2 of 2 Permanent Vulnerability Management Jobs in the Thames Valley

and processes adhere to regulatory standards, with comprehensive documentation and audit trails. Partner with compliance and risk teams to monitor and report on IT governance metrics. Software Security & Risk Management Lead application security strategy, including vulnerability management, patching, and secure coding practices. Oversee penetration testing, threat modelling, and remediation plans. Manage identity and access controls across all … systems, ensuring least-privilege principles. Systems Process Management Standardise and optimise system workflows for efficiency and compliance. Implement automated monitoring and alerting for critical applications. Maintain version control, change management, and release processes with full auditability. Incident Response & Business Continuity Develop and maintain incident response playbooks for system and security breaches. Coordinate disaster recovery testing for applications and … data integrity. Ensure robust backup and failover strategies for regulated systems. Stakeholder & Vendor Management Liaise with software vendors and third-party providers to ensure compliance and security standards. Support regulatory audits and provide evidence of system controls and security measures. Continuous Improvement Stay current with FCA guidelines, cybersecurity trends, and emerging technologies. Recommend enhancements to security architecture and compliance More ❯

templates, and standards. Assist in the development and localisation of standard test scripts, ensuring they are tailored to specific control environments and aligned with the organisation's Enterprise Risk Management Framework. Conduct control testing activities to evaluate the design and operational effectiveness of cybersecurity controls, documenting results clearly and raising issues where appropriate. Ensure timely delivery of assigned control … role, the essential criteria you'll need are Proven experience in performing cybersecurity control assessments, including evaluating design and operational effectiveness. Strong understanding of information security principles, cyber risk management, and control frameworks. Experience in IT, OT and Cloud environments, with a focus on cybersecurity controls. Clear and professional verbal and written communication, including the ability to explain cybersecurity … with minimal supervision, taking ownership of assigned tasks and driving them to completion while maintaining high standards of quality and accuracy. Strong understanding of Cybersecurity Domains, including Threat Intelligence, Vulnerability Management, Security Testing, Security Architecture, Infrastructure Protection, Application Security, Identity and Access Management, Incident Investigation & Response and Cryptography. Additional skills and experiences would be great to have More ❯