1 to 25 of 124 Permanent Vulnerability Management Jobs in the UK

Vulnerability Management Oversight and Governance Analyst Banking Hybrid: 3 days onsite in London per week 6 months £487 per day In short: Due to a recent audit, we require a Vulnerability Management Analyst to assess our current processes and strategy and re-align, where necessary … meet regulatory requirements. Job purpose: Support the oversight, governance, and enhancement of vulnerability management activities within The Bank. Lead smaller-scale projects independently, analysing and developing frameworks and procedures, ensuring alignment with regulatory requirements and industry best practices. Analysing reporting on vulnerability management from third parties ...

Incident and Vulnerability Manager This role is for an experienced professional in vulnerability management and threat intelligence to join our Cyber Operations team. You will work closely with colleagues across the organisation to further mature and continuously improve our cyber defence capabilities. Cyber Operations forms part … wider, well established security function operating within a highly regulated environment. In this role, you will lead and continuously enhance the management of vulnerability assessments across our hybrid IT estate. You will prioritise remediation activities using a risk based, threat informed approach, collaborating with stakeholders to strengthen ...

Threat and Vulnerability Management function sits at the heart of Cyber Operations, focused on protecting our organisation by proactively identifying, assessing and reducing cyber risk. As we evolve from traditional vulnerability management into a true Exposure Management model on our journey toward CTEM … introducing new, more intelligent ways of understanding and addressing risk. This role will be central to that transformation. As our Exposure Management Vulnerability Lead, you’ll take ownership of the operational delivery of vulnerability management within an exposure-led framework. Rather than relying solely on CVSS ...

CYBER SECURITY OPERATIONS MANAGER - CHESTER (HYBRID) KEY POINTS Senior operational security leadership role Lead Security Operations, Incident Response & Vulnerability Management Hybrid working - minimum 2 days per week onsite in the Chester Area Competitive salary ABOUT THE CLIENT We're working with a well-established UK organisation recognised … leading the day-to-day operational security activities that protect the organisation's systems and data. You'll manage security monitoring, incident response, and vulnerability management processes, ensuring they remain effective, efficient, and aligned with industry best practice. A key part of the role will be leading ...

deliver 24/7 threat detection, rapid incident response, and proactive risk management. This includes ownership of security controls, security testing, tech assurance and vulnerability and threat management, and incident response across the organisation. Collaboration is at the heart of this position. By working across the GCS Leadership … KPIs, regularly reporting to leadership on SOC events/incidents and overall effectiveness. • Review metrics at a group level and adjust services strategy accordingly. • Management of the security technology stack and continuous improvement of services. Incident Response & Threat Management • Serve as incident commander (including on-call), leading cyber ...

posture. The role will involve: Managing and optimising SCA, SAST, and DAST tooling to ensure effective scanning and remediation. Supporting engineering teams with triage, vulnerability management, and secure coding best practices. Ensuring adherence to the Secure Software Development Lifecycle ( SSDLC ). Supporting risk assessments and contributing to risk … management processes. Conducting regular security assessments and reporting findings. Collaborating with cross-functional teams to meet security requirements. Maintaining and developing security documentation and standards. Staying current with emerging threats, technologies, and regulations. Contributing to the Security Programmes through advice and training. Developing reports to track security progress ...

posture. The role will involve: Managing and optimising SCA, SAST, and DAST tooling to ensure effective scanning and remediation. Supporting engineering teams with triage, vulnerability management, and secure coding best practices. Ensuring adherence to the Secure Software Development Lifecycle ( SSDLC ). Supporting risk assessments and contributing to risk … management processes. Conducting regular security assessments and reporting findings. Collaborating with cross-functional teams to meet security requirements. Maintaining and developing security documentation and standards. Staying current with emerging threats, technologies, and regulations. Contributing to the Security Programmes through advice and training. Developing reports to track security progress ...

search for a Cyber Security Analyst. This is an ideal role for someone looking to apply their understanding of typical SOC tooling (SIEM, EDR, Vulnerability) in a public service environment with a large and diverse digital estate and it is a key role in helping LCC's vulnerability management, security operations and cyber essentials journey. Your new role will involve Contributing to the day to day running of the organisation's IT Security in collaboration with their MSSP Assisting with vulnerability assessments and risk mitigation Use case and rule creation within Google SecOps Working with ...

required to join our global client's new UK cybersecurity team. This role is predominantly end-client facing, advising on security best practices, vulnerability management and security standard compliance (e.g. NIST, ISO, PCI DSS etc), and leading audits and examinations. You will be reporting to the UK Head … Skills & Experience Required: 4+ years of experience working in Cyber Security within an AWS cloud environment Any experience with CrowdStrike would be a bonus Vulnerability management & Compliance Strong Security standard knowledge and experience, consulting on a range of security policies and standards such as GDPR, ISO, PCI, NIST ...

environment Enhance threat detection, monitoring and response capabilities Investigate security alerts and support incident response activities Improve integration and automation between security platforms Support vulnerability management and remediation processes Provide technical guidance on security controls across infrastructure and cloud environments Work closely with wider technology teams to embed … security best practices Key Technology: Microsoft Defender for Endpoint Microsoft Sentinel Claroty Platform Tenable Vulnerability Management Microsoft Purview Required Experience: Strong experience working in a Security Engineering Hands-on experience with Microsoft security tooling (E5), particularly Defender and Sentinel Experience with vulnerability management platforms such ...

. Providing senior leadership with insightful reports, dashboards, and actionable recommendations on security posture, risks, and incidents. Leading cyber risk assessments, third-party risk management, vulnerability remediation, patch management (soon transitioning to a third-party provider-opportunity to put your stamp on processes), and supplier compliance. Overseeing … incident management, coordinating audits, penetration testing (third-party delivered, but you will shape scoping and remediation), and contributing to disaster recovery/business continuity. Mentoring and developing the team to high performance, aligned with SFIA framework. Building strong relationships with stakeholders, executive leaders, SOC partners, vendors, and auditors. Championing ...

opportunity comes with clear progression opportunities and will require someone to come with both technical and GRC security experience. Key Responsibilities: Oversee security incident management and response Threat management Configure, implement and maintain security tools such as SIEM, XDR, EDR, vulnerability management Implement and maintain security … controls Conduct vendor risk assessments, support internal and external audits Governance, risk and compliance Skills & Experience: Proven experience in Cyber Security operations, threat management Strong knowledge of SIEM, XDR, EDR, vulnerability management, firewalls and network security Good understanding of risk management, vendor security assessments and compliance ...

processes Escalating complex threats to Tier 2 Incident Response teams where required Reviewing and enhancing security controls as the technical landscape evolves Triaging vulnerability scan results and working with technical teams on remediation Assessing secure configurations and feeding back improvements Producing regular service and security reports for key stakeholders … nature of projects, candidates MUST hold an active Security Clearance. Minimum of 4 years of experience as a SOC Analyst. Strong grounding in incident management and vulnerability management Understanding of cloud computing principles and modern security architectures Knowledge of core security concepts including CIA, risk management ...

improving the organisation’s security posture while ensuring ISO27001 compliance across the global executive office. This position offers exposure across security governance, risk management and technical security operations, working closely with the IT Manager, global security teams and managed service providers. Key responsibilities include supporting ISO27001 certification and audit … readiness, vendor risk assessments, DPIAs and broader information security governance, alongside operational activities such as vulnerability management, patching, access management, incident escalation and working with security technologies including firewalls and endpoint security tools. The ideal candidate will come from a technical security background such as SOC, vulnerability ...

operations for a globally critical organisation. This role reports to the Head of Threat Defence and Cyber Security Operations and combines technical leadership, team management, and strategic oversight of security operations, engineering, and threat defence capabilities. You will manage a high-performing team, drive continuous improvement, and support … combination of in-house and external security services. What you'll do: Lead cyber security operations and engineering services, including SOC management, security tooling, and vulnerability management Drive continuous improvement, tuning and optimisation of security systems Support the delivery of projects with security assurance and alignment ...

secure CI/CD practices. Microsoft 365 & Identity Security Strengthen security across Microsoft 365, Entra ID, and associated services. Enhance identity governance, privileged access management, DLP, and data classification. Support Defender tooling and alert management. Threat & Vulnerability Management Work with SOC partners to triage and respond … alerts. Conduct vulnerability assessments and coordinate remediation efforts. Enhance endpoint protection and XDR capabilities. Security Operations & Compliance Harden Windows Server, Active Directory, endpoints, and virtual desktop environments. Maintain logging, monitoring, and alerting coverage. Support external audits and recognised security certifications (e.g., Cyber Essentials Plus, ISO 27001, SOC 2). ...

prem environments Review and shape technical designs to ensure security patterns and principles are applied correctly Support and enhance core cyber processes including vulnerability management, incident response, monitoring, IAM, endpoint security and network protection Work closely with technology teams to embed security into change and project initiatives Assess … modern infrastructure Strong knowledge of security architecture principles and secure design patterns Experience with Azure, Microsoft Defender, M365 security tooling and firewalls Understanding of vulnerability management, incident response, endpoint protection and identity & access management Familiarity with frameworks such as NIST, ISO27001, OWASP, MITRE, CIS Benchmarks Experience operating ...

Active SC is required. Key Responsibilities Drive day-to-day vulnerability scanning, triage, reporting, and remediation tracking across multiple business units. Serve as the subject matter expert for vulnerability management, contextualising scan results using threat intelligence and business risk. Combine vulnerability data with active threat intelligence … exposures and reduce real-world risk. Work closely with IT Operations, infrastructure teams, and resolver groups to accelerate patching and explain business impact. Guide vulnerability analysts, improve operational processes, and help transition the function from reactive response to proactive risk reduction. Key Requirements Strong hands-on expertise in enterprise ...

aligned with business priorities and risk posture. Act as the senior escalation point for complex security incidents and coordinate cross-functional responses. Threat and Vulnerability Management Integrate advanced threat intelligence into detection and response workflows to identify emerging threats proactively. Develop an automated, risk-based vulnerability management ...

guardrails Influencing architectural decisions and representing cyber security in design and review forums Mentoring and guiding junior team members across SOC analysis and vulnerability management Providing expert oversight of cyber risk, vulnerability (including vulnerabilities in code), and security analytics Supporting incident response, including zero-day scenarios, alerting … Strong, hands-on AWS cloud security experience (designing, building, and securing environments) Background in security architecture and security engineering Deep understanding of cyber risk, vulnerability management, and cloud security best practice Experience mentoring or supporting junior security professionals Pragmatic mindset - able to balance security, delivery, and business needs ...

Microsoft Azure,Vulnerability Management, Security Controls Cloud Security, ISO 27001, NIST Third party management/MSP/SOC Security Engineer - Hybrid Cambridgeshire Our client is a global importer and supplier in the retail sector. They have a brand new vacancy for a Security Engineer to help protect … Experience 3-5 years' experience in a security engineering or similar IT security role Hands-on experience with security technologies (firewalls, SIEM, endpoint protection, vulnerability management tools, etc.) Experience supporting security solutions in both cloud and on-prem environments Proven experience in responding to and investigating security incidents ...

certification processes. Lead evidence collection, control implementation, compliance documentation, and readiness for external audits. Maintain and improve runbooks, processes, and policies. Strengthen vulnerability management capabilities and ensure clear remediation workflows. Security Operations Monitor and respond to security alerts across endpoints, networks, and cloud workloads. Investigate incidents, support containment … into a cybersecurity-focused career. What We're Looking For Essential Strong systems administration or network engineering background. Hands-on experience in incident response, vulnerability management, or security operations. Clear, articulate communicator able to explain technical risk to non-technical stakeholders. Strong technical troubleshooting skills across network, endpoint ...

enterprise Windows Server and Active Directory estate. The role provides deep technical expertise, strategic influence, and leadership across incident response, change delivery, lifecycle management, and platform improvement initiatives. It also acts as a mentor and escalation point for Senior Platform Engineers, strengthening operational excellence and resilience. A focus … services end-to-end is essential, whilst safeguarding platform integrity through controlled change processes, ensuring risk and impact assessments reflect enterprise expectations. Operational Resilience, Vulnerability Management, Security update scheduling, GPO and deployment of updates to the Windows server estate is a key part of the role, so experience ...

more. In addition, our client offers a clear and defined path career progression where employees have complete control of their development into the Management grades Candidates carrying a number of the below skills would be particularly relevant:- Strong skills in areas such as cyber strategy, cyber risk, cyber maturity … cyber security or a related discipline. Practical experience across various areas of cyber security, such as cyber architecture, cyber GRC, cyber threat management, vulnerability management, cyber security reviews. Detail oriented and strong problem-solving skills. Excellent oral and written communication skills including concisely communicating status and creating ...

engineering practices support Security Operations, software engineering teams, and the wider Information Security strategy. The role blends hands-on technical leadership with people management, prioritisation, and strategic alignment to help security scale with the organisation’s growth and risk profile. Main Responsibilities as the Security Engineering Lead: Lead … security engineering and DevSecOps team. Set technical standards and direction for security engineering, automation, and platform operations. Oversee core security platforms, including SIEM, EDR, vulnerability management, identity, and email security. Embed security into CI/CD pipelines, cloud environments, and engineering workflows. Drive automation and integration to improve ...