1 to 25 of 64 Permanent Vulnerability Management Jobs in the North of England

background is required to join our global client's UK cybersecurity team. This role is predominantly end-client facing, advising on security best practices, vulnerability management and security standard compliance (e.g. NIST, ISO, PCI DSS etc), and leading audits and examinations. Skills & Experience Required: 2+ years of experience … working in Cyber Security within an AWS cloud environment Vulnerability management & Compliance Strong Security standard knowledge and experience, consulting on a range of security policies and standards such as GDPR, ISO, PCI, NIST Confidence when speaking with stakeholders and clients, as well as the ability to provide training ...

Senior Security Threat & Vulnerability Manager role at a leading UK telecoms provider. Own the end-to-end TVM lifecycle across hybrid on-prem/cloud environments: strategy, scanning, triage, remediation, and governance.? Lead Enterprise Threat & Vulnerability Management - Own the Cyber Frontline! Senior Security Threat & Vulnerability Manager … client is a leading UK Telecoms Provider looking for an experienced Threat & Vulnerability Manager to lead enterprise threat and vulnerability management across hybrid on-prem and cloud environments. Own it all : From asset discovery & scanning to patch orchestration and exec reporting - unblock teams, automate noise, integrate with ...

organisation's information assets. You will design, implement, and maintain robust security measures to defend against evolving cyber threats. Working closely with IT, risk management, and compliance teams, you will help shape and enforce our security policies and practices. Benefits Competitive salary package reflecting your skills and experience. Comprehensive … Security Engineering (AppSec) Secure Development Lifecycle (SDLC): Integrate security tools and processes into the CI/CD pipelines (DevSecOps), ensuring security is "shifted left." Vulnerability Management: Manage and execute Static Application Security Testing (SAST) and Dynamic Application Security Testing (DAST) on proprietary applications. Remediation & Guidance ...

organisation's information assets. You will design, implement, and maintain robust security measures to defend against evolving cyber threats. Working closely with IT, risk management, and compliance teams, you will help shape and enforce our security policies and practices. Benefits Competitive salary package reflecting your skills and experience. Comprehensive … Security Engineering (AppSec) Secure Development Lifecycle (SDLC): Integrate security tools and processes into the CI/CD pipelines (DevSecOps), ensuring security is "shifted left." Vulnerability Management: Manage and execute Static Application Security Testing (SAST) and Dynamic Application Security Testing (DAST) on proprietary applications. Remediation & Guidance ...

Vulnerability Management SME 6-month contract Market rate - inside IR35 Hybrid 2/3 days a week in Sheffield We are seeking an experienced contractor to provide specialist expertise in identifying, analysing, and prioritising technology resilience vulnerabilities across critical services. The role will support resilience risk assessments, vulnerability remediation activities, and regulatory assurance requirements across the technology environment. Key Responsibilities Support the identification and assessment of technology resilience vulnerabilities Analyse vulnerability impacts against resilience tolerances and critical service requirements Support remediation planning and challenge the effectiveness of control improvements Produce vulnerability insight, prioritisation, and assurance ...

Vulnerability Management SME Do you have the following skills, experience and drive to succeed in this role Find out below. 6-month contract Market rate - inside IR35 Hybrid 2/3 days a week in Sheffield We are seeking an experienced contractor to provide specialist expertise in identifying … analysing, and prioritising technology resilience vulnerabilities across critical services. The role will support resilience risk assessments, vulnerability remediation activities, and regulatory assurance requirements across the technology environment. Key Responsibilities Support the identification and assessment of technology resilience vulnerabilities Analyse vulnerability impacts against resilience tolerances and critical service requirements ...

cloud security posture across AWS as our primary platform, with oversight of our Azure and GCP environments. Manage and optimise our WAF, bot management and DDoS protection to keep our platform secure and performant. Drive vulnerability management across cloud infrastructure and application code, ensuring timely prioritisation … Lead the security dimension of vendor and third-party risk assessments. Deliver clear, confident security reporting to senior leadership and due diligence audiences. Risk Management & Security Culture Maintain and develop the technology risk register, running regular risk assessments aligned to business continuity planning. Champion security awareness across the business ...

appetite with a particular focus on AI Technical Engineering Leadership Oversee the engineering and integration of security controls across platforms including identity and access management network security endpoint protection and data security Champion automation and secure by design principles Platform Security Drive the secure design and operation of critical … technology platforms collaborating with platform owners and engineering teams to embed security throughout the lifecycle Incident Response Threat Management Provide technical oversight for incident response threat detection and vulnerability management Lead root cause analysis and remediation of complex security incidents Stakeholder Engagement Act as a trusted advisor ...

function responsible for protecting the organisation's information assets, technology services, and users. This role oversees all security operation functions, incident response, threat detection, vulnerability management, and continuous improvement of the organisation's security posture. Working closely with Infrastructure, Cloud, Architecture, Governance, Compliance and Risk teams, the manager … operational procedures, playbooks, and response frameworks. Direct the full incident response lifecycle: detection, triage, containment, eradication, recovery, and post-incident review. Coordinate major incident management with IT Infrastructure, Cloud, and Business teams. Ensure lessons learned are captured and drive meaningful improvement. Oversee the vulnerability management programme, ensuring ...

identify vulnerabilities and collaborate with IT teams to address and remediate findings. · Build, support, and configure security-specific tooling, such as XDR, SIEM, and vulnerability management platforms, in the absence of an ISM Vulnerability Manager. · Educate staff and stakeholders on security best practices, delivering training sessions … Engineer Associate (AZ-500), or relevant vendor-specific qualifications (e.g., Splunk Enterprise Security Certified Admin). · Hands-on experience with XDR and SIEM platforms, vulnerability management tools, and secure network design. · Strong understanding of risk assessment methodologies and ability to translate findings into secure network solutions. · Effective communication ...

responding to security threats, while driving continuous improvement across our security operations capability. Youll play a key role in incident response, threat intelligence, vulnerability management and ensuring effective use of our security tools and processes to reduce risk across the technology estate. Key responsibilities Monitor, triage and respond … trends, risks and potential threats Act as an escalation point for information security queries from colleagues and service delivery teams Support and coordinate patch management activities, validating effectiveness through vulnerability scanning Oversee and operate key security technologies, including SIEM, email and web gateways, and endpoint protection tools Monitor ...

focus is firmly on technical delivery, working closely with infrastructure, networking and a managed SOC provider.Key areas of responsibility include: Engineering, configuration and ongoing management of a large firewall estate Working extensively with next-generation firewalls Firewall policies, VPN configuration and firewall lifecycle management Technical implementation and configuration … tooling, including: Microsoft Defender (endpoint, identity, cloud) DLP and Purview policy implementation Acting as the internal engineering counterpart to a managed SOC provider Supporting vulnerability management by consolidating findings, engaging technical teams and driving remediation activity Contributing to future security initiatives, including Privileged Access Management ...

upgrading enterprise server and storage hardware Providing internal support for office hardware including, PCs, laptops, mobile devices (Windows OS, iOS, MacOS and Android) Vulnerability management using scanning tools such as Nessus Remediation/automation of software rollout using Ninite/PDQ Configuring and monitoring of Anti-virus software … Mobile Device Management Firewall/Switch management Configuration, patching and upgrading Administering Microsoft Active Directory, Exchange Server & Office 365 Achieving recognised Cyber Security accreditation Management of video conferencing Management of enterprise level phone system Monitoring and managing the availability and scalability of resources, including CPU usage ...

upgrading enterprise server and storage hardware • Providing internal support for office hardware including, PCs, laptops, mobile devices (Windows OS, iOS, MacOS and Android) • Vulnerability management using scanning tools such as Nessus • Remediation/automation of software rollout using Ninite/PDQ • Configuring and monitoring of Anti-virus software … Mobile Device Management • Firewall/Switch management - Configuration, patching and upgrading • Administering Microsoft Active Directory, Exchange Server & Office 365 • Achieving recognised Cyber Security accreditation • Management of video conferencing • Management of enterprise level phone system • Monitoring and managing the availability and scalability of resources, including CPU usage ...

controls Experience developing cyber resilience and disaster recovery Confidence to communicate effectively with all layers of the business, including the delivery of reports to management and training and best-practice guidance to all staff Drive efficiency through automation utilising PowerShell, with integration to Microsoft services such as Active Directory … Graph API Responsibilities: End to end management of phishing, through design, scheduling, reporting and training. Conduct staff training covering emerging threats, end-user best practices, phishing, password management and more. Vulnerability management life cycle including detection and remediation Maintain third party 24/7 SOC relationship ...

controls Experience developing cyber resilience and disaster recovery Confidence to communicate effectively with all layers of the business, including the delivery of reports to management and training and best-practice guidance to all staff Drive efficiency through automation utilising PowerShell, with integration to Microsoft services such as Active Directory … Graph API Responsibilities: End to end management of phishing, through design, scheduling, reporting and training. Conduct staff training covering emerging threats, end-user best practices, phishing, password management and more. Vulnerability management life cycle including detection and remediation Maintain third party 24/7 SOC relationship ...

controls Experience developing cyber resilience and disaster recovery Confidence to communicate effectively with all layers of the business, including the delivery of reports to management and training and best-practice guidance to all staff Drive efficiency through automation utilising PowerShell, with integration to Microsoft services such as Active Directory … Graph API Responsibilities: End to end management of phishing, through design, scheduling, reporting and training. Conduct staff training covering emerging threats, end-user best practices, phishing, password management and more. Vulnerability management life cycle including detection and remediation Maintain third party 24/7 SOC relationship ...

solutions to reduce identified risks Configure and manage a range of security technologies such as firewalls, intrusion detection/prevention tools, endpoint protection, device management, and monitoring platforms Investigate and respond to cybersecurity incidents, ensuring timely resolution and mitigation Carry out routine audits and risk assessments to maintain … strong security framework Monitor and maintain security controls, producing remediation strategies where necessary Conduct vulnerability assessments and support penetration testing activities Collaborate with internal IT, cloud, and global teams to maintain secure infrastructure Work alongside security operations teams to address threats and operational issues Ensure adherence to recognised standards ...

Python and/or PowerShell to reduce manual effort Build and maintain integrations using APIs, connectors, and webhooks Support infrastructure as code and configuration management initiatives Continuously identify opportunities to automate repetitive security tasks Risk & Governance Support vulnerability management processes and remediation programmes Work closely with Technology … Azure cloud environments Experience with SIEM platforms such as Microsoft Sentinel, Elastic, Splunk, or similar Strong knowledge of detection engineering, alert tuning, and log management Experience with SOAR or security automation tooling Scripting skills in Python and/or PowerShell Experience with EDR, endpoint security, and identity controls Good ...

function, including oversight of any outsourced SOC Managing the full incident response lifecycle (detection through to recovery and post-incident review) Overseeing threat detection, vulnerability management, and cyber defence capabilities Driving improvements across SIEM, SOAR, EDR/XDR, and security tooling Ensuring robust monitoring, alerting, and response across … Operations or SOC function Strong understanding of SIEM, SOAR, EDR/XDR, IDS/IPS, and security tooling Experience managing incident response and threat management in complex environments Strong knowledge of frameworks such as NIST, ISO 27001, or CIS Controls Experience working in cloud environments (Azure ...

drive remediation activities Coordinate gap assessments and readiness reviews Provide senior leadership with audit and risk reporting Security Testing & Assurance Coordinate penetration testing and vulnerability assessments Work with internal teams and third-party providers Track remediation of security findings Embed testing into change and release processes Support supplier security … certification Familiarity with SWIFT CSCF (desirable) Background in fintech or regulated financial services (preferred) Experience managing audits and working with auditors Understanding of risk management frameworks Experience with control testing and evidence management Knowledge of cloud, infrastructure, and application security concepts Experience coordinating penetration testing and vulnerability ...

secure-by-design principles are embedded across all IT changes and lead on security input at the Change Advisory Board. Work closely with Senior Management Team IT & Change colleagues to prioritise security improvements and reduce organisational risk. Ensure security-related changes and risks are communicated clearly and promptly … security. Experience producing and maintaining security documentation (standards, procedures, runbooks). Experience supporting Cyber Essentials, ISO27001, or similar frameworks, including audit readiness. Familiarity with vulnerability management tools and workflows. Experience managing email security, web security, WAFs, Azure tenants, firewalls, and SaaS platforms from a security perspective. What ...

platforms) to strengthen overall security posture Lead on the investigation of security alerts and incidents, ensuring appropriate triage, escalation, and resolution Carry out regular vulnerability assessments, track remediation progress, and provide clear reporting on risk exposure Support the configuration of secure systems and ensure infrastructure is aligned with security … data protection measures Skills & Experience: Demonstrable experience in a cybersecurity or infrastructure-focused security role Practical, hands-on exposure to SIEM platforms and vulnerability management tools Strong understanding of endpoint detection and response technologies (EDR, XDR, MDR) Good working knowledge of common cyber threats, attack methods, and core ...

first line of defence: detect, analyse, and respond to real-time security incidents across razorblue and client networks Take the lead in vulnerability management from scanning and risk analysis to remediation coordination Run proactive security audits and phishing simulations to strengthen awareness and resilience Collaborate with infrastructure … apply. Full UK Driving License Entry-level security certifications (CompTIA Security+, CySA+, etc.) or working toward one Hands-on experience in security incident response, vulnerability assessments, and root cause analysis Skilled in producing incident reports, security metrics, and supporting awareness training Comfortable with internal security audits and refining SOPs ...

first line of defence: detect, analyse, and respond to real-time security incidents across razorblue and client networks Take the lead in vulnerability management from scanning and risk analysis to remediation coordination Run proactive security audits and phishing simulations to strengthen awareness and resilience Collaborate with infrastructure … apply. Full UK Driving License Entry-level security certifications (CompTIA Security+, CySA+, etc.) or working toward one Hands-on experience in security incident response, vulnerability assessments, and root cause analysis Skilled in producing incident reports, security metrics, and supporting training Comfortable with internal security audits and refining SOPs ...