13 of 13 Remote/Hybrid Vulnerability Management Jobs in the North of England

function responsible for protecting the organisation's information assets, technology services, and users. This role oversees all security operation functions, incident response, threat detection, vulnerability management, and continuous improvement of the organisation's security posture. Working closely with Infrastructure, Cloud, Architecture, Governance, Compliance and Risk teams, the manager … operational procedures, playbooks, and response frameworks. Direct the full incident response lifecycle: detection, triage, containment, eradication, recovery, and post-incident review. Coordinate major incident management with IT Infrastructure, Cloud, and Business teams. Ensure lessons learned are captured and drive meaningful improvement. Oversee the vulnerability management programme, ensuring ...

automated controls. Partner with platform owners to remediate critical gaps and implement scalable solutions for artifact integrity, access control, and configuration security. Integrate vulnerability management, SBOM, provenance, and code-signing practices within engineering workflows. Roadmap Development & Execution Prioritise identified gaps based on business risk, regulatory impact, and operational … pipeline design, integration of security scanning tools, and automation of security controls. Strong knowledge and understanding of service mesh, cryptography, network security, application security, vulnerability management, and risk management. Demonstrable ability to conduct threat modelling, platform security assessments, and gap analysis. Experience building and implementing maturity models, frameworks ...

responding to security threats, while driving continuous improvement across our security operations capability. Youll play a key role in incident response, threat intelligence, vulnerability management and ensuring effective use of our security tools and processes to reduce risk across the technology estate. Key responsibilities Monitor, triage and respond … trends, risks and potential threats Act as an escalation point for information security queries from colleagues and service delivery teams Support and coordinate patch management activities, validating effectiveness through vulnerability scanning Oversee and operate key security technologies, including SIEM, email and web gateways, and endpoint protection tools Monitor ...

focus is firmly on technical delivery, working closely with infrastructure, networking and a managed SOC provider.Key areas of responsibility include: Engineering, configuration and ongoing management of a large firewall estate Working extensively with next-generation firewalls Firewall policies, VPN configuration and firewall lifecycle management Technical implementation and configuration … tooling, including: Microsoft Defender (endpoint, identity, cloud) DLP and Purview policy implementation Acting as the internal engineering counterpart to a managed SOC provider Supporting vulnerability management by consolidating findings, engaging technical teams and driving remediation activity Contributing to future security initiatives, including Privileged Access Management ...

controls Experience developing cyber resilience and disaster recovery Confidence to communicate effectively with all layers of the business, including the delivery of reports to management and training and best-practice guidance to all staff Drive efficiency through automation utilising PowerShell, with integration to Microsoft services such as Active Directory … Graph API Responsibilities: End to end management of phishing, through design, scheduling, reporting and training. Conduct staff training covering emerging threats, end-user best practices, phishing, password management and more. Vulnerability management life cycle including detection and remediation Maintain third party 24/7 SOC relationship ...

controls Experience developing cyber resilience and disaster recovery Confidence to communicate effectively with all layers of the business, including the delivery of reports to management and training and best-practice guidance to all staff Drive efficiency through automation utilising PowerShell, with integration to Microsoft services such as Active Directory … Graph API Responsibilities: End to end management of phishing, through design, scheduling, reporting and training. Conduct staff training covering emerging threats, end-user best practices, phishing, password management and more. Vulnerability management life cycle including detection and remediation Maintain third party 24/7 SOC relationship ...

controls Experience developing cyber resilience and disaster recovery Confidence to communicate effectively with all layers of the business, including the delivery of reports to management and training and best-practice guidance to all staff Drive efficiency through automation utilising PowerShell, with integration to Microsoft services such as Active Directory … Graph API Responsibilities: End to end management of phishing, through design, scheduling, reporting and training. Conduct staff training covering emerging threats, end-user best practices, phishing, password management and more. Vulnerability management life cycle including detection and remediation Maintain third party 24/7 SOC relationship ...

secure-by-design principles are embedded across all IT changes and lead on security input at the Change Advisory Board. Work closely with Senior Management Team IT & Change colleagues to prioritise security improvements and reduce organisational risk. Ensure security-related changes and risks are communicated clearly and promptly … security. Experience producing and maintaining security documentation (standards, procedures, runbooks). Experience supporting Cyber Essentials, ISO27001, or similar frameworks, including audit readiness. Familiarity with vulnerability management tools and workflows. Experience managing email security, web security, WAFs, Azure tenants, firewalls, and SaaS platforms from a security perspective. What ...

first line of defence: detect, analyse, and respond to real-time security incidents across razorblue and client networks Take the lead in vulnerability management from scanning and risk analysis to remediation coordination Run proactive security audits and phishing simulations to strengthen awareness and resilience Collaborate with infrastructure … apply. Full UK Driving License Entry-level security certifications (CompTIA Security+, CySA+, etc.) or working toward one Hands-on experience in security incident response, vulnerability assessments, and root cause analysis Skilled in producing incident reports, security metrics, and supporting awareness training Comfortable with internal security audits and refining SOPs ...

first line of defence: detect, analyse, and respond to real-time security incidents across razorblue and client networks Take the lead in vulnerability management from scanning and risk analysis to remediation coordination Run proactive security audits and phishing simulations to strengthen awareness and resilience Collaborate with infrastructure … apply. Full UK Driving License Entry-level security certifications (CompTIA Security+, CySA+, etc.) or working toward one Hands-on experience in security incident response, vulnerability assessments, and root cause analysis Skilled in producing incident reports, security metrics, and supporting training Comfortable with internal security audits and refining SOPs ...

regulated environment Proven leadership experience across Technology, Infrastructure, Architecture, SRE or service operations Practical experience in Operational Resilience, Service Resilience, BC/DR, Incident Management, Scenario Testing or Technology Risk Strong understanding of complex enterprise estates with multiple platforms, suppliers and dependencies Excellent stakeholder management and ability … leadership audiences Strong communication skills with the ability to simplify complex technical resilience topics Broader Programme Opportunities Additional hiring across Scenario Testing, Proactive Resilience, Vulnerability Management, Service Mapping, AI/Architecture, Data & Reporting, PMO/Governance and Continuous Improvement. Contract Details Yorkshire Hybrid – initially 2–3 days onsite ...

Group-wide cyber security risk register, including conducting risk assessments, threat modelling, and defining mitigation strategies. Take the lead on security incident management, ensuring timely response, clear stakeholder communication, and ongoing improvement of processes. Ensure adherence to relevant regulations and industry standards, including ISO 27001, NIST, GDPR … organisation through awareness initiatives, training programmes, and targeted education efforts. Requirements: Strong technical understanding across various security toolings, IAM, DLP, SIEM, EDR, and vulnerability management. Deep understanding of compliance frameworks including, ISO27001, NIST, GDPR, and industry best practice Collaborative leadership style with ability to influence and challenge at exec ...

client-wide cyber security risk register, including conducting risk assessments, threat modelling, and defining mitigation strategies. Take the lead on security incident management, ensuring timely response, clear stakeholder communication, and ongoing improvement of processes. Ensure adherence to relevant regulations and industry standards, including ISO 27001, NIST, GDPR … organisation through awareness initiatives, training programmes, and targeted education efforts. Requirements: Strong technical understanding across various security toolings, IAM, DLP, SIEM, EDR, and vulnerability management. Deep understanding of compliance frameworks including, ISO27001, NIST, GDPR, and industry best practice Collaborative leadership style with ability to influence and challenge at exec ...