ll work closely with … modern engineering environments. Developer-friendly security mindset: you enjoy working with engineers, explaining risks clearly and helping teams adopt secure practices without unnecessary friction. Vulnerability management experience: experience triaging and tracking application vulnerabilities from sources such as SAST, dependency scanning, secret scanning, penetration tests, bug bounty reports ...

This is an excellent opportunity for someone with around 1-2 years of Cyber Security experience who is looking to develop their career within Vulnerability Assessment, Penetration Testing, and Security Testing. The successful Junior Security Testing Analyst will work alongside experienced Penetration Testers and Security Consultants, supporting the delivery … vulnerability assessments, attack surface reviews, security testing activities, and remediation programmes across a diverse portfolio of clients. This role offers a clear progression path towards becoming a Penetration Tester, supported by mentoring, practical client work, and funded certifications. Please note: Unfortunately, this role is not able to offer visa ...

engineering, with relevant degree or equivalent experience Experience applying cyber security principles across the systems or product engineering lifecycle Knowledge of cyber risk management and vulnerability management Experience with threat modelling frameworks such as MITRE ATT and CK, DEF3ND, or EMB3D Awareness of industrial control systems … submit, subject to required skills, your application to our client in conjunction with this vacancy only. Key Skills Product Cyber Security Specialist, Cyber Risk Management, Threat Modelling, NIST CSF, Industrial Control Systems, Secure by Design, Defence ...

Endpoint and Entra ID environments. The successful candidate will be responsible for endpoint security, device compliance, EDR investigations, identity controls and modern endpoint management across the business. This role is primarily office-based, with four days per week in their London office (closest station - London Bridge … role will include: Own and manage Windows 11, iOS, and Android endpoints using Microsoft Intune, including Autopilot provisioning, device configuration, compliance policies, patching, update management, and application deployment. Maintain endpoint security standards, device lifecycle management, and secure configuration baselines aligned to Microsoft and industry best practices. Administer ...

strategy aligned with the firm’s business objectives and risk appetite. Oversee continuous improvement of policies, standards, procedures, and controls for all offices. Team Management: Lead, mentor and develop a high-performing security team. Set objectives, manage workloads and foster professional growth within the team. Security Operations: Oversee operations … including threat monitoring, vulnerability management, access controls, endpoint security and incident response. Maintain robust cyber resilience measures across on-premise and cloud environments. Compliance and Risk Management: Ensure compliance with GDPR, SRA requirements (for legal sector), ISO 27001/2 standards and other applicable regulations ...

Certified Ethical Hacker (CEH) & Forescout FSCA (free exam re-sit included) Hands-on project work that counts as real-world experience, including: Troubleshooting, Printer Management, Back Up/Disk Partition, and Network Mapping Networking with Cisco: Wireless Management, VLANs, Routing Protocols, Server Management, and Port Security Microsoft … Azure: IaaS & PaaS deployment, Storage Management, Virtual Networks, Security, and IoT solutions SIEM Technologies (Splunk) for security monitoring and analysis Vulnerability Management using Tenable What You’ll Get: 100+ hours of live, instructor-led online training Direct experience simulating the challenges you’ll face in the workplace ...

Certified Ethical Hacker (CEH) & Forescout FSCA (free exam re-sit included) Hands-on project work that counts as real-world experience, including: Troubleshooting, Printer Management, Back Up/Disk Partition, and Network Mapping Networking with Cisco: Wireless Management, VLANs, Routing Protocols, Server Management, and Port Security Microsoft … Azure: IaaS & PaaS deployment, Storage Management, Virtual Networks, Security, and IoT solutions SIEM Technologies (Splunk) for security monitoring and analysis Vulnerability Management using Tenable What You’ll Get: 100+ hours of live, instructor-led online training Direct experience simulating the challenges you’ll face in the workplace ...

Certified Ethical Hacker (CEH) & Forescout FSCA (free exam re-sit included) Hands-on project work that counts as real-world experience, including: Troubleshooting, Printer Management, Back Up/Disk Partition, and Network Mapping Networking with Cisco: Wireless Management, VLANs, Routing Protocols, Server Management, and Port Security Microsoft … Azure: IaaS & PaaS deployment, Storage Management, Virtual Networks, Security, and IoT solutions SIEM Technologies (Splunk) for security monitoring and analysis Vulnerability Management using Tenable What You’ll Get: 100+ hours of live, instructor-led online training Direct experience simulating the challenges you’ll face in the workplace ...

Certified Ethical Hacker (CEH) & Forescout FSCA (free exam re-sit included) Hands-on project work that counts as real-world experience, including: Troubleshooting, Printer Management, Back Up/Disk Partition, and Network Mapping Networking with Cisco: Wireless Management, VLANs, Routing Protocols, Server Management, and Port Security Microsoft … Azure: IaaS & PaaS deployment, Storage Management, Virtual Networks, Security, and IoT solutions SIEM Technologies (Splunk) for security monitoring and analysis Vulnerability Management using Tenable What You’ll Get: 100+ hours of live, instructor-led online training Direct experience simulating the challenges you’ll face in the workplace ...

Certified Ethical Hacker (CEH) & Forescout FSCA (free exam re-sit included) Hands-on project work that counts as real-world experience, including: Troubleshooting, Printer Management, Back Up/Disk Partition, and Network Mapping Networking with Cisco: Wireless Management, VLANs, Routing Protocols, Server Management, and Port Security Microsoft … Azure: IaaS & PaaS deployment, Storage Management, Virtual Networks, Security, and IoT solutions SIEM Technologies (Splunk) for security monitoring and analysis Vulnerability Management using Tenable What You’ll Get: 100+ hours of live, instructor-led online training Direct experience simulating the challenges you’ll face in the workplace ...

Certified Ethical Hacker (CEH) & Forescout FSCA (free exam re-sit included) Hands-on project work that counts as real-world experience, including: Troubleshooting, Printer Management, Back Up/Disk Partition, and Network Mapping Networking with Cisco: Wireless Management, VLANs, Routing Protocols, Server Management, and Port Security Microsoft … Azure: IaaS & PaaS deployment, Storage Management, Virtual Networks, Security, and IoT solutions SIEM Technologies (Splunk) for security monitoring and analysis Vulnerability Management using Tenable What You’ll Get: 100+ hours of live, instructor-led online training Direct experience simulating the challenges you’ll face in the workplace ...

Certified Ethical Hacker (CEH) & Forescout FSCA (free exam re-sit included) Hands-on project work that counts as real-world experience, including: Troubleshooting, Printer Management, Back Up/Disk Partition, and Network Mapping Networking with Cisco: Wireless Management, VLANs, Routing Protocols, Server Management, and Port Security Microsoft … Azure: IaaS & PaaS deployment, Storage Management, Virtual Networks, Security, and IoT solutions SIEM Technologies (Splunk) for security monitoring and analysis Vulnerability Management using Tenable What You’ll Get: 100+ hours of live, instructor-led online training Direct experience simulating the challenges you’ll face in the workplace ...