1 to 25 of 63 Vulnerability Management Jobs in the North of England

background is required to join our global client's UK cybersecurity team. This role is predominantly end-client facing, advising on security best practices, vulnerability management and security standard compliance (e.g. NIST, ISO, PCI DSS etc), and leading audits and examinations. Skills & Experience Required: 2+ years of experience … working in Cyber Security within an AWS cloud environment Vulnerability management & Compliance Strong Security standard knowledge and experience, consulting on a range of security policies and standards such as GDPR, ISO, PCI, NIST Confidence when speaking with stakeholders and clients, as well as the ability to provide training ...

organisation's information assets. You will design, implement, and maintain robust security measures to defend against evolving cyber threats. Working closely with IT, risk management, and compliance teams, you will help shape and enforce our security policies and practices. Benefits Competitive salary package reflecting your skills and experience. Comprehensive … Security Engineering (AppSec) Secure Development Lifecycle (SDLC): Integrate security tools and processes into the CI/CD pipelines (DevSecOps), ensuring security is "shifted left." Vulnerability Management: Manage and execute Static Application Security Testing (SAST) and Dynamic Application Security Testing (DAST) on proprietary applications. Remediation & Guidance ...

organisation's information assets. You will design, implement, and maintain robust security measures to defend against evolving cyber threats. Working closely with IT, risk management, and compliance teams, you will help shape and enforce our security policies and practices. Benefits Competitive salary package reflecting your skills and experience. Comprehensive … Security Engineering (AppSec) Secure Development Lifecycle (SDLC): Integrate security tools and processes into the CI/CD pipelines (DevSecOps), ensuring security is "shifted left." Vulnerability Management: Manage and execute Static Application Security Testing (SAST) and Dynamic Application Security Testing (DAST) on proprietary applications. Remediation & Guidance ...

Vulnerability Management SME 6-month contract Market rate - inside IR35 Hybrid 2/3 days a week in Sheffield We are seeking an experienced contractor to provide specialist expertise in identifying, analysing, and prioritising technology resilience vulnerabilities across critical services. The role will support resilience risk assessments, vulnerability remediation activities, and regulatory assurance requirements across the technology environment. Key Responsibilities Support the identification and assessment of technology resilience vulnerabilities Analyse vulnerability impacts against resilience tolerances and critical service requirements Support remediation planning and challenge the effectiveness of control improvements Produce vulnerability insight, prioritisation, and assurance ...

transfer systems Collaborate with DevOps, security, and infrastructure teams to ensure secure and reliable deployments Contribute to CI/CD pipelines and source control management using GitLab Support vulnerability management and security scanning processes Create technical documentation and provide knowledge-sharing support where required Participate in Agile … Hands-on experience with Docker and containerized environments Experience using GitLab for version control and CI/CD pipelines Understanding of security scanning and vulnerability management tools such as Trivy, Trend Micro, Wiz, or similar Experience working with Jupyter Notebooks Familiarity with secure enterprise integrations and data transfer ...

appetite with a particular focus on AI Technical Engineering Leadership Oversee the engineering and integration of security controls across platforms including identity and access management network security endpoint protection and data security Champion automation and secure by design principles Platform Security Drive the secure design and operation of critical … technology platforms collaborating with platform owners and engineering teams to embed security throughout the lifecycle Incident Response Threat Management Provide technical oversight for incident response threat detection and vulnerability management Lead root cause analysis and remediation of complex security incidents Stakeholder Engagement Act as a trusted advisor ...

automated controls. Partner with platform owners to remediate critical gaps and implement scalable solutions for artifact integrity, access control, and configuration security. Integrate vulnerability management, SBOM, provenance, and code-signing practices within engineering workflows. Roadmap Development & Execution Prioritise identified gaps based on business risk, regulatory impact, and operational … pipeline design, integration of security scanning tools, and automation of security controls. Strong knowledge and understanding of service mesh, cryptography, network security, application security, vulnerability management, and risk management. Demonstrable ability to conduct threat modelling, platform security assessments, and gap analysis. Experience building and implementing maturity models, frameworks ...

will be responsible for monitoring, detecting, investigating, and responding to security threats across the organisation's infrastructure and systems. You will also support vulnerability management, compliance initiatives, and wider security improvement projects across the business. This role would suit someone with 2-4 years' experience in a cybersecurity … emerging threats and security technologies. Key Responsibilities: * Monitor and develop SIEM and threat detection platforms * Investigate and respond to security incidents and alerts * Support vulnerability scanning, remediation, and reporting activities * Assist with development of security policies, procedures, and controls * Work alongside Infrastructure and Technical Services teams to improve security ...

senior IT Service Manager to strengthen operational governance and drive service excellence across the business. You’ll own key operational processes including incident management, service controls and risk mitigation, working alongside senior technical and delivery stakeholders to ensure systems remain stable, secure and scalable. Key responsibilities Own and lead … technical incident management (including P1/P2 incidents and out-of-hours escalation) Act as incident commander during major incidents, managing communications and mitigation strategies Define, maintain and report on SLAs, SLOs and service health metrics Oversee service desk triage processes, priorities and ceremonies Lead cyber incident response ...

responding to security threats, while driving continuous improvement across our security operations capability. Youll play a key role in incident response, threat intelligence, vulnerability management and ensuring effective use of our security tools and processes to reduce risk across the technology estate. Key responsibilities Monitor, triage and respond … trends, risks and potential threats Act as an escalation point for information security queries from colleagues and service delivery teams Support and coordinate patch management activities, validating effectiveness through vulnerability scanning Oversee and operate key security technologies, including SIEM, email and web gateways, and endpoint protection tools Monitor ...

upgrading enterprise server and storage hardware Providing internal support for office hardware including, PCs, laptops, mobile devices (Windows OS, iOS, MacOS and Android) Vulnerability management using scanning tools such as Nessus Remediation/automation of software rollout using Ninite/PDQ Configuring and monitoring of Anti-virus software … Mobile Device Management Firewall/Switch management Configuration, patching and upgrading Administering Microsoft Active Directory, Exchange Server & Office 365 Achieving recognised Cyber Security accreditation Management of video conferencing Management of enterprise level phone system Monitoring and managing the availability and scalability of resources, including CPU usage ...

upgrading enterprise server and storage hardware • Providing internal support for office hardware including, PCs, laptops, mobile devices (Windows OS, iOS, MacOS and Android) • Vulnerability management using scanning tools such as Nessus • Remediation/automation of software rollout using Ninite/PDQ • Configuring and monitoring of Anti-virus software … Mobile Device Management • Firewall/Switch management - Configuration, patching and upgrading • Administering Microsoft Active Directory, Exchange Server & Office 365 • Achieving recognised Cyber Security accreditation • Management of video conferencing • Management of enterprise level phone system • Monitoring and managing the availability and scalability of resources, including CPU usage ...

controls Experience developing cyber resilience and disaster recovery Confidence to communicate effectively with all layers of the business, including the delivery of reports to management and training and best-practice guidance to all staff Drive efficiency through automation utilising PowerShell, with integration to Microsoft services such as Active Directory … Graph API Responsibilities: End to end management of phishing, through design, scheduling, reporting and training. Conduct staff training covering emerging threats, end-user best practices, phishing, password management and more. Vulnerability management life cycle including detection and remediation Maintain third party 24/7 SOC relationship ...

controls Experience developing cyber resilience and disaster recovery Confidence to communicate effectively with all layers of the business, including the delivery of reports to management and training and best-practice guidance to all staff Drive efficiency through automation utilising PowerShell, with integration to Microsoft services such as Active Directory … Graph API Responsibilities: End to end management of phishing, through design, scheduling, reporting and training. Conduct staff training covering emerging threats, end-user best practices, phishing, password management and more. Vulnerability management life cycle including detection and remediation Maintain third party 24/7 SOC relationship ...

controls Experience developing cyber resilience and disaster recovery Confidence to communicate effectively with all layers of the business, including the delivery of reports to management and training and best-practice guidance to all staff Drive efficiency through automation utilising PowerShell, with integration to Microsoft services such as Active Directory … Graph API Responsibilities: End to end management of phishing, through design, scheduling, reporting and training. Conduct staff training covering emerging threats, end-user best practices, phishing, password management and more. Vulnerability management life cycle including detection and remediation Maintain third party 24/7 SOC relationship ...

solutions to reduce identified risks Configure and manage a range of security technologies such as firewalls, intrusion detection/prevention tools, endpoint protection, device management, and monitoring platforms Investigate and respond to cybersecurity incidents, ensuring timely resolution and mitigation Carry out routine audits and risk assessments to maintain … strong security framework Monitor and maintain security controls, producing remediation strategies where necessary Conduct vulnerability assessments and support penetration testing activities Collaborate with internal IT, cloud, and global teams to maintain secure infrastructure Work alongside security operations teams to address threats and operational issues Ensure adherence to recognised standards ...

Python and/or PowerShell to reduce manual effort Build and maintain integrations using APIs, connectors, and webhooks Support infrastructure as code and configuration management initiatives Continuously identify opportunities to automate repetitive security tasks Risk & Governance Support vulnerability management processes and remediation programmes Work closely with Technology … Azure cloud environments Experience with SIEM platforms such as Microsoft Sentinel, Elastic, Splunk, or similar Strong knowledge of detection engineering, alert tuning, and log management Experience with SOAR or security automation tooling Scripting skills in Python and/or PowerShell Experience with EDR, endpoint security, and identity controls Good ...

function, including oversight of any outsourced SOC Managing the full incident response lifecycle (detection through to recovery and post-incident review) Overseeing threat detection, vulnerability management, and cyber defence capabilities Driving improvements across SIEM, SOAR, EDR/XDR, and security tooling Ensuring robust monitoring, alerting, and response across … Operations or SOC function Strong understanding of SIEM, SOAR, EDR/XDR, IDS/IPS, and security tooling Experience managing incident response and threat management in complex environments Strong knowledge of frameworks such as NIST, ISO 27001, or CIS Controls Experience working in cloud environments (Azure ...

both AWS and GCP (essential) Deep understanding of CI/CD pipelines, build tools, artifact repositories, and developer platforms Expertise in secure software delivery, vulnerability management, and platform security Experience with threat modelling, security frameworks, and maturity assessments Strong knowledge of application security, network security, and cloud security … principles Excellent stakeholder management and communication skills Desirable: Experience in financial services or regulated environments Knowledge of Kubernetes and container security Familiarity with supply chain security, SBOM, and secure development practices Relevant certifications (eg CISSP, CISM, CCSP) This is a key role focused on shaping and embedding secure ...

drive remediation activities Coordinate gap assessments and readiness reviews Provide senior leadership with audit and risk reporting Security Testing & Assurance Coordinate penetration testing and vulnerability assessments Work with internal teams and third-party providers Track remediation of security findings Embed testing into change and release processes Support supplier security … certification Familiarity with SWIFT CSCF (desirable) Background in fintech or regulated financial services (preferred) Experience managing audits and working with auditors Understanding of risk management frameworks Experience with control testing and evidence management Knowledge of cloud, infrastructure, and application security concepts Experience coordinating penetration testing and vulnerability ...

secure-by-design principles are embedded across all IT changes and lead on security input at the Change Advisory Board. Work closely with Senior Management Team IT & Change colleagues to prioritise security improvements and reduce organisational risk. Ensure security-related changes and risks are communicated clearly and promptly … security. Experience producing and maintaining security documentation (standards, procedures, runbooks). Experience supporting Cyber Essentials, ISO27001, or similar frameworks, including audit readiness. Familiarity with vulnerability management tools and workflows. Experience managing email security, web security, WAFs, Azure tenants, firewalls, and SaaS platforms from a security perspective. What ...

Implement and own RESTful APIs ; contribute to API design standards Apply secure coding principles throughout the development lifecycle (OWASP Top 10, input validation, secrets management, least privilege) Write high-quality, testable code with unit and integration test coverage (JUnit, Mockito, Cucumber/BDD ) Manage CI/CD pipelines using … versioning, HATEOAS OpenAPI/Swagger specification and documentation API security: OAuth2, JWT, token verification Secure Coding Input validation, SQL injection prevention, XSS prevention Secrets management (Jasypt, Vault, or equivalent) Dependency vulnerability management Testing – Cucumber/BDD Writing and maintaining Gherkin feature files Cucumber step definitions and test ...

platforms) to strengthen overall security posture Lead on the investigation of security alerts and incidents, ensuring appropriate triage, escalation, and resolution Carry out regular vulnerability assessments, track remediation progress, and provide clear reporting on risk exposure Support the configuration of secure systems and ensure infrastructure is aligned with security … data protection measures Skills & Experience: Demonstrable experience in a cybersecurity or infrastructure-focused security role Practical, hands-on exposure to SIEM platforms and vulnerability management tools Strong understanding of endpoint detection and response technologies (EDR, XDR, MDR) Good working knowledge of common cyber threats, attack methods, and core ...

first line of defence: detect, analyse, and respond to real-time security incidents across razorblue and client networks Take the lead in vulnerability management from scanning and risk analysis to remediation coordination Run proactive security audits and phishing simulations to strengthen awareness and resilience Collaborate with infrastructure … apply. Full UK Driving License Entry-level security certifications (CompTIA Security+, CySA+, etc.) or working toward one Hands-on experience in security incident response, vulnerability assessments, and root cause analysis Skilled in producing incident reports, security metrics, and supporting awareness training Comfortable with internal security audits and refining SOPs ...

first line of defence: detect, analyse, and respond to real-time security incidents across razorblue and client networks Take the lead in vulnerability management from scanning and risk analysis to remediation coordination Run proactive security audits and phishing simulations to strengthen awareness and resilience Collaborate with infrastructure … apply. Full UK Driving License Entry-level security certifications (CompTIA Security+, CySA+, etc.) or working toward one Hands-on experience in security incident response, vulnerability assessments, and root cause analysis Skilled in producing incident reports, security metrics, and supporting training Comfortable with internal security audits and refining SOPs ...