251 to 275 of 278 Vulnerability Management Jobs in the UK

CRI 2.0. Exposure to regulatory environments including NIS2 and GDPR. Relevant certifications (e.g., CISSP, CISM, CISA, MSc in Cyber Security). Consulting Skills: Strong client-facing communication and stakeholder management skills. Experience leading or contributing to the delivery of large transformation programmes. Project and team management (Agile or Waterfall). Analytical and lateral problem-solving mindset. Bonus if … you have: Security clearance or the ability to obtain it. Hands-on experience across GRC, cyber threat management, or vulnerability management. If you’re ready to work on some of the most pressing and complex cyber challenges facing organisations today and want to do it in an environment that values innovation, curiosity, and diversity, we’d love to More ❯

every aspect. Team members are encouraged to challenge established thinking and share ideas to foster an environment of continuous improvement and shared success. What you will be doing: Infrastructure Management: Create, execute, and maintain cloud and on-premises infrastructure to support mission-critical applications, such as race telemetry and real-time analytics systems. CI/CD Pipelines: Build and … pipelines for rapid deployment and software updates. Monitoring & Alerting: Utilize advanced monitoring tools for proactive system health checks and automated incident alerts. Site Reliability: Improve system reliability through incident management, root cause analysis, and capacity planning. Security & Compliance: Follow security best practices, including access control, vulnerability management, and adherence to F1 technical regulations. Collaboration & Communication: Work with … cross-functional teams, including software developers, data engineers, and race strategists, to facilitate seamless application deployment and integration. Automation & Optimization: Automate infrastructure management and operations to enhance scalability and performance. Disaster Recovery: Develop and test disaster recovery and business continuity plans to ensure zero downtime during peak race events. More ❯

for someone who enjoys hands-on engineering, improving SOC effectiveness, and shaping threat detection capabilities at scale. What you'll be doing Deploying and configuring security tools including SIEM, vulnerability scanning and endpoint monitoring Developing use cases, alerts, and dashboards to support active threat detection Writing and maintaining SOC playbooks and triage workflows Performing 2nd line security monitoring, incident … have: Familiarity with MOD policy (e.g. JSP 440, JSP 604) and assurance practices Experience with CI/CD tools, Kubernetes and modern DevSecOps approaches Knowledge of Tenable/Nessus, vulnerability management and SOC operations Exposure to working within a defence, security or mission-critical environment Looking for a role where your expertise has real-world impact in a More ❯

In-depth knowledge and hands-on experience with SAST, DAST and API security testing Solid understanding of AWS and security configurations. Experience in securing Containerised environments Strong knowledge of vulnerability management tools and methodologies. Experience implementing automated deployments DevSecOps Engineer More ❯

enhancing Infrastructure-as-Code solutions (Terraform preferred) Leading DevOps best practices, including CI/CD (Jenkins, Bitbucket) and containerisation (Docker) Championing security standards across infrastructure – IAM policies, encryption, backups, vulnerability management Supporting engineering teams in deploying robust pipelines and container-based services Mentoring others and acting as a go-to technical escalation point within a close-knit team More ❯

continuity and disaster recovery plans related to cybersecurity. Act as the primary contact for cybersecurity vendors, regulators, auditors, and third-party assessments. About You: Proven track record in cybersecurity management, including threat detection, incident response, and vulnerability management. Strong knowledge of security frameworks (ISO 27001, NIST, CIS Controls) and regulatory compliance requirements (GDPR, NIS2). Hands-on expertise More ❯

responsible for protecting enterprise systems and data. This role offers hands-on involvement with a wide range of technologies-from endpoint detection and SIEM platforms to firewalls, MFA, and vulnerability management-providing a well-rounded foundation in enterprise security operations. You'll gain exposure to advanced security practices, assist in running and responding to threat detection systems, and … contribute to projects that strengthen security across the organisation. Key Responsibilities Monitor and respond to security alerts and incidents (EDR, SIEM, Identity Protection, SOAR). Assist in vulnerability scanning and remediation activities. Help manage systems such as email and web security gateways, VPNs, MFA, SSO, and mobile device security. Support the maintenance of security certificates, PAM systems, and conditional … platforms in a corporate IT environment. Experience with some of the following: EDR platforms (e.g., CrowdStrike) Email or web security gateways (e.g., Mimecast) MFA/SSO (e.g., Duo, Okta) Vulnerability scanners (e.g., Rapid7, Tenable, Nessus) InTune and Conditional Access Exposure to: Imperva WAF KnowBe4 Certificate management tools Kali Linux toolset and penetration testing basics Qualifications: Working towards or More ❯

CSF, OWASP SAMM), and compliance frameworks (SOC 2, ISO 27001, GDPR). Secure SDLC & DevSecOps - Build and maintain guardrails for static/dynamic analysis, container and IaC scanning, SBOM management, and supply-chain security; automate enforcement through CI/CD pipelines. Cloud & Infrastructure Security - Design and implement robust controls for AWS (primary) and Azure/GCP (secondary): IAM, network … segmentation, KMS, secrets management, WAF, EDR, and zero-trust patterns. Identity & Access Management (IAM) - Own enterprise IAM strategy, including RBAC, least-privilege provisioning, SSO, federation (OIDC/SAML), and privileged-access workflows. Monitoring, Detection & Response - Define audit logging, metrics, and telemetry requirements; integrate with SIEM/SOAR to deliver actionable alerts and playbooks for engineering-led incident response. … environments Strong awareness of compliance standards and the requirements on software teams, especially for ISO27001 and SOC2. FedRAMP experience advantageous. Demonstrated experience performing threat modelling, penetration test scoping, and vulnerability management. Deep understanding of IAM concepts, encryption/key-management, and secure network design. Excellent communication skills with ability to translate technical risk to non-technical stakeholders. Preferred More ❯

responsible for driving the technical direction, team growth, and execution of software initiatives that support our business goals. The ideal candidate combines deep technical expertise with strong leadership, project management, and cross-functional collaboration skills. We are ideally looking for someone who can primarily be office based, with flexibility for home working when required. Key Responsibilities Lead and mentor … and resource plans. Serve as the technical voice in executive discussions and strategic planning. Ensure all systems and software meet internal standards and external compliance requirements. Oversee incident response, vulnerability management, and disaster recovery plans. As a visionary and strategic technology leader, the Director of Software Engineering is responsible for shaping and executing the software development strategy that More ❯

environment Huge opportunity for learning and growth, clear progression plan 2-week industry leading role-specific training About the Client: Our client is a high-growth cybersecurity company, providing vulnerability management solutions to over 2,500 customers globally . With cyberattacks increasing every year, they help businesses to effortlessly solve their cybersecurity problems, making it easier to protect … About you: A strong “customer first” attitude, with a friendly and service-oriented approach. Strong communicator, with a desire to build long-term customer relationships. Strong organisational and time-management skills. Flexibility to adapt to changing priorities and deadlines. Strong interpersonal skills and the ability to collaborate effectively. Ability to prioritise and manage workloads effectively to meet KPIs. At More ❯

environment Huge opportunity for learning and growth, clear progression plan 2-week industry leading role-specific training About the Client: Our client is a high-growth cybersecurity company, providing vulnerability management solutions to over 2,500 customers globally . With cyberattacks increasing every year, they help businesses to effortlessly solve their cybersecurity problems, making it easier to protect … About you: A strong “customer first” attitude, with a friendly and service-oriented approach. Strong communicator, with a desire to build long-term customer relationships. Strong organisational and time-management skills. Flexibility to adapt to changing priorities and deadlines. Strong interpersonal skills and the ability to collaborate effectively. Ability to prioritise and manage workloads effectively to meet KPIs. At More ❯

platform with appropriate risk assessments to highlight any potential risk areas to the business using technical acumen and knowledge relevant to the vendor Support the review of our internal vulnerability management lifecycle by monitoring the tools and ensuring KPI's are reported and met Be a trusted advisor to Compliance's customers, answering questions that come through the More ❯

Netskope, Zscaler, CrowdStrike. We would also love to receive applications from people with skills solutioning SIEM, SOAR, or Managed Security Services (experience in DDoS, WAF, IDAM, EDR, MDM or Vulnerability Management is a plus). We are also interested to hear from candidates with operational expertise in these areas, who are looking to take their first step into More ❯

within regulated sectors such as Defence, Aerospace, or Industrial Engineering. Strong understanding of enterprise security frameworks, secure system design, and risk management. Experience with cloud security, identity and access management, and secure integration patterns. Familiarity with cybersecurity tools and platforms including SIEM, endpoint protection, IAM, and vulnerability management. Excellent communication and stakeholder engagement skills. UK citizenship and eligibility More ❯

Your Profile: Experience: 2-3 years of experience in cybersecurity or related IT fields. Familiarity with network security, cloud infrastructure, SaaS tools, and identity management. Exposure to risk and vulnerability management. Strong communication skills in English - verbal and written. Analytical mindset and structured problem-solving approach. Comfortable working in a team and eager to grow professionally. Technical Skills: Networking … Systems: Basic knowledge of hardening Windows, Linux, and Unix environments. Security Tools: Familiarity with firewalls, antivirus, and IDS/IPS systems. Scripting: Basic understanding of Python, Bash, or PowerShell. Vulnerability Assessment: Experience using tools like Nmap, Nessus, or OpenVAS. Incident Response: Foundational knowledge in managing and responding to security incidents. Security Frameworks: Awareness of common frameworks such as MITRE More ❯

of writing and reviewing code, with a strong interest in security, you will facilitate and manage security testing workflows in the SDLC with code and runtime security scanners and vulnerability testing tools, whilst enabling cloud security governance (AWS, GCP) with security monitoring, cloud security posture management, and vulnerability management. This role sits in the Security Architecture and More ❯

building out something exciting, with a fantastic long term career path, then this is the role for you! Within this role you will: Lead and evolve the cybersecurity risk management framework, ensuring effective identification, assessment, and remediation of risks. Conduct detailed risk and control assessments across business units, projects, vendors, and IT systems, aligning with standards like ISO … NIST CSF, and CIS Controls. Manage and enhance Third-Party Risk Management, including cybersecurity assessments of external partners and suppliers. Collaborate with stakeholders to develop and track cyber risk treatment plans, implement corrective actions, and report on key risk indicators and control effectiveness. Drive continuous improvement of cybersecurity policies and practices, while fostering strong relationships to embed a risk … and PCI. Strong technical and analytical skills, with the ability to assess risks, identify gaps, and propose mitigation strategies across IT systems and third parties. Excellent communication and stakeholder management, including experience presenting risk insights to senior leadership and working across technical and business teams. Proven experience in cybersecurity disciplines, ideally 5-7 years in roles covering risk management More ❯

building out something exciting, with a fantastic long term career path, then this is the role for you! Within this role you will: Lead and evolve the cybersecurity risk management framework, ensuring effective identification, assessment, and remediation of risks. Conduct detailed risk and control assessments across business units, projects, vendors, and IT systems, aligning with standards like ISO … NIST CSF, and CIS Controls. Manage and enhance Third-Party Risk Management, including cybersecurity assessments of external partners and suppliers. Collaborate with stakeholders to develop and track cyber risk treatment plans, implement corrective actions, and report on key risk indicators and control effectiveness. Drive continuous improvement of cybersecurity policies and practices, while fostering strong relationships to embed a risk … and PCI. Strong technical and analytical skills, with the ability to assess risks, identify gaps, and propose mitigation strategies across IT systems and third parties. Excellent communication and stakeholder management, including experience presenting risk insights to senior leadership and working across technical and business teams. Proven experience in cybersecurity disciplines, ideally 5-7 years in roles covering risk management More ❯

with Secure by Design. Strategic Alignment. Ensuring that security architectures align with the client's overall business strategy and technology goals. Translate business needs into security requirements. Threat and Vulnerability Management. Identifying, assessing, and communicating current and emerging security threats and vulnerabilities. Security Solution Design and Evaluation. Researching, evaluating, and recommending security technologies, tools (e.g., firewalls, VPNs, IDS/… Procedure Development: Defining, implementing, and maintaining corporate security policies, standards, and procedures to ensure compliance with industry regulations, legal requirements (e.g., GDPR, HIPAA), and best practices. Incident Response and Management: Playing a key role in developing incident response plans and coordinating efforts to detect, analyse, and respond to security incidents and breaches. Stakeholder Communication and Collaboration: Effectively communicating complex More ❯

more about this opportunity, feel free to reach out and apply today! Responsibilities: Monitor and analyse security events within the SOC, ensuring timely detection and response. Perform threat analysis, vulnerability assessments, and implement mitigation strategies. Develop and refine incident response playbooks and procedures. Conduct root cause analysis (RCA) for high-priority incidents to prevent recurrence. Collaborate with internal teams … of two years' experience in a SOC or managed security environment. Strong knowledge of network security (firewalls, IDS/IPS, VPNs). Proficiency in incident response, threat analysis, and vulnerability management. Experience working with SIEM tools for monitoring and event analysis. Understanding of malware analysis, forensic investigations, and endpoint security. Strong analytical and problem-solving skills. Excellent communication skills More ❯

and maintenance of public cloud infrastructure. Monitoring performance and implementing optimisations to enhance user experience. Ensuring system availability and reliability through proactive monitoring, backups, and disaster recovery planning. Incident management and root cause analysis with preventive measures. Implementation of security best practices and compliance monitoring. Design and execution of disaster recovery and business continuity plans. Automation and orchestration using … new partner firms, including IT due diligence and remediation planning. Provision of quality 3rd line technical support and escalation handling. Accurate issue tracking and resolution documentation. Time and workload management across multiple incidents. Occasional travel and out-of-hours work for deployments and integrations. Execution of live changes via approved change management procedures. Mentoring and guidance to users … and colleagues. Relationship management with third-party service providers. Ownership of incidents and requests, escalating when necessary. Job Requirements: Exceptional customer service skills. Minimum 3 years’ experience in a similar role. Full UK driving licence with business insurance. Strong workload management and prioritisation skills. Logical and thorough fault-finding and troubleshooting abilities. ITIL awareness. Technical Skills Microsoft Windows More ❯

writing and reviewing code, along with a strong interest in security, you will facilitate and manage security testing workflows within the SDLC using code and runtime security scanners and vulnerability testing tools. You will also enable cloud security governance for AWS and GCP through security monitoring, posture management, and vulnerability management. Team and Environment: This role is More ❯

detections to improve efficiency, scalability, and incident response capabilities. Design, implement, and maintain automated workflows and playbooks to streamline operations, including incident response, threat hunting, cyber threat intelligence, and vulnerability management. Collaborate with analysts to identify repetitive tasks and automate them to improve operational efficiency. Work with Threat Intelligence, Incident Response, and Attack Surface Management teams to build More ❯

to improve the efficiency, scalability, and incident response capabilities. Design, implement, and maintain automated workflows and playbooks to streamline operations, including incident response, threat hunting, cyber threat intelligence and vulnerability management. Collaborate with analysts to identify repetitive tasks and automate them to improve operational efficiency. Collaborate with Threat Intelligence, Incident Response, and Attack Surface Management to build and More ❯

and maintain RBAC, Policies, Blueprints (or equivalent governance approaches), tagging strategies, and cost control measures. Security First: Embed secure design principles into everything you build; support identity and access management, key vault integration, and vulnerability management. Collaboration & Enablement: Work with delivery teams to support their use of the platform, coach on best practices, and help define golden paths … with Azure cloud environments in production. Strong experience with: Terraform CI/CD tooling (GitLab, Azure DevOps Pipelines) Azure Networking (VNETs, Private Endpoints, NSGs, Route Tables, etc.) Identity & Access Management (Azure AD, Managed Identities, RBAC) Azure Monitor, Log Analytics, Defender for Cloud Experience building and consuming shared infrastructure as code modules in a GitOps-style setup. Ability to troubleshoot More ❯