1 to 25 of 66 Permanent Threat and Vulnerability Management Jobs in the UK

in 1981 with a single store in the Northwest of England, the JD Group is a leading omni-channel retailer of Sports Fashion, Outdoors and Gyms with our colleagues working in stores across several retail fascias in many markets around the world. JD Sports Fashion Plc was listed on the … London Stock Exchange in 1996 and has been a FTSE100 publicly quoted company since 2019 and continues to grow in the UK and internationally. We want to be the leading global omnichannel retailer in the sports and outdoor industry. To be a part of this successful company and help us … to achieve this you will have the desire to ingrain our strategic goals of being a people-led, innovative and customer-focused organisation which provides operational excellence whilst identifying new areas of growth as part of our day to day objectives. Job Description for IT & Cyber Policy and Governance Lead More ❯

Job title Senior Cyber Threat Intelligence Analyst Ref 40789 Division Digital Transformation Location Reading - Clearwater Court - RG1 8DB Contract type Permanent Full/Part-time Full-time Hours 36 Salary Offering up to £65,000 per annum depending on experience Job grade B Closing date 15/05/… As a Senior Cyber Threat Intelligence Analyst , you will play a key role in protecting Thames Water's digital infrastructure by researching, analysing, and communicating the latest cyber threats facing the organisation. You'll evaluate global risks, provide actionable intelligence to stakeholders, and support the development of a robust threat … informed defence strategy. You'll also work collaboratively across teams to enhance our threat intelligence capabilities, inform vulnerability management, and strengthen incident response readiness. Your role will involve maintaining threat actor profiles, managing intelligence feeds, supporting compliance, and shaping threat intelligence processes to align with our risk reduction More ❯

Who we are looking for State Street seeks to recruit a Cyber Incident Management (CIM) and Threat and Vulnerability Management (TVM) Governance Analyst responsible for a variety of functions within the Fusion & Security Operations (F&SO) Governance Program at State Street. This includes gathering, analyzing, and enriching … data for utilization on scorecards and related governance reporting related to CIM and TVM within the State Street environment. This role requires an individual with deep knowledge of CIM and TVM, including cyber incident detection, assessment, response, and recovery, Patch Management, and infrastructure penetration testing within a corporate environment. … What you will be responsible for As a CIM and TVM Governance Analyst you will: Produce regular reporting related to the governance of the CIM Program and TVM Program to assess compliance with the Information Protection Standard Distribute reporting to various committees, councils, and regulatory reporting forums as required Engage More ❯

As a Senior Cyber Threat Intelligence Analyst , you will play a key role in protecting the company's digital infrastructure by researching, analysing, and communicating the latest cyber threats facing the organisation. You'll evaluate global risks, provide actionable intelligence to stakeholders, and support the development of a robust threat … informed defence strategy. You'll also work collaboratively across teams to enhance our threat intelligence capabilities, inform vulnerability management, and strengthen incident response readiness. Your role will involve maintaining threat actor profiles, managing intelligence feeds, supporting compliance, and shaping threat intelligence processes to align with our risk reduction … to address evolving cyber threats while contributing to the organisation's long-term security maturity. What you'll be doing as a Senior Cyber Threat Intelligence Analyst: Cyber Threat Assessment: Support and lead cyber threat assessments and provide recommendations to technical, managerial, and executive stakeholders. Incident Response Support: Act as More ❯

As a Senior Cyber Threat Intelligence Analyst , you will play a key role in protecting the company's digital infrastructure by researching, analysing, and communicating the latest cyber threats facing the organisation. You'll evaluate global risks, provide actionable intelligence to stakeholders, and support the development of a robust threat … informed defence strategy. You'll also work collaboratively across teams to enhance our threat intelligence capabilities, inform vulnerability management, and strengthen incident response readiness. Your role will involve maintaining threat actor profiles, managing intelligence feeds, supporting compliance, and shaping threat intelligence processes to align with our risk reduction … to address evolving cyber threats while contributing to the organisation's long-term security maturity. What you'll be doing as a Senior Cyber Threat Intelligence Analyst: Cyber Threat Assessment: Support and lead cyber threat assessments and provide recommendations to technical, managerial, and executive stakeholders. Incident Response Support: Act as More ❯

Clearance Requirement: Eligibility for DV clearance (British-born candidates only) Due to the nature of the role, candidates must be eligible for DV clearance and therefore must be British-born. Are you ready to lead in one of the most critical roles in the cybersecurity industry? We are seeking a … Cyber Threat Intelligence and Vulnerability Lead to play a pivotal role in the operation and improvement of a Security Operations Centre (SOC) dedicated to safeguarding a major UK organisation. This position offers an opportunity to make a tangible impact in protecting the systems that power the nation. About the … Role As the Cyber Threat Intelligence and Vulnerability Lead, you will: Take accountability for detecting, triaging, and reporting potential cyber threats and key vulnerabilities daily. Oversee the delivery and quality of all threat intelligence and vulnerability products, ensuring deadlines are met with excellence. Develop and continuously review tailored More ❯

Clearance Requirement: Eligibility for DV clearance (British-born candidates only) Due to the nature of the role, candidates must be eligible for DV clearance and therefore must be British-born. Are you ready to lead in one of the most critical roles in the cybersecurity industry? We are seeking a … Cyber Threat Intelligence and Vulnerability Lead to play a pivotal role in the operation and improvement of a Security Operations Centre (SOC) dedicated to safeguarding a major UK organisation. This position offers an opportunity to make a tangible impact in protecting the systems that power the nation. About the … Role As the Cyber Threat Intelligence and Vulnerability Lead, you will: Take accountability for detecting, triaging, and reporting potential cyber threats and key vulnerabilities daily. Oversee the delivery and quality of all threat intelligence and vulnerability products, ensuring deadlines are met with excellence. Develop and continuously review tailored More ❯

Information Protection Reporting and Analytics Analyst page is loaded Information Protection Reporting and Analytics Analyst Apply locations Quincy, Massachusetts London, England Boston, Massachusetts Kilkenny, Ireland Dublin 2, Ireland time type Full time posted on Posted 5 Days Ago time left to apply End Date: June 30, 2025 (30+ days left … to apply) job requisition id R-766929 Who we are looking for State Street seeks to recruit a cross-functional, Reporting and Analytics (RA) Analyst responsible for a variety of functions within the Fusion & Security Operations (F&SO) Governance Program at State Street. This includes gathering, analyzing, and enriching data … for utilization on scorecards and related to governance reporting across the cybersecurity space related to Data Loss Prevention (DLP), Key/Cert/Encryption Management (KCEM), Software Development Lifecycle (SDLC), Cloud Security (CS), Cyber Incident Management (CIM), and Threat and Vulnerability Management (TVM) within the State More ❯

Location(s): UK, Europe & Africa : UK : Leeds BAE Systems Digital Intelligence is home to 4,500 digital, cyber and intelligence experts. We work collaboratively across 10 countries to collect, connect and understand complex data, so that governments, nation states, armed forces and commercial businesses can unlock digital advantage in the … most demanding environments. Cyber Threat Intelligence and Vulnerability Lead Job Title: Cyber Threat Intelligence and Vulnerability Lead Requisition ID: 121483 Location: Leeds (this is a 100% office based role due to the nature of the project) Grade: GG10 - GG11 Referral Bonus: £5,000 Role Description BAE Systems have … been contracted to undertake the day to day operation of (and incremental improvement of) a dedicated Security Operations Centre (SOC) to support the defence of a major UK Critical National Infrastructure (CNI) organisation. The networks protected are predominantly hosted in cloud platforms, with many hundred systems within these environments that More ❯

The team you'll be working with: Consultant - Offensive Security Testing Role Overview: We are seeking a highly skilled and experienced Offensive Security Consultant with a strong focus on threat intelligence and attack methods. The ideal candidate will manage and conduct advanced penetration testing engagements, leveraging threat intelligence to simulate … real-world attacks across various environments, including OT, IT, web applications, cloud infrastructure, and APIs. This role requires a deep understanding of adversarial tactics, excellent communication skills, and the ability to provide strategic, actionable recommendations to enhance our clients' security posture. What you'll be doing: Responsibilities: Lead and manage … the full lifecycle of complex penetration testing engagements, applying a threat intelligence-led approach. Execute advanced penetration tests across environments such as applications, infrastructure, web, APIs, O365, Azure, AWS, and OT, using current threat landscape knowledge and attacker TTPs. Develop and maintain detailed test plans and use cases informed by More ❯

Cantor Fitzgerald’s Global Information Security team is seeking a Governance, Risk, and Compliance (GRC) Lead with expertise on managing cyber risk, ensuring compliance with regulatory requirements, and maintaining corporate controls. This role will be primarily responsible for leading efforts related to third-party risk management, client due diligence … awareness training, and regulatory compliance. The ideal candidate will have a strong grasp of cybersecurity threats and hands-on experience. Key Responsibilities Governance Risk and Compliance Advise project teams, application owners, infrastructure services, and other IT teams on information security controls, such as access management, incident handling, business continuity … system development lifecycle, threat and vulnerability management, and data protection. Identify and manage risks and vulnerabilities, providing strategic mitigation recommendations. Continuously improve policies and procedures related to controls and operational processes. Develop and deliver precise and timely metrics and reports. Third-Party Risk Management: Conduct risk assessments More ❯

Cantor Fitzgerald’s Global Information Security team is seeking a Governance, Risk, and Compliance (GRC) Lead with expertise on managing cyber risk, ensuring compliance with regulatory requirements, and maintaining corporate controls. This role will be primarily responsible for leading efforts related to third-party risk management, client due diligence … awareness training, and regulatory compliance. The ideal candidate will have a strong grasp of cybersecurity threats and hands-on experience. Key Responsibilities Governance Risk and Compliance Advise project teams, application owners, infrastructure services, and other IT teams on information security controls, such as access management, incident handling, business continuity … system development lifecycle, threat and vulnerability management, and data protection. Identify and manage risks and vulnerabilities, providing strategic mitigation recommendations. Continuously improve policies and procedures related to controls and operational processes. Develop and deliver precise and timely metrics and reports. Third-Party Risk Management: Conduct risk assessments More ❯

Cantor Fitzgerald’s Global Information Security team is seeking a Governance, Risk, and Compliance (GRC) Lead with expertise on managing cyber risk, ensuring compliance with regulatory requirements, and maintaining corporate controls. This role will be primarily responsible for leading efforts related to third-party risk management, client due diligence … awareness training, and regulatory compliance. The ideal candidate will have a strong grasp of cybersecurity threats and hands-on experience. Key Responsibilities Governance Risk and Compliance Advise project teams, application owners, infrastructure services, and other IT teams on information security controls, such as access management, incident handling, business continuity … system development lifecycle, threat and vulnerability management, and data protection. Identify and manage risks and vulnerabilities, providing strategic mitigation recommendations. Continuously improve policies and procedures related to controls and operational processes. Develop and deliver precise and timely metrics and reports. Third-Party Risk Management: Conduct risk assessments More ❯

A dynamic and prestigious professional services company based in the heart of the City of London are seeking a talented Cyber Security Analyst to join their team. This multifaceted position offers an exceptional opportunity for an experienced professional to work with their offices around the world to support cyber security … initiatives. The successful candidate will possess strong analytical skills, an understanding of security administration, risk management and identity access management solutions. The main focus of the role will include: Performance of system security administration on designated technology platforms in accordance with the defined policies, standards and procedures, as … well as with industry best practices and vendor guidelines Completion of threat and vulnerability assessments, in some cases followed by appropriate remedial action, to ensure that systems are protected from known and potential threats and are free from known vulnerabilities Collating security incident and event data to produce monthly More ❯

A dynamic and prestigious professional services company based in the heart of the City of London are seeking a talented Cyber Security Analyst to join their team. This multifaceted position offers an exceptional opportunity for an experienced professional to work with their offices around the world to support cyber security … initiatives. The successful candidate will possess strong analytical skills, an understanding of security administration, risk management and identity access management solutions. The main focus of the role will include: Performance of system security administration on designated technology platforms in accordance with the defined policies, standards and procedures, as … well as with industry best practices and vendor guidelines Completion of threat and vulnerability assessments, in some cases followed by appropriate remedial action, to ensure that systems are protected from known and potential threats and are free from known vulnerabilities Collating security incident and event data to produce monthly More ❯

A dynamic and prestigious professional services company based in the heart of the City of London are seeking a talented Cyber Security Analyst to join their team. This multifaceted position offers an exceptional opportunity for an experienced professional to work with their offices around the world to support cyber security … initiatives. The successful candidate will possess strong analytical skills, an understanding of security administration, risk management and identity access management solutions. The main focus of the role will include: Performance of system security administration on designated technology platforms in accordance with the defined policies, standards and procedures, as … well as with industry best practices and vendor guidelines Completion of threat and vulnerability assessments, in some cases followed by appropriate remedial action, to ensure that systems are protected from known and potential threats and are free from known vulnerabilities Collating security incident and event data to produce monthly More ❯

Inc. Hazeltree is a global leader in cloud-based treasury solutions, empowering investment firms with cutting-edge technology to optimize financial performance, enhance liquidity, and mitigate risk. As part of our commitment to security and innovation, we are expanding our Information Security Team and seeking a DevSecOps Engineer to drive … security automation and best practices across our cloud infrastructure and IT operations. Job Overview As a DevSecOps Engineer , you will play a pivotal role in integrating security practices into our DevOps pipeline and IT operations . Working at the intersection of operations, security, and development , you will collaborate closely with … internal teams to safeguard critical business operations by design and default. You will be responsible for security automation, CI/CD pipeline enhancements , and cloud security management , ensuring compliance with industry standards. Key Responsibilities Security & DevOps Integration: Support and extend the secured CI/CD pipeline to enhance development More ❯

Inc. Hazeltree is a global leader in cloud-based treasury solutions, empowering investment firms with cutting-edge technology to optimize financial performance, enhance liquidity, and mitigate risk. As part of our commitment to security and innovation, we are expanding our Information Security Team and seeking a DevSecOps Engineer to drive … security automation and best practices across our cloud infrastructure and IT operations. Job Overview As a DevSecOps Engineer , you will play a pivotal role in integrating security practices into our DevOps pipeline and IT operations . Working at the intersection of operations, security, and development , you will collaborate closely with … internal teams to safeguard critical business operations by design and default. You will be responsible for security automation, CI/CD pipeline enhancements , and cloud security management , ensuring compliance with industry standards. Key Responsibilities Security & DevOps Integration: Support and extend the secured CI/CD pipeline to enhance development More ❯

Inc. Hazeltree is a global leader in cloud-based treasury solutions, empowering investment firms with cutting-edge technology to optimize financial performance, enhance liquidity, and mitigate risk. As part of our commitment to security and innovation, we are expanding our Information Security Team and seeking a DevSecOps Engineer to drive … security automation and best practices across our cloud infrastructure and IT operations. Job Overview As a DevSecOps Engineer , you will play a pivotal role in integrating security practices into our DevOps pipeline and IT operations . Working at the intersection of operations, security, and development , you will collaborate closely with … internal teams to safeguard critical business operations by design and default. You will be responsible for security automation, CI/CD pipeline enhancements , and cloud security management , ensuring compliance with industry standards. Key Responsibilities Security & DevOps Integration: Support and extend the secured CI/CD pipeline to enhance development More ❯

into public ownership. It is a publicly owned company established by the Department for Transport in 2018. Our ambition is to deliver safe, secure and sustainable transport to everyone, everywhere. At the heart of this promise is improving journeys and providing customers with an excellent service, while supporting the industry … build a more passenger-focused railway. We currently have four train operators: London North Eastern Railway (LNER) - Northern - Southeastern - TransPennine Express (TPE), delivering four and a half thousand services a day, and 300 million customer journeys across our network every year. Over the next 3 years, we will complete the … transfer of all passenger services operated under contracts with the Department for Transport (DfT). Our vision is to unify and strengthen train operators under the DFTO banner. By working collaboratively, we aim to become industry-leading in safety, customer service, financial and operational performance. About the role: The Head More ❯

you ready to take the lead in defending the UK’s critical energy infrastructure from cyber threats? We’re looking for an experienced Cyber Threat Intelligence & Vulnerability Management Lead to join our clients dynamic Cyber Security team. This is your chance to make a real impact—shaping and … leading the threat intelligence and vulnerability management strategy for one of the UK’s essential energy companies. If you’re passionate about security, thrive on staying ahead of emerging threats, and have a solid background in OT/ICS environments , we want to hear from you. What You … ll Be Doing: Lead our cyber threat intelligence and vulnerability management functions across both IT and OT environments . Monitor and analyse threats specific to industrial control systems and operational technology —from ransomware to nation-state actors. Develop actionable intelligence and provide early warning to security operations and More ❯

to be the source of truth in global supply chains. Our mission is to build a world-class business that will evolve for decades and help create a tangible difference in our world. Oritain is the global leader in scientifically verifying origin, notably in the cotton/textiles, food, and … pharmaceutical sectors. We exist to protect the reputations of our customers and US borders by identifying and mitigating well-known risks in global supply chains. Sustainability isn't just about tackling climate change; it represents a growing conscience around our actions and their impact on people, animals, and the planet. … The personal, professional, and governmental move to sustainable practice is driven by a desire to change our impact on the world. We can only do this by knowing the certainty of our actions. Take the Lead as Our Global Cybersecurity Expert! As a result of our continued growth, we're More ❯

HM Land Registry ('HMLR') and Inspire People are bringing you an exciting opportunity for a Security Operations Centre Technical Team Lead. You will provide technical leadership for the Security Operations Centre team providing technical oversight and direction. You will engage with various teams across DDaT to maintain security monitoring, threat … intelligence and vulnerability management controls to detect and alert across all HM Land Registry technical assets. Salary of £46,058 - £57,400 dependent upon interview assessment plus excellent Civil Service benefits and 28% pension contribution. Flexible, hybrid working from Plymouth. Job description You will take forward technical consolidation … and/or improvement activities providing guidance and leadership to technicians within the IT Operations Practice and wider, whilst also working across DDaT to support and deliver solutions in line with the Technology and Business Strategies. Working closely with the Lead Infrastructure Engineers and subject matter experts, you will develop More ❯

Officer We are recruiting for a Senior IT Security Officer on a permanent basis. The Senior IT Security Officer role is to develop, implement, and maintain robust security controls to mature/improve the security capabilities within the IT Security, Compliance, and Identity function. This role ensures the protection of … their assets, systems, and data from internal and external threats, whilst driving continuous improvement in security controls. As a Senior IT Security Officer, you will need to have/be: Skills: Security Operations . Providing expert guidance on live security incidents and helping conduct robust investigations in order to identify … corrective actions and see them through to completion. Threat Intelligence . Provide guidance on proactive threat identification, analysis, and mitigation. Skilled in actionable intelligence, industry sources, and general awareness of threat landscape. Vulnerability Assessment. Identifying and classifying security vulnerabilities in networks, systems and applications and mitigating or eliminating their More ❯

At IBM CIC, we deliver deep technical and industry expertise to a wide range of public and private sector clients in the UK. A career in IBM CIC means you'll have the opportunity to work with visionaries across multiple industries to improve the hybrid cloud and AI journey for … the most innovative and valuable companies in the world. Your ability to accelerate impact and make meaningful change for your clients is enabled by our strategic partner ecosystem and our robust technology platforms across the IBM portfolio. Curiosity and a constant quest for knowledge serve as the foundation to success … in IBM CIC. In your role, you'll be encouraged to challenge the norm, investigate ideas outside of your role, and come up with creative solutions which impact a wide network of clients, whom may be at their site or one of our CIC or IBM locations. Our culture of More ❯