1 to 25 of 27 Permanent Vulnerability Remediation Jobs in London

Primary Details Time Type: Full time Worker Type: Employee Vulnerability Management Data Analyst Permanent London/Hybrid At QBE, our purpose is to enable a more resilient future. We are an international insurer and reinsurer with a local presence in 27 countries. The Opportunity As part of our continuous improvement and expansion of the vulnerability management function, we … are seeking a highly motivated Vulnerability Management Data Analyst to join our Global Security Operations Centre. This permanent, hybrid role is based out of our London office and reports to the Threat & Vulnerability Manager. The successful candidate will play a key role in strengthening QBE’s cyber resilience by turning complex security data into meaningful insights. This role … will directly support the identification, prioritisation, remediation and reporting of vulnerabilities—helping QBE stay ahead of emerging threats. Your New Role As a Vulnerability Management Data Analyst, you’ll collaborate with teams across security engineering, vulnerability management, service management, cyber governance, risk and divisional consultancy to ensure data accuracy, develop dashboards and reports, and support decision-making More ❯

concerns, and fostering a security-first mindset. DevSecOps Enablement : Promote and implement secure development practices across CI/CD pipelines, secrets and key management, dependency management, and secure design. Vulnerability Management : Lead vulnerability remediation effortstriaging findings, prioritizing risks, and partnering with teams to deliver effective, pragmatic fixes. Tooling & Automation : Integrate security tools (e.g., SAST, DAST, SCA, secrets … GitHub workflows, and Terraform. Deep understanding of cloud security principles in AWS and Azure, particularly around IAM, secrets management, and networking. Proficient in secure coding practices, threat modeling, and vulnerability remediation. Familiar with a range of security tooling including static and dynamic analysis, software composition analysis, and container security. Excellent communication and collaboration skillsable to translate complex security concepts More ❯

infrastructure Automate deployments, testing, and infrastructure using scripting and CI/CD tools Configure networking components including VPNs, VPCs, and cloud integrations Ensure security compliance (ISO 27001) and support vulnerability remediation Oversee software deployments, backups, and monitoring strategies Collaborate with development, security, and infrastructure teams to embed DevOps practices Maintain clear documentation of systems, processes, and procedures Required More ❯

infrastructure Automate deployments, testing, and infrastructure using scripting and CI/CD tools Configure networking components including VPNs, VPCs, and cloud integrations Ensure security compliance (ISO 27001) and support vulnerability remediation Oversee software deployments, backups, and monitoring strategies Collaborate with development, security, and infrastructure teams to embed DevOps practices Maintain clear documentation of systems, processes, and procedures Required More ❯

telemetry and observability to enable proactive threat detection and automated response. Apply SRE principles to improve reliability, performance, and maintainability of security services. Lead platform health, patching automation, and vulnerability remediation workflows. Define service level objectives (SLOs) and key performance indicators (KPIs) for all security services. Compliance, Governance & Risk Management: Ensure alignment with global compliance requirements such as More ❯

improvement of operational processes. Implement and maintain monitoring alerts, dashboards, and metrics to ensure visibility into the messaging layer. Ensure compliance with security policies and participate in audits and vulnerability remediation. Maintain accurate documentation, including topology diagrams, runbooks, and configuration baselines. Required Skills & Qualifications: 3+ years of experience administering Solace PubSub+ messaging systems. Strong background in production support , preferably More ❯

improvement of operational processes. Implement and maintain monitoring alerts, dashboards, and metrics to ensure visibility into the messaging layer. Ensure compliance with security policies and participate in audits and vulnerability remediation. Maintain accurate documentation, including topology diagrams, runbooks, and configuration baselines. Required Skills & Qualifications: 3+ years of experience administering Solace PubSub+ messaging systems. Strong background in production support , preferably More ❯

improvement of operational processes. Implement and maintain monitoring alerts, dashboards, and metrics to ensure visibility into the messaging layer. Ensure compliance with security policies and participate in audits and vulnerability remediation. Maintain accurate documentation, including topology diagrams, runbooks, and configuration baselines. Required Skills & Qualifications: 3+ years of experience administering Solace PubSub+ messaging systems. Strong background in production support , preferably More ❯

improvement of operational processes. Implement and maintain monitoring alerts, dashboards, and metrics to ensure visibility into the messaging layer. Ensure compliance with security policies and participate in audits and vulnerability remediation. Maintain accurate documentation, including topology diagrams, runbooks, and configuration baselines. Required Skills & Qualifications: 3+ years of experience administering Solace PubSub+ messaging systems. Strong background in production support , preferably More ❯

security requirements are integrated into design and delivery.* Collaborate with stakeholders to identify and mitigate risks.Risk & Compliance* Perform security assessments on systems, applications, and processes.* Highlight vulnerabilities and recommend remediation measures.* Ensure adherence to internal policies and external standards.Awareness & Training* Drive security awareness initiatives across the organisation.* Develop and deliver engaging training sessions.* Keep informed on emerging threats, trends More ❯

requirements are integrated into design and delivery. * Collaborate with stakeholders to identify and mitigate risks. Risk & Compliance * Perform security assessments on systems, applications, and processes. * Highlight vulnerabilities and recommend remediation measures. * Ensure adherence to internal policies and external standards. Awareness & Training * Drive security awareness initiatives across the organisation. * Develop and deliver engaging training sessions. * Keep informed on emerging threats More ❯

Native platforms (Azure, AWS, GCP, OpenShift) Infrastructure-as-Code (Terraform, Ansible, Crossplane) Container orchestration, networking, and automation (Kubernetes, Docker) Scripting (Bash, Powershell, Python) Programming languages (Golang, Java, Ruby, Python) Vulnerability remediation and mitigation tools (BlackDuck, Snyk) We value your ability to adapt over deep specialization. In addition, we're currently seeking folks with strong experience in security and More ❯

Native platforms (Azure, AWS, GCP, OpenShift) Infrastructure-as-Code (Terraform, Ansible, Crossplane) Container orchestration, networking, and automation (Kubernetes, Docker) Scripting (Bash, Powershell, Python) Programming languages (Golang, Java, Ruby, Python) Vulnerability remediation and mitigation tools (BlackDuck, Snyk) We value your ability to adapt over deep specialization. In addition, we're currently seeking folks with strong experience in security and More ❯

one of the most ambitious Tech Transformations for one of the most renowned Investment Management firms in the UK. Responsibilities Perform hands-on security threat modelling, risk assessment and vulnerability remediation. Evaluate, architect, implement and support security focused tools and services. Work closely with Development teams to ensure security and privacy are built in by design, automating tasks wherever More ❯

one of the most ambitious Tech Transformations for one of the most renowned Investment Management firms in the UK. Responsibilities Perform hands-on security threat modelling, risk assessment and vulnerability remediation. Evaluate, architect, implement and support security focused tools and services. Work closely with Development teams to ensure security and privacy are built in by design, automating tasks wherever More ❯

one of the most ambitious Tech Transformations for one of the most renowned Investment Management firms in the UK. Responsibilities Perform hands-on security threat modelling, risk assessment and vulnerability remediation. Evaluate, architect, implement and support security focused tools and services. Work closely with Development teams to ensure security and privacy are built in by design, automating tasks wherever More ❯

one of the most ambitious Tech Transformations for one of the most renowned Investment Management firms in the UK. Responsibilities Perform hands-on security threat modelling, risk assessment and vulnerability remediation. Evaluate, architect, implement and support security focused tools and services. Work closely with Development teams to ensure security and privacy are built in by design, automating tasks wherever More ❯

security access and manage IDS/IPS configurations Establishing and implementing security 'best-practice' standards as well as departmental policies and procedures Responsible for Security scanning and the efficient remediation of vulnerabilities Responsible for analysing all security incidents to determine root cause Determine, recommend, and implement upgrade security measures and controls Delivery security responses for customer and client compliance More ❯

s degree in Information Systems, Computer Science, or related field (or equivalent experience) Experience with ITSM platforms (e.g., ServiceNow) and monitoring tools Understanding of access management, patch management, and vulnerability remediation processes Familiarity with ITIL practices (Incident, Problem, Change, and Configuration Management) Exposure to application performance tuning, cloud platforms, or scripting (e.g., PowerShell, Python More ❯

security access and manage IDS/IPS configurations Establishing and implementing security 'best-practice' standards as well as departmental policies and procedures Responsible for Security scanning and the efficient remediation of vulnerabilities Responsible for analysing all security incidents to determine root cause Determine, recommend, and implement upgrade security measures and controls Delivery security responses for customer and client compliance More ❯

of experience in enterprise application support or IT operations Strong troubleshooting and analytical skills Familiarity with ITSM platforms (e.g., ServiceNow) and monitoring tools Understanding of access management, patching, and vulnerability remediation Exposure to ITIL practices and professional services environments Experience with documentation tools and scripting (e.g., PowerShell, Python) Relevant certifications (e.g., ITIL Foundation) preferred It offers the chance More ❯

Officer to interpret regulatory requirements (ISO27001, GDPR, DPAs) and translate them into technical controls, policies and run books. Audit & pen test lead - Coordinate external auditors, manage evidence collection, track remediation tickets and present technical posture to stakeholders. Threat & vulnerability management - Run container image scanning (Snyk), dependency SBOM generation and orchestrate patch cycles across clusters. Incident readiness - Own on … deep dive of existing CI/CD, Terraform and security policies. Shadow DPO on open compliance items to build context. Within three months, you will Lead the next quarterly vulnerability scan and deliver remediation plan. Introduce SBOM + container image scanning gates to GitHub Actions. Publish updated incident response runbook and run a tabletop drill. Within six months More ❯

Officer to interpret regulatory requirements (ISO27001, GDPR, DPAs) and translate them into technical controls, policies and run books. Audit & pen test lead - Coordinate external auditors, manage evidence collection, track remediation tickets and present technical posture to stakeholders. Threat & vulnerability management - Run container image scanning (Snyk), dependency SBOM generation and orchestrate patch cycles across clusters. Incident readiness - Own on … deep dive of existing CI/CD, Terraform and security policies. Shadow DPO on open compliance items to build context. Within three months, you will Lead the next quarterly vulnerability scan and deliver remediation plan. Introduce SBOM + container image scanning gates to GitHub Actions. Publish updated incident response runbook and run a tabletop drill. Within six months More ❯

and secure data storage Security Tooling & Automation Build and maintain security testing pipelines Integrate security tools with GitHub Actions Develop custom security linters and pre-commit hooks Create automated vulnerability tracking and remediation workflows Implement secret scanning and dependency checking Build security dashboards and metrics reporting Developer Enablement & Training Create secure coding guidelines for different technology stacks Develop … Understanding of cloud-native security patterns Code Review & Analysis Skills Ability to identify security vulnerabilities through manual code review Experience with static and dynamic analysis tools Understanding of common vulnerability patterns across languages Knowledge of secure architecture patterns and anti-patterns Ability to provide actionable remediation guidance Professional Requirements Experience in financial services or high-security environments Strong More ❯

and secure data storage Security Tooling & Automation Build and maintain security testing pipelines Integrate security tools with GitHub Actions Develop custom security linters and pre-commit hooks Create automated vulnerability tracking and remediation workflows Implement secret scanning and dependency checking Build security dashboards and metrics reporting Developer Enablement & Training Create secure coding guidelines for different technology stacks Develop … Understanding of cloud-native security patterns Code Review & Analysis Skills Ability to identify security vulnerabilities through manual code review Experience with static and dynamic analysis tools Understanding of common vulnerability patterns across languages Knowledge of secure architecture patterns and anti-patterns Ability to provide actionable remediation guidance Professional Requirements Experience in financial services or high-security environments Strong More ❯