1 to 25 of 272 Permanent Vulnerability Management Jobs in the UK excluding London

largest global platform for the LGBTQ+ business community. Please do not contact the recruiter directly. Fitch Group is currently seeking a Director of Vulnerability Risk based out of our Manchester office. We are seeking a Director to lead our Vulnerability Management (VM) team. This role is ideal … experienced security leader with a risk mindset who can oversee all aspects of vulnerability management, including identification, risk prioritization, and remediation of vulnerabilities discovered. The ideal candidate for this role will bring innovative ideas on how to consistently apply risk prioritization through automation, leveraging AI where appropriate. Success ...

risk‐based approach to prioritise them, and to drive effective remediation activity. Accountabilities Allocation of the correct risk rating and remediation prioritisation to a vulnerability based on industry standards for assessment, available threat intelligence concerning exploitation, the reachability of the host (or asset) and the value of the service … running on the impacted host. Development of vulnerability management operating model, policies and procedures to ensure consistency in vulnerability identification, remediation and reporting. Element owner of the Vulnerability Management Standard including Issues Management and Regulatory alignment. Communication of vulnerabilities to relevant parties including senior ...

looking for a Cyber Threat & Vulnerability Analyst to join our Cyber Security team, helping protect the systems that deliver essential water services to millions of customers every day. You'll play a key role in identifying, assessing, and reducing cyber risk across a large and complex technology estate, making … with technical teams and business stakeholders to keep our services safe, resilient, and running smoothly. What you'll be doing as a Cyber Threat & Vulnerability Analyst: As a Cyber Threat & Vulnerability Analyst, you'll be responsible for supporting and improving how we identify, assess, and manage cyber vulnerabilities ...

Threat and Vulnerability Manager £55k Newport (x1 day a week) Benefits: 28.9% pension & Flexi-working The Opportunity Yolk Recruitment Public Sector & Not-for-Profit team has partnered with a specialised Civil Service Organisation who are presently undergoing an interesting transformation into the cloud space. In this role, you will … oversee and continuously improve the management of vulnerability assessments across our hybrid IT environment. Using a risk-based, threat-informed approach, you will prioritise remediation efforts and work closely with stakeholders to enhance the security posture of our systems and services. Vulnerability Management (Primary Focus) Lead ...

senior Cyber Security leadership role with a well respect global financial organisation. This is a high-visibility position focused on leading a global vulnerability risk programme across a complex technology environment. It would suit someone who can combine technical security knowledge with strong risk judgement, stakeholder management and the ability to drive remediation across multiple teams. The role sits around vulnerability risk, but it is broader than simply managing scan outputs. The successful candidate will help bring together security findings from across infrastructure, cloud, application security, open-source software and testing activity, then ensure ...

driving automation initiatives within a mature but evolving cyber function.The role offers broad exposure across security engineering, detection engineering, cloud security, incident response, vulnerability management, and security architecture.Key Responsibilities Design, implement, and improve security controls across cloud and enterprise infrastructure Enhance SIEM, SOAR, and EDR/XDR capabilities … using scripting and AI-assisted tooling Lead technical investigations and incident response activities Improve threat visibility and reduce false positives through detection engineering Conduct vulnerability management and remediation initiatives Partner with engineering, infrastructure, and DevOps teams to embed security into operational processes and CI/CD pipelines Perform ...

protect critical business systems, data, and infrastructure. Leads security operations, threat detection, incident response, and cyber resilience initiatives while ensuring alignment with organisational risk management objectives. Key Responsibilities Lead and manage the Cyber Defence function, overseeing security operations, threat intelligence, vulnerability management, and incident response capabilities. Develop … programmes, identifying emerging risks and implementing proactive defensive measures. Lead cyber incident response activities, coordinating technical teams and business stakeholders during security events. Manage vulnerability assessment and remediation programmes across enterprise infrastructure and applications. Collaborate with technology, risk, compliance, and business teams to strengthen organisational cyber resilience. Provide strategic ...

Vulnerability Manager Up to £85,000 depending on experience Cheltenham (Hybrid working - 3 days onsite per week) We're looking for an experienced InfoSec/Vulnerability Management professional to join a collaborative Application Security team . This is a key role for a proactive, hands-on individual … help drive a more preventative, strategic and business-aligned approach to vulnerability management. Working closely with the team lead and supporting a junior team member, you'll take ownership of vulnerability activity across the business, build strong relationships with technology and cyber stakeholders, and help ensure risks ...

client is seeking an Information Security Analyst to join their cyber security function, with a strong focus on vulnerability management, assurance and compliance. Reporting into the Head of Information Security, this role plays a key part in identifying, assessing and reducing cyber risk across the organisation, working closely … with internal technology teams, managed service providers and third-party security partners. Key Responsibilities Manage vulnerability management and remediation activities across applications and infrastructure Coordinate penetration testing, remediation and assurance activities with third parties Support ongoing PCI DSS compliance, including assessments, evidence and control testing Configure and operate ...

client is seeking an Information Security Analyst to join their cyber security function, with a strong focus on vulnerability management, assurance and compliance. Reporting into the Head of Information Security, this role plays a key part in identifying, assessing and reducing cyber risk across the organisation, working closely … with internal technology teams, managed service providers and third-party security partners. Key Responsibilities Manage vulnerability management and remediation activities across applications and infrastructure Coordinate penetration testing, remediation and assurance activities with third parties Support ongoing PCI DSS compliance, including assessments, evidence and control testing Configure and operate ...

cyber security professional looking to further develop their experience within a mature Security Operations environment, gaining exposure to incident response, threat detection, vulnerability management and modern Microsoft security technologies. Working within a highly regulated customer environment, you will help monitor, investigate and respond to security incidents while supporting … strong security posture across customer environments. Key Responsibilities Monitor and investigate security alerts and events across cloud, endpoint, identity and network environments Support the management of security incidents through the incident response lifecycle Perform security investigations and root cause analysis Validate indicators of compromise and assess potential business impact ...

cyber security professional looking to further develop their experience within a mature Security Operations environment, gaining exposure to incident response, threat detection, vulnerability management and modern Microsoft security technologies. Working within a highly regulated customer environment, you will help monitor, investigate and respond to security incidents while supporting … strong security posture across customer environments. Key Responsibilities Monitor and investigate security alerts and events across cloud, endpoint, identity and network environments Support the management of security incidents through the incident response lifecycle Perform security investigations and root cause analysis Validate indicators of compromise and assess potential business impact ...

background is required to join our global client's UK cybersecurity team. This role is predominantly end-client facing, advising on security best practices, vulnerability management and security standard compliance (e.g. NIST, ISO, PCI DSS etc), and leading audits and examinations. Skills & Experience Required: 2+ years of experience … working in Cyber Security within an AWS cloud environment Vulnerability management & Compliance Strong Security standard knowledge and experience, consulting on a range of security policies and standards such as GDPR, ISO, PCI, NIST Confidence when speaking with stakeholders and clients, as well as the ability to provide training ...

Technical Support Manager, IT Support Manager, Service Desk Manager or Senior Support Engineer looking for the opportunity to step beyond traditional support management and build a career in infrastructure, cloud technology and IT operations? This is a newly created role within a high-growth, technology-driven organisation that … technically, acting as the senior escalation point for more complex issues across Microsoft Azure, Microsoft 365, Entra ID, Intune, Exchange Online, VPN connectivity, endpoint management and business-critical SaaS platforms. You will have the opportunity to introduce structure, improve service levels, strengthen reporting, enhance documentation, improve ticket ownership ...

Cybersecurity to lead and evolve its cybersecurity function. We're looking for a hands-on cybersecurity leader with expertise in: Cybersecurity Strategy & Risk Management Microsoft 365, Entra ID & Azure Security Incident Response & Vulnerability Management Microsoft Defender, Intune & Conditional Access ISO27001, NIST & Security Governance Key Responsibilities Define … Entra ID, Azure, endpoints, cloud services, SaaS platforms, and collaboration tools. Drive continuous improvement of key security controls including MFA, Conditional Access, privileged access management, endpoint protection, vulnerability management, encryption, DLP, logging, and monitoring. Lead cyber incident response planning, testing, and execution, including playbooks, tabletop exercises, escalation ...

performance. Lead, develop, and mentor a multidisciplinary team covering cyber security operations and network security functions. Own and drive cyber security governance, risk management, and compliance activities across the organisation. Maintain and enhance security controls aligned to recognised frameworks including ISO 27001, NIST Cybersecurity Framework, CIS Controls, and other … operational security functions. Strong understanding and practical application of ISO 27001 and related governance, risk, and compliance frameworks. Experience with security monitoring, incident response, vulnerability management, and threat management processes. Proven stakeholder management skills with the ability to engage effectively at all levels of the organisation. ...

performance. Lead, develop, and mentor a multidisciplinary team covering cyber security operations and network security functions. Own and drive cyber security governance, risk management, and compliance activities across the organisation. Maintain and enhance security controls aligned to recognised frameworks including ISO 27001, NIST Cybersecurity Framework, CIS Controls, and other … operational security functions. Strong understanding and practical application of ISO 27001 and related governance, risk, and compliance frameworks. Experience with security monitoring, incident response, vulnerability management, and threat management processes. Proven stakeholder management skills with the ability to engage effectively at all levels of the organisation. ...

Cyber Security Consultant x 2 (Project Management focus) Join a growing cyber security consultancy that helps organisations strengthen their security posture, manage risk, and navigate an increasingly complex threat landscape. This is a client-facing role where you'll play a key part in delivering trusted advice, leading engagements … across a diverse client base. Conduct cyber maturity assessments, risk reviews, and gap analyses to identify areas for improvement. Advise organisations on governance, risk management, compliance, and security best practice. Develop practical security roadmaps and recommendations aligned to business objectives. Support clients with certification and compliance initiatives, including recognised ...

assurance reporting to Digital governance groups, Audit/Risk & Assurance Committees, & the Trust Board. Provide strategic oversight of cyber operations (monitoring, incident response, vulnerability management, identity & access management) delivered internally & via third parties; assure the effectiveness of managed services. Embed secure-by-design principles across architecture, procurement … cyber policy.2. Act as the Trusts senior strategic authority on cyber security risk, providing expert advice, assurance, and challenge to Information Asset Owners, Executive Management Team members and Board-level forums.3. Translate national frameworks and requirements (including DSPT and NCSC Cyber Assessment Framework (CAF)) into pragmatic, risk-based implementation.4. ...

capabilities Supporting data protection, information governance and security best practice Developing and maintaining security controls across identity, endpoint and cloud environments Conducting threat hunting, vulnerability management and security reviews Assessing risks associated with business applications and user access Supporting the secure adoption of new technologies and business initiatives … Experience in some of the following areas would be beneficial: Security Operations (SecOps) Microsoft Sentinel Microsoft Purview Microsoft Defender Entra ID/Identity & Access Management Threat Hunting Vulnerability Management Data Protection & Information Governance Security Monitoring & Incident Investigation Cloud Security (Azure and/or AWS) We're particularly ...

maintain high standards across ISO 27001, Cyber Essentials Plus and wider compliance frameworks. You will: Supporting ISO 27001 activities and ongoing security control management and improvements Supporting vulnerability management processes including remediating findings with both software and configurations Supporting security configuration improvements across our Microsoft 365 environment … Supporting the maintenance of Cyber Essentials Plus, NCSC CAF and other compliance frameworks Contributing to risk management processes, including maintaining risk registers Helping to develop, test and maintain Business Continuity and Disaster Recovery strategies Be comfortable with supporting security documentation creation and maintenance Supporting security awareness initiatives and wider ...

requirements are integrated from design through to deployment. You will also play a key role in shaping and governing the organisation's Identity & Access Management (IAM) strategy, helping to drive improvements in Zero Trust security, privileged access controls, and identity lifecycle management. Key Responsibilities Lead and enhance the organisation … adoption across Azure and AWS environments Drive IAM governance, including MFA, RBAC, PAM/PIM, Conditional Access, and Zero Trust controls Support penetration testing, vulnerability management, and remediation activities Collaborate with internal stakeholders, suppliers, and external partners to improve security posture Contribute to security standards, policies, audits ...

point and mentor for Tier 1 analysts. Perform threat analysis and share intelligence across teams. Tune and improve SIEM rules and detection capabilities. Support vulnerability management and remediation activities. Produce incident reports, metrics, and post-incident reviews. Collaborate with Infrastructure, Network, and Development teams to improve security posture. … within a SOC or similar security operations environment. Hands-on experience with incident response, security monitoring, and threat analysis. Experience using SIEM, EDR, and vulnerability management tools. Good understanding of security operations processes, attack techniques, and incident management methodologies. Strong analytical and problem-solving skills. Qualifications (Desirable ...

next decade, this is the place to do it. Location: UK-based hybrid role The role We're looking for a motivated Threat & Vulnerability Analyst to join our Threat Informed Defence team. You'll play a key role in identifying, analysing and managing vulnerabilities and risk across the organisation … business. This includes analysing security data across on-prem and cloud environments, leveraging EDR capabilities, and contributing to a threat-informed defence approach. Conduct vulnerability assessments and threat analysis using security tooling and intelligence Monitor emerging threats and coordinate response with stakeholders across the business Triage and manage findings ...

play a central role in monitoring, triaging, and investigating security events across a range of client environments. You’ll be working across SIEM platforms, vulnerability management tools, threat intelligence sources, and network telemetry to deliver effective detection and response. You will also take on client-facing responsibilities, presenting … alerts for urgency and impact Deliver weekly and monthly reporting to clients and stakeholders Communicate security findings and trends directly to clients Support vulnerability management analysis and remediation efforts Lead false-positive reduction and SIEM tuning activities Mentor and support development of Tier 1 and junior analysts Contribute ...