1 to 25 of 49 Remote/Hybrid Vulnerability Management Jobs in England

posture. The role will involve: Managing and optimising SCA, SAST, and DAST tooling to ensure effective scanning and remediation. Supporting engineering teams with triage, vulnerability management, and secure coding best practices. Ensuring adherence to the Secure Software Development Lifecycle ( SSDLC ). Supporting risk assessments and contributing to risk … management processes. Conducting regular security assessments and reporting findings. Collaborating with cross-functional teams to meet security requirements. Maintaining and developing security documentation and standards. Staying current with emerging threats, technologies, and regulations. Contributing to the Security Programmes through advice and training. Developing reports to track security progress ...

posture. The role will involve: Managing and optimising SCA, SAST, and DAST tooling to ensure effective scanning and remediation. Supporting engineering teams with triage, vulnerability management, and secure coding best practices. Ensuring adherence to the Secure Software Development Lifecycle ( SSDLC ). Supporting risk assessments and contributing to risk … management processes. Conducting regular security assessments and reporting findings. Collaborating with cross-functional teams to meet security requirements. Maintaining and developing security documentation and standards. Staying current with emerging threats, technologies, and regulations. Contributing to the Security Programmes through advice and training. Developing reports to track security progress ...

search for a Cyber Security Analyst. This is an ideal role for someone looking to apply their understanding of typical SOC tooling (SIEM, EDR, Vulnerability) in a public service environment with a large and diverse digital estate and it is a key role in helping LCC's vulnerability management, security operations and cyber essentials journey. Your new role will involve Contributing to the day to day running of the organisation's IT Security in collaboration with their MSSP Assisting with vulnerability assessments and risk mitigation Use case and rule creation within Google SecOps Working with ...

series NIST SP 800 series NIST Cyber Security Framework Experience in: Secure application design and review Cloud security assurance Penetration testing and vulnerability management Supplier security assurance Desirable Experience Knowledge of nuclear industry regulations across the UK, US, Netherlands, and Germany Understanding of government information classifications Experience … Strong understanding of security controls across multiple asset types including data, networks, devices, and users, covering: Software Asset Inventory & Control Data Protection Secure Configuration Management Continuous Vulnerability Management Audit Log Management Malware Defences Disaster Recovery Service Provider Security Management Application Security & Penetration Testing Qualifications & Certifications ...

. Providing senior leadership with insightful reports, dashboards, and actionable recommendations on security posture, risks, and incidents. Leading cyber risk assessments, third-party risk management, vulnerability remediation, patch management (soon transitioning to a third-party provider-opportunity to put your stamp on processes), and supplier compliance. Overseeing … incident management, coordinating audits, penetration testing (third-party delivered, but you will shape scoping and remediation), and contributing to disaster recovery/business continuity. Mentoring and developing the team to high performance, aligned with SFIA framework. Building strong relationships with stakeholders, executive leaders, SOC partners, vendors, and auditors. Championing ...

opportunity comes with clear progression opportunities and will require someone to come with both technical and GRC security experience. Key Responsibilities: Oversee security incident management and response Threat management Configure, implement and maintain security tools such as SIEM, XDR, EDR, vulnerability management Implement and maintain security … controls Conduct vendor risk assessments, support internal and external audits Governance, risk and compliance Skills & Experience: Proven experience in Cyber Security operations, threat management Strong knowledge of SIEM, XDR, EDR, vulnerability management, firewalls and network security Good understanding of risk management, vendor security assessments and compliance ...

improving the organisation’s security posture while ensuring ISO27001 compliance across the global executive office. This position offers exposure across security governance, risk management and technical security operations, working closely with the IT Manager, global security teams and managed service providers. Key responsibilities include supporting ISO27001 certification and audit … readiness, vendor risk assessments, DPIAs and broader information security governance, alongside operational activities such as vulnerability management, patching, access management, incident escalation and working with security technologies including firewalls and endpoint security tools. The ideal candidate will come from a technical security background such as SOC, vulnerability ...

secure CI/CD practices. Microsoft 365 & Identity Security Strengthen security across Microsoft 365, Entra ID, and associated services. Enhance identity governance, privileged access management, DLP, and data classification. Support Defender tooling and alert management. Threat & Vulnerability Management Work with SOC partners to triage and respond … alerts. Conduct vulnerability assessments and coordinate remediation efforts. Enhance endpoint protection and XDR capabilities. Security Operations & Compliance Harden Windows Server, Active Directory, endpoints, and virtual desktop environments. Maintain logging, monitoring, and alerting coverage. Support external audits and recognised security certifications (e.g., Cyber Essentials Plus, ISO 27001, SOC 2). ...

prem environments Review and shape technical designs to ensure security patterns and principles are applied correctly Support and enhance core cyber processes including vulnerability management, incident response, monitoring, IAM, endpoint security and network protection Work closely with technology teams to embed security into change and project initiatives Assess … modern infrastructure Strong knowledge of security architecture principles and secure design patterns Experience with Azure, Microsoft Defender, M365 security tooling and firewalls Understanding of vulnerability management, incident response, endpoint protection and identity & access management Familiarity with frameworks such as NIST, ISO27001, OWASP, MITRE, CIS Benchmarks Experience operating ...

aligned with business priorities and risk posture. Act as the senior escalation point for complex security incidents and coordinate cross-functional responses. Threat and Vulnerability Management Integrate advanced threat intelligence into detection and response workflows to identify emerging threats proactively. Develop an automated, risk-based vulnerability management ...

Server knowledge. Key Responsibilities: Technically Proficient Implementing Security Controls Administration of SIEM tools and Security Controls (Sentinel, Defender, DarkTrace) Incident Response Security Operations Centre Vulnerability Management & Reporting Continuous Improvement Training & Awareness Secure Architecture Support Compliance and Framework Alignment Essential Skills: Experience with Microsoft Sentinel, Microsoft Defender for Endpoint …/Cloud SIEM tools, threat intelligence platforms, and vulnerability management Technical experience securing Microsoft Azure and Amazon Web Services cloud environments as well as on-premise/virtual Microsoft technologies Strong analytical, communication, and problem-solving skills, including the ability to produce clear technical and non-technical reports. ...

enterprise Windows Server and Active Directory estate. The role provides deep technical expertise, strategic influence, and leadership across incident response, change delivery, lifecycle management, and platform improvement initiatives. It also acts as a mentor and escalation point for Senior Platform Engineers, strengthening operational excellence and resilience. A focus … services end-to-end is essential, whilst safeguarding platform integrity through controlled change processes, ensuring risk and impact assessments reflect enterprise expectations. Operational Resilience, Vulnerability Management, Security update scheduling, GPO and deployment of updates to the Windows server estate is a key part of the role, so experience ...

engineering practices support Security Operations, software engineering teams, and the wider Information Security strategy. The role blends hands-on technical leadership with people management, prioritisation, and strategic alignment to help security scale with the organisation’s growth and risk profile. Main Responsibilities as the Security Engineering Lead: Lead … security engineering and DevSecOps team. Set technical standards and direction for security engineering, automation, and platform operations. Oversee core security platforms, including SIEM, EDR, vulnerability management, identity, and email security. Embed security into CI/CD pipelines, cloud environments, and engineering workflows. Drive automation and integration to improve ...

ensuring data is secure, accessible and properly maintained from creation through to deletion Oversee third-party and supplier security, ensuring appropriate controls and risk management are in place Manage and process Data Subject Access Requests (DSARs) and related data handling activities Support patch management and vulnerability remediation … improvements in line with business growth and M&A activity Requirements: Strong experience in Information Security, with a focus on data handling and lifecycle management Practical experience managing third-party/supplier risk Good understanding of GDPR and data protection, particularly in real-world application (e.g. DSARs) Experience with ...

Responsibilities Full end-to-end ownership of corporate IT operations (cloud, infrastructure, frontline support) Administration and optimisation of multi-tenant Microsoft Azure environments Management of Microsoft 365, Windows Server (2016+), Active Directory/Entra ID, and hybrid environments Oversight of a UK offsite data centre Leadership of Business Continuity … testing Maintenance and enhancement of ISO 27001 security posture Acting as the senior technical escalation point Driving ITIL-aligned incident, change, asset, and identity management processes Leading vulnerability management, patching, and security awareness initiatives Managing third-party vendors and managed service providers Owning documentation, governance, and compliance ...

activity using analysis tools; resolve or escalate issues/incidents as appropriate Support the IT team in conducting security impact assessments Assist with change management reviews where IT security may be affected Promote and maintain security awareness across the organisation Manage the IT Controls Assurance Program (ICAP) for internal … understanding, or experience in some of the following: IT operations, preferably with exposure to governance, internal audit, or cybersecurity ISO 27001, GDPR, and risk management frameworks Security tools for Vulnerability Management, SIEM, AV/EDR/XDR, and DLP (e.g., Splunk, Qualys, Defender, Purview, CrowdStrike) Windows Server ...

protecting sensitive systems and services. Due to ongoing programme demand, they are seeking an experienced Project Security Lead to strengthen cyber governance and risk management across a key capability. THE BENEFITS: Exposure to large scale Defence digital programmes Long term, stable contract High profile Defence programme environment THE PROJECT … SECURITY LEAD ROLE: As Project Security Lead, you will report into the Programme CISO and take ownership of security risk management across the system lifecycle. You will embed Secure by Design principles, ensure compliance with JSP 440 and JSP 453, and align activities to frameworks such as National Institute ...

ensuring that new or upgraded infrastructure platforms are fully operationally ready before moving into live service, working closely with infrastructure delivery, operations, and service management teams. Test Manager’s Key Duties: Develop and manage the Operational Acceptance Testing (OAT) approach for infrastructure changes and platform upgrades Create and maintain … user platforms Ensure monitoring, alerting, backup, recovery, and resilience capabilities are tested and operationally ready Validate operational processes including security controls, access management, patching, and vulnerability management Support infrastructure migration and cutover activities by ensuring rollback, recovery, and operational procedures are in place Work closely with infrastructure ...

Cloud Infrastructure; ensuring Azure, Microsoft 365, and SaaS platforms are secure, resilient, and compliant. The role combines hands-on technical security expertise with risk management, governance, and assurance, supporting business objectives while reducing cyber and data protection risk. As the Senior Information Security Analyst you will lead security architecture … decisions, oversee incident response and vulnerability management, support secure digital transformation, and provide clear, risk-based advice to stakeholders and senior leadership. The position operates with a high degree of autonomy and focuses on security leadership & technical excellence and enablement, rather than day-to-day service desk operations. ...

Cloud Infrastructure; ensuring Azure, Microsoft 365, and SaaS platforms are secure, resilient, and compliant. The role combines hands-on technical security expertise with risk management, governance, and assurance, supporting business objectives while reducing cyber and data protection risk. As the Senior Information Security Analyst you will lead security architecture … decisions, oversee incident response and vulnerability management, support secure digital transformation, and provide clear, risk-based advice to stakeholders and senior leadership. The position operates with a high degree of autonomy and focuses on security leadership & technical excellence and enablement, rather than day-to-day service desk operations. ...

impact, while enjoying hybrid working and strong professional development opportunities. Skills Secure architecture design and secure-by-design principles Risk assessment, threat modelling, and vulnerability management Security frameworks: ISO 27001, NIST 800-30/53, OWASP Cloud security architecture (AWS, Azure, GCP) Incident response, penetration testing, and remediation ...

using security technologies to solve security, and wider organisational, challenges and would typically include: Developing deep SME in key security technologies, e.g. cyber asset management platforms, to deliver insight and value to clients. Supporting discreet cyber hygiene assessments through operating agent-based, and agent-less, techniques. Working alongside … technical and organisational domains and common industry frameworks such as NIST CSF and ISO27001. Demonstrable experience of operating a key security process, such as vulnerability management, threat detection and response, or cyber security attack surface management, Hands-on expertise across a range of modern security technologies such ...

feeds and translate emerging threats into actionable detection improvements Identify opportunities to streamline and automate incident response workflows across the security tooling stack Support vulnerability management activities, including identifying issues and assisting with remediation tracking Participate in technical incident response investigations when security events occur Maintain operational documentation ...

trusted security advisor. What you’ll be doing: Designing and implementing security solutions (firewalls, endpoint, cloud security) Leading incident response and remediation activities Conducting vulnerability assessments & penetration testing Implementing security monitoring, reporting & best practices Advising clients on Cyber Essentials, CE+, GDPR, ISO 27001 & NIST Working closely with clients … Firewall experience (Palo Alto, Fortinet) EDR/endpoint protection (Microsoft Defender, Sophos, Bitdefender) Network & cloud security knowledge (Azure, AWS, VPNs, VLANs, DNS) Incident response & vulnerability management experience Cyber Essentials/CE+ knowledge or certification Confident communicator, comfortable in client-facing scenarios What’s on offer: Hybrid & flexible working ...

cybersecurity. They offer a supportive environment with investment in modern tools, frameworks, and professional development. Description Conduct and support information security risk assessments, vulnerability reviews, and the maintenance of the risk register. Monitor security alerts across platforms such as SIEM, endpoint security, and DLP tools, investigating incidents as required. … external security risks. Profile Experience in information security, risk assessment, and incident response within a regulated or structured environment. Familiarity with security monitoring tools, vulnerability management, and supporting audit activities. Understanding of security frameworks such as ISO 27001, NIST, or Cyber Essentials. Strong communication skills, with the ability ...