1 to 25 of 56 Permanent Vulnerability Management Jobs in the South East

Primary Details Time Type: Full time Worker Type: Employee Vulnerability Management Data Analyst Permanent London/Hybrid At QBE, our purpose is to enable a more resilient future. We are an international insurer and reinsurer with a local presence in 27 countries. The Opportunity As part of our continuous improvement and expansion of the vulnerability management function, we are seeking a highly motivated Vulnerability Management Data Analyst to join our Global Security Operations Centre. This permanent, hybrid role is based out of our London office and reports to the Threat & Vulnerability Manager. The successful candidate will play a key role in strengthening QBE’s cyber resilience by turning complex security data into … meaningful insights. This role will directly support the identification, prioritisation, remediation and reporting of vulnerabilities—helping QBE stay ahead of emerging threats. Your New Role As a Vulnerability Management Data Analyst, you’ll collaborate with teams across security engineering, vulnerability management, service management, cyber governance, risk and divisional consultancy to ensure data accuracy, develop dashboards More ❯

VP of Vulnerability Management Salary - £95-110k + 15-20% Bonus + Benefits Location – London (2-3 days in office per week) Newly created role with a major Financial Markets organization, looking to hire a VP level Vulnerability Management SME to build on and enhance their existing VM capabilities and eventually take ownership and stand … this up as its own core pillar across Information Security. First and foremost, they need someone who understands the technical elements of Vulnerability Management inside out, who can work with the wider SecOps and Infrastructure Engineering functions to respond to high-profile vulnerabilities and ensure all vulnerability management platforms are working at maximum capacity and all … patching runs smoothly; whilst also working with the wider business to ensure Vulnerability Management is incorporated into wider company strategies and acting as the Subject Matter Expert for all Vulnerability Management related queries. This is an incredibly opportunity to genuinely take ownership of their Vulnerability Management function as they look to significantly invest and More ❯

VP of Vulnerability Management Salary - £95-110k + 15-20% Bonus + Benefits Location – London (2-3 days in office per week) Newly created role with a major Financial Markets organization, looking to hire a VP level Vulnerability Management SME to build on and enhance their existing VM capabilities and eventually take ownership and stand … this up as its own core pillar across Information Security. First and foremost, they need someone who understands the technical elements of Vulnerability Management inside out, who can work with the wider SecOps and Infrastructure Engineering functions to respond to high-profile vulnerabilities and ensure all vulnerability management platforms are working at maximum capacity and all … patching runs smoothly; whilst also working with the wider business to ensure Vulnerability Management is incorporated into wider company strategies and acting as the Subject Matter Expert for all Vulnerability Management related queries. This is an incredibly opportunity to genuinely take ownership of their Vulnerability Management function as they look to significantly invest and More ❯

VP of Vulnerability Management Salary - £95-110k + 15-20% Bonus + Benefits Location – London (2-3 days in office per week) Newly created role with a major Financial Markets organization, looking to hire a VP level Vulnerability Management SME to build on and enhance their existing VM capabilities and eventually take ownership and stand … this up as its own core pillar across Information Security. First and foremost, they need someone who understands the technical elements of Vulnerability Management inside out, who can work with the wider SecOps and Infrastructure Engineering functions to respond to high-profile vulnerabilities and ensure all vulnerability management platforms are working at maximum capacity and all … patching runs smoothly; whilst also working with the wider business to ensure Vulnerability Management is incorporated into wider company strategies and acting as the Subject Matter Expert for all Vulnerability Management related queries. This is an incredibly opportunity to genuinely take ownership of their Vulnerability Management function as they look to significantly invest and More ❯

Vulnerability Management Engineer London/WFH to £75k Are you a tech savvy Vulnerability Management Engineer with a broad range of security knowledge? You could be progressing your career at a global, hugely profitable, Investment Management firm. As a Vulnerability Management Engineer you'll perform assessments and communicate findings to stakeholders on the … day a week. About you: You have experience in a similar position with knowledge of common cyber attack types such as DDoS, SQLi, XSS, etc. You have experience with vulnerability assessment software and prioritisation of results using a combination of various frameworks tied to internal objects (CVE, CVSS, EPSS, etc.). You have experience of assessing, documenting and communicating … AWS You have a background with network security or secure code development You're collaborative and pragmatic with great communication skills What's in it for you: As a Vulnerability Management Engineer you can expect to earn a competitive package: Salary to £75k Significant bonus Pension (15% employer contribution) Private Health, Dental and Optical care Life Assurance and More ❯

Vulnerability Management Engineer London/WFH to £75k Are you a tech savvy Vulnerability Management Engineer with a broad range of security knowledge? You could be progressing your career at a global, hugely profitable, Investment Management firm. As a Vulnerability Management Engineer you'll perform assessments and communicate findings to stakeholders on the … day a week. About you: You have experience in a similar position with knowledge of common cyber attack types such as DDoS, SQLi, XSS, etc. You have experience with vulnerability assessment software and prioritisation of results using a combination of various frameworks tied to internal objects (CVE, CVSS, EPSS, etc.). You have experience of assessing, documenting and communicating … AWS You have a background with network security or secure code development You're collaborative and pragmatic with great communication skills What's in it for you: As a Vulnerability Management Engineer you can expect to earn a competitive package: Salary to £75k Significant bonus Pension (15% employer contribution) Private Health, Dental and Optical care Life Assurance and More ❯

for the MSP's own security posture ensuring tools, processes, and teams meet the same standards we deliver to clients. They monitor measurable posture metrics (e.g., Microsoft Secure Score, Vulnerability etc.), ensure continuous improvement, and keep the MSP's security practice relevant through ongoing training, certifications, and emerging threat awareness. While day-to-day execution is delegated to Security … the Security Lead owns security end-to-end: identifying risks, embedding controls, and ensuring compliance is demonstrable. Key Responsibilities Client-Facing Lead Quarterly Security Reviews (QSRs), presenting patch/vulnerability posture, incidents, compliance status, and risk register updates. Translate technical security risks into clear business impact and outcomes. Own the client exception process, ensuring risks are documented, communicated, and … escalation point for clients when risks require senior involvement. Internal MSP Security Own the MSP's internal security frameworks and certifications (e.g., CE+, ISO, SOC 2). Oversee patching, vulnerability, and risk management of MSP-owned infrastructure and tools. Ensure MSP's technology stack (RMM, XDR, PSA, backup, etc.) is securely deployed and monitored. Drive staff security awareness More ❯

run smoothly. What you'll be doing: Implementing and maintaining security controls across network, cloud, endpoints, and core infrastructure Owning key technologies like firewalls, SIEM, EDR, VPN, NAC, and vulnerability scanners Driving vulnerability management and hardening across the estate Supporting and responding to security incidents across infrastructure services Embedding security into infrastructure changes (firewall rules, access reviews … network security within a complex enterprise environment Solid knowledge of: Firewalls, VPN, IDS/IPS, network security controls Endpoint security (EDR, anti-malware, DLP) SIEM tools (e.g. Splunk, Sentinel) Vulnerability management (e.g. Qualys, Tenable) Cloud (Azure and/or AWS) Hands-on experience supporting or responding to security incidents Familiarity with frameworks such as ISO 27001, NIST, CIS More ❯

security is embedded across the business. What You’ll Do Policy & Frameworks: Define and maintain security policies, standards, and governance models aligned with ISO 27001, SOC2, and NIST. Risk Management: Lead risk assessments, threat modelling, and vendor security reviews; maintain the company risk register. Monitoring & Detection: Implement and oversee vulnerability management, SIEM, logging, and alerting capabilities. Incident … security engineering roles. Strong knowledge of security frameworks (ISO 27001, SOC2, NIST) and ability to apply them pragmatically in a start-up/scale-up. Hands-on experience with vulnerability management, SIEM/logging tools, and incident response. Demonstrated ability to lead risk assessments and implement effective mitigations. Excellent stakeholder communication skills, including board-level reporting. Comfortable operating More ❯

security is embedded across the business. What You’ll Do Policy & Frameworks: Define and maintain security policies, standards, and governance models aligned with ISO 27001, SOC2, and NIST. Risk Management: Lead risk assessments, threat modelling, and vendor security reviews; maintain the company risk register. Monitoring & Detection: Implement and oversee vulnerability management, SIEM, logging, and alerting capabilities. Incident … security engineering roles. Strong knowledge of security frameworks (ISO 27001, SOC2, NIST) and ability to apply them pragmatically in a start-up/scale-up. Hands-on experience with vulnerability management, SIEM/logging tools, and incident response. Demonstrated ability to lead risk assessments and implement effective mitigations. Excellent stakeholder communication skills, including board-level reporting. Comfortable operating More ❯

security is embedded across the business. What You’ll Do Policy & Frameworks: Define and maintain security policies, standards, and governance models aligned with ISO 27001, SOC2, and NIST. Risk Management: Lead risk assessments, threat modelling, and vendor security reviews; maintain the company risk register. Monitoring & Detection: Implement and oversee vulnerability management, SIEM, logging, and alerting capabilities. Incident … security engineering roles. Strong knowledge of security frameworks (ISO 27001, SOC2, NIST) and ability to apply them pragmatically in a start-up/scale-up. Hands-on experience with vulnerability management, SIEM/logging tools, and incident response. Demonstrated ability to lead risk assessments and implement effective mitigations. Excellent stakeholder communication skills, including board-level reporting. Comfortable operating More ❯

leading Quarterly Security Reviews and presenting clear business-focused risk assessments. Own security governance processes, ensuring compliance with frameworks such as Cyber Essentials, ISO27001, and NIST . Oversee patching, vulnerability management, and internal infrastructure security. Collaborate across service delivery, project, and account management teams to embed security consistently. Mentor and develop Security Analysts, ensuring certifications and knowledge … for C-level stakeholders. The ideal candidate will have: 5+ years in IT security or MSP environments . Strong knowledge of Cyber Essentials, ISO27001, or NIST frameworks. Experience in vulnerability management, patch governance, and cloud security (M365/Azure). Excellent communication skills with the ability to influence both technical teams and business leaders. (Desirable) Certifications such as More ❯

expertise. What You'll Do Serve as the Cyber Security Subject Matter Expert, advising on secure systems design, change control, and implementation of robust security controls. Lead the technical vulnerability management programme, with a strong focus on application security, web application firewalls, and secure DevOps pipelines. Provide security leadership and mentoring , supporting colleagues and enhancing security awareness across … evolving threats, and help shape our strategy using frameworks such as OWASP, SASE, and Zero Trust. What We're Looking For Essential: Proven experience in cyber security engineering, including vulnerability management, SIEM, WAFs, and secure infrastructure design. Strong knowledge of TCP/IP, firewalls, routing, access controls, and threat-based security approaches. Excellent communication skills with the ability More ❯

to protect against evolving threats. What you'll do As part of a team of analysts, you'll be responsible for the overall day-to-day technical and operational management of cyber and information security within the University. This includes operating within a hybrid Security Operations Centre (SOC) model, leading the investigation and resolution of cyber security incidents, and … continuous monitoring across the University. Conduct proactive threat hunting activities to detect advanced threats and anomalous behaviour within the University's network, and provide solutions to support incident response, vulnerability management, and strategic security decisions. Collaborate with third-party providers to scope, coordinate, and review network security assessments, and ensure that findings and recommendations are effectively prioritised, communicated … documented and implemented to improve the University's security posture. Support the network vulnerability management process by identifying, assessing, and prioritising security vulnerabilities, and working with relevant teams and third parties to ensure timely remediation through patching, configuration changes, or other appropriate fixes. Design, implement, and support technical security controls to defend University network systems against security threats More ❯

Cisco technologies, to protect against evolving threats. What youll do - As part of a team of analysts, youll be responsible for the overall day-to-day technical and operational management of cyber and information security within the University. This includes operating within a hybrid Security Operations Centre (SOC) model, leading the investigation and resolution of cybersecurity incidents, and co … continuous monitoring across the University. - Conduct proactive threat hunting activities to detect advanced threats and anomalous behaviour within the University's network, and provide solutions to support incident response, vulnerability management, and strategic security decisions. - Collaborate with third-party providers to scope, co-ordinate, and review network security assessments, and ensure that findings and recommendations are effectively prioritised … communicated, documented and implemented to improve the Universitys security posture. - Support the network vulnerability management process by identifying, assessing, and prioritising security vulnerabilities, and working with relevant teams and third parties to ensure timely remediation through patching, configuration changes, or other appropriate fixes. - Design, implement, and support technical security controls to defend University network systems against security threats More ❯

CISSP, CISM, CISA or an MSc in cyber security or a related discipline. Practical experience across various areas of cyber security, such as cyber architecture, cyber GRC, cyber threat management, vulnerability management, cyber security reviews. Detail oriented and strong problem-solving skills. Excellent oral and written communication skills including concisely communicating status and creating customer reports and More ❯

CISSP, CISM, CISA or an MSc in cyber security or a related discipline. Practical experience across various areas of cyber security, such as cyber architecture, cyber GRC, cyber threat management, vulnerability management, cyber security reviews. Detail oriented and strong problem-solving skills. Excellent oral and written communication skills including concisely communicating status and creating customer reports and More ❯

CISSP, CISM, CISA or an MSc in cyber security or a related discipline. Practical experience across various areas of cyber security, such as cyber architecture, cyber GRC, cyber threat management, vulnerability management, cyber security reviews. Detail oriented and strong problem-solving skills. Excellent oral and written communication skills including concisely communicating status and creating customer reports and More ❯

strategy and transformation Knowledge of key frameworks and standards such as NIST CSF, ISO27001, GDPR, NIS2, or NCSC CAF Practical expertise in areas such as GRC, security architecture, threat management, or vulnerability management Excellent communication skills with the ability to influence a wide range of stakeholders Proven project management and delivery experience in complex client environments More ❯

strategy and transformation Knowledge of key frameworks and standards such as NIST CSF, ISO27001, GDPR, NIS2, or NCSC CAF Practical expertise in areas such as GRC, security architecture, threat management, or vulnerability management Excellent communication skills with the ability to influence a wide range of stakeholders Proven project management and delivery experience in complex client environments More ❯

strategy and transformation Knowledge of key frameworks and standards such as NIST CSF, ISO27001, GDPR, NIS2, or NCSC CAF Practical expertise in areas such as GRC, security architecture, threat management, or vulnerability management Excellent communication skills with the ability to influence a wide range of stakeholders Proven project management and delivery experience in complex client environments More ❯

As our Information Security Management Specialist (m/f/d) , you'llprovide experienced support in the implementation and management of the Information Security Management System (ISMS) framework in alignment of current ISO 27001 standard and guidelines. With a focus on cybersecurity, this role involves leading risk assessments, ensuring alignment with industry standards and regulations, and following … systems are assessed against Information Security criteria and operate in compliance with the instructional Information Security documentation. Conduct company-wide gap assessment of ISMS clauses and control implementation. Ensure vulnerability management, tracking and reporting. Collaborate with the IT department to set Information security standard for Cyber Security Support in preparing management Information Security reports and dashboards. Review … Multilingual skills are an advantage. Skilled proficiency in conducting risk assessments, analyzing security controls, and policy management. Excellent communication and interpersonal skills for collaborating with various stakeholders. Strong project management skills for handling security initiatives. Strong familiarity with aspects related to information security. Strong knowledge of ISO 27001 and further relevant standards. What we offer you An agile company More ❯

initiatives What you'll be doing You'll join a collaborative Cyber Security Operations team and get involved with: Handling Tier II-IV incidents and troubleshooting Change and configuration management Policy optimisation and risk reduction Patch, OS and capacity management Event monitoring and vulnerability management Security incident response and project support What we're looking for More ❯

You'll be instrumental in designing and implementing advanced detection and response strategies, working closely with cross-functional teams and contributing to continual service improvement. Key Responsibilities SIEM Engineering & Management Deploy, configure, and maintain IBM QRadar SIEM platform Onboard and normalize diverse log sources across hybrid environments Develop and tune analytical rules for threat detection and behavioural analysis Playbook … automation and enrichment Deep knowledge of threat detection, incident response, and cyber kill chain Familiarity with MITRE ATT&CK, NIST, and CIS frameworks Understanding of network traffic flows and vulnerability management Exposure to ethical hacking and penetration testing Knowledge of ITIL disciplines (Incident, Problem, Change Management) Experience with ServiceNow Security Suite Cloud experience (AWS and/or More ❯

Cyber Security Analyst (VP) - Investment Management - London Our client, a leading investment management firm, is seeking a Cyber Security Analyst (VP level) to join their London office. This role sits within the compliance function and plays a critical part in supporting external audits, particularly SOC 1 Type II and SOC 2. It combines hands-on security monitoring and … closely with IT, compliance, and external auditors to provide control evidence, enhance processes, and strengthen the firm's overall security posture. Responsibilities include monitoring and investigating security alerts, supporting vulnerability management and patching, and maintaining a forward-looking 6-12 month roadmap to align emerging requirements with timely policy updates. Key Skills & Experience: Strong understanding of core cybersecurity … principles including network security, identity management, and threat detection Hands-on experience with security and IT monitoring tools such as SIEM, Network Configuration Manager, Zabbix, HALO, DarkTrace, and Fortinet firewalls Familiarity with IT access controls and their application in regulated environments Proven experience supporting or participating in SOC 1 Type II and SOC 2 audits Excellent documentation and evidence More ❯