51 to 75 of 104 Threat and Vulnerability Management Jobs in the UK

Hybrid Compensation: GBP 60,000 - GBP 65,000/year Description Hello. Welcome to Wanstor! At Wanstor, we've been delivering award-winning IT solutions for over 22 years, and we're proud to keep growing year after year. Today, our team is over 240 strong, filled with talented professionals passionate about technology. Wanstor stands at the forefront of the … industry with a full portfolio of high-quality services. From our award-winning managed services to our robust data and development capabilities, networking and infrastructure expertise, and unparalleled security solutions, Wanstor is renowned in the market for excellence. Our strong customer references provide a solid foundation for your success. If you're looking for a place where your skills can … thrive and grow, you'll feel right at home here! About the role We're looking for an experienced and driven Senior Cyber Security Consultant to join our growing security practice at Wanstor. In this pivotal role, you'll work closely with our Head of Security to shape and lead a talented team of Cyber Security Consultants, delivering a broad More ❯

JCB pages About the role: The Information Security team is responsible for ensuring that JCB has the correct level of security integrity to protect our systems, information, personal data and people from cyber-attacks and unauthorised access. You will work with the Information Security Team, IT colleagues, internal stakeholders and third parties to ensure that all JCB information and systems … are secure, fit for purpose and protected to an optimal level. You will play a crucial role as a security lead. You will be the sign-off for security assessments and new projects as well as business as usual in this varied role. This role gives the opportunity for exposure on a global scale. You will be responsible for driving … the security scrutiny, culture, awareness and adoption across the JCB organisation. What does this roleinvolve day to day? · Day-to-day running and monitoring of Information Security systems - analyse and interpret outputs to identify security weaknesses and recommend continuous improvements. · Be a key participant in or leader of large IT and business projects. · Respond to Security Incidents, reports and alerts More ❯

Policy Expert - Senior Security Engineer Are you ready to transform the insurance industry? Policy Expert is a forward-thinking business that loves to get things done. Leveraging proprietary technology and smart data, we offer reliable products and a wow customer experience. Having achieved rapid growth since being founded in 2011, we've won over 1.5 million customers in Home, Motor … and Pet insurance and have been ranked the UK's No.1-rated home insurer by Review Centre since 2013. Hear from our team about what it's like working at Policy Expert • About the DevSecOps team: At PolicyExpert, the DevSecOps team focuses on application, cloud, and cybersecurity to ensure security is integrated throughout the software development lifecycle. Our goal is … to empower tech teams to build and deploy secure applications and platforms by embedding security best practices, automating security checks, and fostering a culture of shared responsibility. Becoming part of the DevSecOps team means joining a high-impact, forward-thinking group dedicated to securing the business and its customers. Team members collaborate with development, platform, IT, and Compliance teams to More ❯

JCB pages About the role: The Information Security team is responsible for ensuring that JCB has the correct level of security integrity to protect our systems, information, personal data and people from cyber-attacks and unauthorised access. You will work with the Information Security Team, IT colleagues, internal stakeholders and third parties to ensure that all JCB information and systems … are secure, fit for purpose and protected to an optimal level. You will play a crucial role as a security lead. You will be the sign-off for security assessments and new projects as well as business as usual in this varied role. This role gives the opportunity for exposure on a global scale. You will be responsible for driving … the security scrutiny, culture, awareness and adoption across the JCB organisation. What does this role involve day to day? • Day-to-day running and monitoring of Information Security systems - analyse and interpret outputs to identify security weaknesses and recommend continuous improvements. • Be a key participant in or leader of large IT and business projects. • Respond to Security Incidents, reports and More ❯

Application Security Architect to join our innovative FinTech organisation. This role is critical in shaping the security posture of complex, cloud-native applications that power fast-growing financial services and digital payments platforms. As an Application Security Architect, you will work closely with software engineers, DevSecOps specialists, product owners, and compliance teams to ensure that secure design principles and automated … security controls are Embedded throughout the software development lifecycle (SDLC). You will take ownership of threat modeling, vulnerability management, and security automation efforts with a specific focus on cloud platforms, primarily Google Cloud Platform (GCP). You will be instrumental in building scalable, resilient security architectures that protect sensitive customer data, meet rigorous regulatory requirements, and enable … rapid innovation in a dynamic FinTech environment. What You'll Do Application Security Architecture & Strategy Lead the design and implementation of comprehensive application security frameworks that guide the secure development of cloud-native APIs, microservices, and web applications. Conduct detailed threat modeling workshops and architectural risk assessments, identifying vulnerabilities early and collaborating on risk mitigation strategies. Define and enforce secure More ❯

brand. As the consumer landscape shifts, we are leveraging our competitive advantages to strengthen our brand. A key growth strategy is to Double Down on the 3Ds (Delivery, Digital, and Drive Thru). McDonald's will accelerate technology innovation so that over 65 million customers daily experience a fast, easy service at our 25,000+ Drive Thrus, through McDelivery, dine … takeaway. McDonald's Global Technology is committed to powering tomorrow's feel-good moments. We are at the forefront of transformative technology, exploring new ways to serve our customers and spread happiness through AI, robotics, and emerging tech, digitizing the Golden Arches. Our global scale allows us to reshape all areas of our business, industry, and communities. We face complex … Senior Analyst to oversee daily operations within the Security Operations program, reporting to the Senior Manager of Security Operations. Responsibilities include managing security personnel, enforcing policies, promoting security awareness, and leading initiatives on Global Cyber Security (GCS) defensive measures and incident response. You will support daily security operations and incident response processes, responding to crises to mitigate cyber threats, employing More ❯

Analyst to support cybersecurity governance activities across multiple domains within our Security Operations Governance Program. This cross-functional role is ideal for someone passionate about data-driven decision-making and cybersecurity compliance. In this role, you will gather, analyze, and enrich data to produce governance scorecards and reports spanning key cybersecurity areas such as Data Loss Prevention (DLP), Key/… Cert/Encryption Management (KCEM), Software Development Lifecycle (SDLC), Cloud Security (CS), Cyber Incident Management (CIM), and Threat and Vulnerability Management (TVM). Your insights will inform senior leadership, regulatory forums, and operational decision-making. Key Responsibilities: Develop and maintain regular governance reporting across multiple cybersecurity disciplines Analyze data for compliance with internal security standards and … regulatory expectations Collaborate with internal teams and external partners to ensure data integrity and alignment What We're Looking For: Deep understanding of cybersecurity operations, particularly in CIM and TVM (incident detection, response, patching, and penetration testing) Strong analytical and data visualization skills Ability to drive cross-functional collaboration in a geographically distributed environment Proven organizational skills and ability to More ❯

Analyst to support cybersecurity governance activities across multiple domains within our Security Operations Governance Program. This cross-functional role is ideal for someone passionate about data-driven decision-making and cybersecurity compliance. In this role, you will gather, analyze, and enrich data to produce governance scorecards and reports spanning key cybersecurity areas such as Data Loss Prevention (DLP), Key/… Cert/Encryption Management (KCEM), Software Development Lifecycle (SDLC), Cloud Security (CS), Cyber Incident Management (CIM), and Threat and Vulnerability Management (TVM). Your insights will inform senior leadership, regulatory forums, and operational decision-making. Key Responsibilities: Develop and maintain regular governance reporting across multiple cybersecurity disciplines Analyze data for compliance with internal security standards and … regulatory expectations Collaborate with internal teams and external partners to ensure data integrity and alignment What We're Looking For: Deep understanding of cybersecurity operations, particularly in CIM and TVM (incident detection, response, patching, and penetration testing) Strong analytical and data visualization skills Ability to drive cross-functional collaboration in a geographically distributed environment Proven organizational skills and ability to More ❯

Do you want your voice heard and your actions to count? Discover your opportunity with Mitsubishi UFJ Financial Group (MUFG), one of the world’s leading financial groups. Across the globe, we’re 120,000 colleagues, striving to make a difference for every client, organization, and community we serve. We stand for our values, building long-term relationships, serving society … and fostering shared and sustainable growth for a better world. With a vision to be the world’s most trusted financial group, it’s part of our culture to put people first, listen to new and diverse ideas and collaborate toward greater innovation, speed and agility. This means investing in talent, technologies, and tools that empower you to own your … career. Join MUFG, where being inspired is expected and making a meaningful impact is rewarded. MUFG (Mitsubishi UFJ Financial Group) is one of the world's leading financial groups. Headquartered in Tokyo and with approximately 350 years of history, MUFG is a global network with around 2,300 offices in over 50 countries including the Americas, Europe, the Middle East More ❯

Analyst to support cybersecurity governance activities across multiple domains within our Security Operations Governance Program. This cross-functional role is ideal for someone passionate about data-driven decision-making and cybersecurity compliance. In this role, you will gather, analyze, and enrich data to produce governance scorecards and reports spanning key cybersecurity areas such as Data Loss Prevention (DLP), Key/… Cert/Encryption Management (KCEM), Software Development Lifecycle (SDLC), Cloud Security (CS), Cyber Incident Management (CIM), and Threat and Vulnerability Management (TVM). Your insights will inform senior leadership, regulatory forums, and operational decision-making. Key Responsibilities: Develop and maintain regular governance reporting across multiple cybersecurity disciplines Analyze data for compliance with internal security standards and … regulatory expectations Collaborate with internal teams and external partners to ensure data integrity and alignment What We’re Looking For: Deep understanding of cybersecurity operations, particularly in CIM and TVM (incident detection, response, patching, and penetration testing) Strong analytical and data visualization skills Ability to drive cross-functional collaboration in a geographically distributed environment Proven organizational skills and ability to More ❯

Analyst to support cybersecurity governance activities across multiple domains within our Security Operations Governance Program. This cross-functional role is ideal for someone passionate about data-driven decision-making and cybersecurity compliance. In this role, you will gather, analyze, and enrich data to produce governance scorecards and reports spanning key cybersecurity areas such as Data Loss Prevention (DLP), Key/… Cert/Encryption Management (KCEM), Software Development Lifecycle (SDLC), Cloud Security (CS), Cyber Incident Management (CIM), and Threat and Vulnerability Management (TVM). Your insights will inform senior leadership, regulatory forums, and operational decision-making. Key Responsibilities: Develop and maintain regular governance reporting across multiple cybersecurity disciplines Analyze data for compliance with internal security standards and … regulatory expectations Collaborate with internal teams and external partners to ensure data integrity and alignment What We’re Looking For: Deep understanding of cybersecurity operations, particularly in CIM and TVM (incident detection, response, patching, and penetration testing) Strong analytical and data visualization skills Ability to drive cross-functional collaboration in a geographically distributed environment Proven organizational skills and ability to More ❯

Analyst to support cybersecurity governance activities across multiple domains within our Security Operations Governance Program. This cross-functional role is ideal for someone passionate about data-driven decision-making and cybersecurity compliance. In this role, you will gather, analyze, and enrich data to produce governance scorecards and reports spanning key cybersecurity areas such as Data Loss Prevention (DLP), Key/… Cert/Encryption Management (KCEM), Software Development Lifecycle (SDLC), Cloud Security (CS), Cyber Incident Management (CIM), and Threat and Vulnerability Management (TVM). Your insights will inform senior leadership, regulatory forums, and operational decision-making. Key Responsibilities: Develop and maintain regular governance reporting across multiple cybersecurity disciplines Analyze data for compliance with internal security standards and … regulatory expectations Collaborate with internal teams and external partners to ensure data integrity and alignment What We’re Looking For: Deep understanding of cybersecurity operations, particularly in CIM and TVM (incident detection, response, patching, and penetration testing) Strong analytical and data visualization skills Ability to drive cross-functional collaboration in a geographically distributed environment Proven organizational skills and ability to More ❯

Analyst to support cybersecurity governance activities across multiple domains within our Security Operations Governance Program. This cross-functional role is ideal for someone passionate about data-driven decision-making and cybersecurity compliance. In this role, you will gather, analyze, and enrich data to produce governance scorecards and reports spanning key cybersecurity areas such as Data Loss Prevention (DLP), Key/… Cert/Encryption Management (KCEM), Software Development Lifecycle (SDLC), Cloud Security (CS), Cyber Incident Management (CIM), and Threat and Vulnerability Management (TVM). Your insights will inform senior leadership, regulatory forums, and operational decision-making. Key Responsibilities: Develop and maintain regular governance reporting across multiple cybersecurity disciplines Analyze data for compliance with internal security standards and … regulatory expectations Collaborate with internal teams and external partners to ensure data integrity and alignment What We’re Looking For: Deep understanding of cybersecurity operations, particularly in CIM and TVM (incident detection, response, patching, and penetration testing) Strong analytical and data visualization skills Ability to drive cross-functional collaboration in a geographically distributed environment Proven organizational skills and ability to More ❯

Job ID: Amazon Australia Company Pty Ltd Amazon Web Services (AWS) is the leading cloud service provider, providing virtualised infrastructure, storage, networking, messaging, and many other services to customers all over the world, including government customers. AWS runs a globally distributed environment, operating at massive levels of scale. Businesses, from start-ups to enterprises to large government customers, run their … operations and applications on AWS' highly secure infrastructure. AWS Security is looking for a highly talented and motivated Physical Security Analyst to work with our team, designing the secure facilities to maximize the effectiveness of the physical security program. The duties include extra-low voltage system design and engineering, working with the architectural and engineering teams to assure security best … practices are observed, drafting new systems into the design teams build plans, and coordinating with physical security leaders to understand the new build and security system designs, adhering to an approved products list. A successful candidate will be responsible for interpretation of Risk Assessments and Threat Analysis and Physical Security Standards to assure the proper security technologies are selected to More ❯

Kirsty Kelly Description As Head of Security Operations, you will be responsible for leading the day-to-day operational cybersecurity functions for the Group. You will ensure robust, efficient and globally coordinated security operations that protect the organisation's people, systems, and data. This includes direct ownership of security controls, security testing, vendor management, vulnerability and threat management, and incident response. You will work daily with the Group CISO to support consistent, high-assurance security practices across all regions, in-line with regional regulation and to support the management of cyber incidents. It is essential the individual who will fill this role has prior management experience, has supported building security teams previously and has knowledge … around their responsibility at this level to report incidents and security concerns within regulatory timelines and standards. About the role Within this role, you will have been supporting the Group CISO by managing the security team and programmes of work in your responsibility area. You will be responsible for the management of any global Cyber Incidents by supporting the More ❯

Security Automation Engineer (SOAR Engineer) A Global Organisation requires a Contract SOAR Engineer to improve the current SOC's efficiency by developing security automations, logging mechanisms, and SIEM detection rules - enhancing the SOC efficiency. Day Rate: £750 - £810pd IR35 Status: Inside Duration: 6 months initially Travel: 2 days a week in Hertfordshire This Security Automation Engineer will have the previous … following experience: Worked as a Security Engineer focussing on enhancing a global SOC's capability Building automated workflows, playbooks, and logging integrations to enhance the SOC's scalability, efficiency, and incident response readiness. Designed and fine-tune proactive and reactive detections in Sentinel - working closely with Threat Intelligence, IR, and Attack Surface Management teams. Partnered with SOC analysts to … identify repetitive tasks and implement automation to boost day-to-day operational efficiency in areas like threat hunting and vulnerability management. Continuously assessed and improved automation systems for reliability, performance, and scalability to meet evolving security and operational needs. Hands-on experience with security automation and cloud tools such as Sentinel, Splunk SOAR, Palo Alto XSOAR, and platforms like More ❯

Security Automation Engineer (SOAR Engineer) A Global Organisation requires a Contract SOAR Engineer to improve the current SOC's efficiency by developing security automations, logging mechanisms, and SIEM detection rules - enhancing the SOC efficiency. Day Rate: £750 - £810pd IR35 Status: Inside Duration: 6 months initially Travel: 2 days a week in Hertfordshire This Security Automation Engineer will have the previous … following experience: Worked as a Security Engineer focussing on enhancing a global SOC's capability Building automated workflows, playbooks, and logging integrations to enhance the SOC's scalability, efficiency, and incident response readiness. Designed and fine-tune proactive and reactive detections in Sentinel - working closely with Threat Intelligence, IR, and Attack Surface Management teams. Partnered with SOC analysts to … identify repetitive tasks and implement automation to boost day-to-day operational efficiency in areas like threat hunting and vulnerability management. Continuously assessed and improved automation systems for reliability, performance, and scalability to meet evolving security and operational needs. Hands-on experience with security automation and cloud tools such as Sentinel, Splunk SOAR, Palo Alto XSOAR, and platforms like More ❯

PAYE) Duration: 6 months Start Date: 21 April 2025 IR35 Status: PAYE A top-tier financial services organisation is seeking a Security Engineer with deep expertise in ForgeRock IAM and cloud security . You’ll be leading efforts to secure large-scale identity platforms, automate security workflows, and embed “security by design” into DevSecOps. Key Skills & Responsibilities: 5+ years with … ForgeRock IAM stack : PingGateway, PingAM, PingIDM, PingDS Advanced cloud security knowledge (AWS CLI, security controls, policies) Strong experience with PKI, HSMs, certificate lifecycle management Proficiency in penetration testing , threat modeling, and vulnerability management Automating security with GitLab CI/CD, Chef, AWS CLI Collaborating with CISO, engineering, and product teams on secure architecture Completion of ForgeRock 4xx … level training or certification Bonus: Experience with PKI-based self-sovereign identity Apply now to join a critical security initiative protecting millions of customers and shaping IAM best practices at enterprise scale. #J-18808-Ljbffr More ❯

PAYE) Duration: 6 months Start Date: 21 April 2025 IR35 Status: PAYE A top-tier financial services organisation is seeking a Security Engineer with deep expertise in ForgeRock IAM and cloud security . You’ll be leading efforts to secure large-scale identity platforms, automate security workflows, and embed “security by design” into DevSecOps. Key Skills & Responsibilities: 5+ years with … ForgeRock IAM stack : PingGateway, PingAM, PingIDM, PingDS Advanced cloud security knowledge (AWS CLI, security controls, policies) Strong experience with PKI, HSMs, certificate lifecycle management Proficiency in penetration testing , threat modeling, and vulnerability management Automating security with GitLab CI/CD, Chef, AWS CLI Collaborating with CISO, engineering, and product teams on secure architecture Completion of ForgeRock 4xx … level training or certification Bonus: Experience with PKI-based self-sovereign identity Apply now to join a critical security initiative protecting millions of customers and shaping IAM best practices at enterprise scale. #J-18808-Ljbffr More ❯

Automation Engineer, if you are then please read on! You’ll be the key technical lead across 3 main areas – 1) Log Onboarding, 2) Advanced KQL for Detection Engineering, and 3) Automation in Logic Apps. What You’ll Be Doing: Creating slick automations and SIEM detections to boost their incident response game. Leading the charge on integrating log sources into … Microsoft Sentinel. Designing and maintaining workflows and playbooks for everything from threat hunting to vulnerability management. Working closely with analysts to spot repetitive tasks and automate them like a pro. Collaborating with teams across threat intel, incident response, and attack surface management to fine-tune our detections. Key Skills Required: Sentinel expertise, delivering technical solutions within large, complex … businesses Security operations, automation best practices, and SIEM management. Advanced KQL skills Advanced Logic Apps experience A track record of contributing to large-scale security automation projects. Working Policy Hybrid working places are in place for this role, with 2 days onsite (Cambridge) required each week. Whilst no guarantees can be made, there may be some flexibility for an absolutely More ❯

Role: Cyber Information Assurance Manager Location: Any Accenture UK location Career Level: Level 7 - Manager Please Note: Any offer of employment is subject to satisfactory BPSS and SC security clearance which requires 5 years continuous UK address history (typically including no periods of 30 consecutive days or more spent outside of the UK) at the point of application. Note: The … above information relates to a specific client requirement. As a team: An exciting opportunity for Information Assurance specialists who are looking to drive governance, risk, and compliance capabilities forward and aid in the development of new and improved Cybersecurity services. As a senior Consultant, you will be recognised as a subject matter expert, responsible for strategic decision-making and expected … to lead complex assurance projects. In our team you will learn how to: Adapt quickly to new circumstances, requiring multiple assurance goals - including legislation, regulation, standards, and frameworks. Use your knowledge to identify real-world security risks and help stakeholders understand the best options available. Have a hands-on and consultative approach to assurance. Gain experience in operational assurance in More ❯

weeks ago Be among the first 25 applicants About The Role At Holland & Barrett, cybersecurity is at the heart of our digital transformation. As we continue to grow and innovate, securing our applications and protecting customer data is a top priority. We are looking for a About The Role At Holland & Barrett, cybersecurity is at the heart of our digital … transformation. As we continue to grow and innovate, securing our applications and protecting customer data is a top priority. We are looking for a Senior Application Security Engineer to lead our efforts in strengthening application security, mitigating risks, and ensuring best-in-class security practices. If you are passionate about cybersecurity and eager to make a real impact, we want … you on our team! Key Responsibilities Security Strategy: Help define and execute the Holland & Barrett application security strategy. Collaborate with both tech and non-tech teams to integrate security principles into the early stages of product design and development. Secure SLDC: Establish a secure Software Development Lifecycle (SDLC) that enables development teams to deliver high-quality applications quickly while implementing More ❯

About the Role: Join Our Team at Holland & Barrett! Are you passionate about cloud security and looking to make a significant impact? Holland & Barrett is seeking a Cloud Security Specialist to help us define and implement our cloud security strategy. If you're an experienced professional eager to work with cutting-edge technology and collaborate with diverse teams, we want … to hear from you! Key Responsibilities: Security Strategy: Help define and execute the Holland & Barrett cloud security strategy, partnering with platform and Site Reliability Engineering (SRE) teams to build robust infrastructure that supports our business. Perimeter Security: Establish platform perimeter security by implementing controls at ingress and egress points, including creating and maintaining an edge network with a Web Application … Firewall (WAF), Distributed Denial of Service (DDoS) protection, and a Content Delivery Network (CDN). Access Control: Establish an access control baseline focusing on the principle of least privilege and segregation of duties. Monitor and enforce these controls once roles and permissions are set. Security Controls: Design, implement, and maintain security controls to prevent, detect, and remediate insecure configurations, including More ❯

About the role: Join Our Team at Holland & Barrett! Are you passionate about cloud security and looking to make a significant impact? Holland & Barrett is seeking a Cloud Security Specialist to help us define and implement our cloud security strategy. If you're an experienced professional eager to work with cutting-edge technology and collaborate with diverse teams, we want … to hear from you! Key Responsibilities: Security Strategy: Help define and execute the Holland & Barrett cloud security strategy, partnering with platform and Site Reliability Engineering (SRE) teams to build robust infrastructure that supports our business. Perimeter Security: Establish platform perimeter security by implementing controls at ingress and egress points, including creating and maintaining an edge network with a Web Application … Firewall (WAF), Distributed Denial of Service (DDoS) protection, and a Content Delivery Network (CDN). Access Control: Establish an access control baseline focusing on the principle of least privilege and segregation of duties. Monitor and enforce these controls once roles and permissions are set. Security Controls: Design, implement, and maintain security controls to prevent, detect, and remediate insecure configurations, including More ❯

At IBM CIC, we deliver deep technical and industry expertise to a wide range of public and private sector clients in the UK. A career in IBM CIC means you'll have the opportunity to work with visionaries across multiple industries to improve the hybrid cloud and AI journey for the most innovative and valuable companies in the world. Your … ability to accelerate impact and make meaningful change for your clients is enabled by our strategic partner ecosystem and our robust technology platforms across the IBM portfolio. Curiosity and a constant quest for knowledge serve as the foundation to success in IBM CIC. In your role, you'll be encouraged to challenge the norm, investigate ideas outside of your role … and come up with creative solutions which impact a wide network of clients, whom may be at their site or one of our CIC or IBM locations. Our culture of evolution centres on long-term career growth and development opportunities in an environment that embraces your unique skills and experience. We offer: A multitude of training opportunities from classroom to More ❯