1 to 25 of 29 Permanent Threat and Vulnerability Management Jobs in England

is responsible for is the effective management of the Security Operations pillar within the IT Security, Compliance & Identity function. This includes Security technology and Security Operations Centre management. Key focus areas for this role, the ideal candidate will have experience in each of the below; Threat & Vulnerability Management … Security Operations Centre - 24/7 Outsourced Web & Content Filtering - ProofPoint, Zscaler, etc. Endpoint Security Infrastructure Security Accountabilities * Lead the Security Operations pillar, determining and delivering requirements, methods, and tools to provide value and reduce risk across proactive monitoring, incident response, threat management and vulnerability management (among … other activity) . * Lead the creation and maintenance of Security Operations policy, standards procedures, and documentation (including playbooks and guidance). * Manage the application and compliance of security operations procedures, reviewing actual and potential security breaches, and ensuring their investigation. * Lead the Security Operations team's response to incidents, recommending more »

Security Analyst Job Spec: For the role as Security Analyst you will be the subject matter expertise in relation to IT and Information Security controls and assurance, Cyber Security threat and vulnerability management and response, and supplier security due diligence and assurance. The role is a key part … of the Cyber/Information Security function. It plays a key role in the security service offered to keep the bank and our customer assets safe. As a Security Analyst you will lead a broad range of initiatives covering, but not limited to Security Operations, Security Assurance, Threat Detection, Incident … Management and Response in the objective to protect the organisation against internal and external cyber security threats. Responsibilities: Support with Vulnerability Management, Penetration Testing, Cloud Security Posture Management (CSPM) and Security control maturity processes. Supplier security due diligence and assurance. Create and deliver security awareness and more »

Job Overview: Join a dynamic and high-performing team as a Senior Analyst in Vulnerability Management & Security Testing. This role offers the unique opportunity to enhance a best-in-class Threat Defence capability and make significant contributions to our security operations. Ideal candidates will bring a strong background … in threat management, vulnerability assessment, and security testing, aiming to drive innovation and excellence in our security practices. Key Responsibilities: Conduct thorough vulnerability assessments across various platforms, including networks, systems, applications, and devices. Analyze risks associated with vulnerabilities, provide detailed reporting, and recommend actionable remediation strategies. Work … collaboratively with multiple stakeholders to prioritize vulnerabilities based on severity, impact, and exploitability. Manage end-to-end security testing processes, including penetration testing for identifying security weaknesses across IT, IoT, and OT environments. Coordinate and oversee remediation efforts to ensure timely and effective resolution of security vulnerabilities. Requirements: Extensive experience more »

Xpertise are working with a client in the Insurance industry who are searching for a talented Threat and Vulnerability Lead to join their team. Job Title: Threat and Vulnerability Lead Salary: £75,000 - £90,000 Location: 3 days a week in Central London office About the role: You … will work closely with the company's Information Technology and Security teams to assess the vulnerabilities and reduce the Cyber related risks. My client is looking for people with the following skillset: - Familiarity with vulnerability scanning and detection technologies. - Familiarity with MITRE ATT&CK framework - Excellent ability to present … information and results to the business - Pen testing experience Key responsibilities in this role will include: - This role will involve working closely with the Enterprise Security team - Great understanding of Threat and vulnerability management practises - Working closely with, and reporting into the BISO If keen please apply more »

Job Title: SOC Manager Company Overview: Our client, a leading organization in the financial services sector, is seeking a dedicated and experienced SOC Manager to join their team. This pivotal role will contribute to safeguarding the organization's digital assets and infrastructure from cybersecurity threats, ensuring a robust security posture … and effective incident response. Starting ASAP, paying up to £90,000 per annum. Role Overview: As the SOC Manager, you will be responsible for providing strategic leadership, technical expertise, and operational oversight to the Security Operations Center (SOC) team. Your role will involve managing both external and internal SOC personnel … overseeing security monitoring and analysis, incident response, threat intelligence, and vulnerability management activities. Key Responsibilities: Act as the subject matter expert on SOC matters for the organization. Manage the external SOC team and a small internal team, ensuring alignment with organizational security objectives. Review output from the external more »

Security. We are looking for an IT Infrastructure Security Engineer, to take ownership of identifying signs of compromise in cyber security services, IT systems, and related infrastructure. This will be a hands-on approach to vulnerability management reduction across all IT Systems and you will work with the … SOC to assist in the coordination and management of cyber incident response activities. The ideal candidate will have come from a IT Infrastructure background, have moved into Cyber Security, and will hold a current/relevant cyber security certification such as CISSP, CCSP or equivalent. Preferred Minimum Experience: Infrastructure … Beneficial: Azure exposure: 1 year Microsoft Certification in M365\Azure\Security Security Certificates Responsibilities: Identify signs of compromise in cyber security services, IT systems, and related infrastructure that have been missed by the SOC and raise as security incidents. Ensure the successful resolution and closure of cyber security incidents. Monitor more »

Manager to come on board to effectively manage the Security Operations pillar within the IT Security, Compliance & Identity function. This involves overseeing Security technology and Security Operations Centre management. Additionally, this position involves leveraging and applying understanding of business objectives and security needs to identify issues and establish priorities for … both internal and external delivery teams. Key skills and responsibilities, * Strong IT Security Management experience * Direct the Security Operations pillar, devising and implementing requirements, techniques, and resources to enhance value and mitigate risks across proactive monitoring, incident response, threat management, and vulnerability management, among other areas. … Spearhead the development and upkeep of Security Operations policies, standards, procedures, and documentation, including playbooks and guidelines. * Oversee the implementation and adherence to security operations procedures, assessing real and potential security breaches, and ensuring thorough investigation and resolution. * Familiarity with IT Service Frameworks, methodologies, and industry best practices such as more »

Manager to come on board to effectively manage the Security Operations pillar within the IT Security, Compliance & Identity function. This involves overseeing Security technology and Security Operations Centre management. Additionally, this position involves leveraging and applying understanding of business objectives and security needs to identify issues and establish priorities for … both internal and external delivery teams. Key skills and responsibilities, * Strong IT Security Management experience * Direct the Security Operations pillar, devising and implementing requirements, techniques, and resources to enhance value and mitigate risks across proactive monitoring, incident response, threat management, and vulnerability management, among other areas. … Spearhead the development and upkeep of Security Operations policies, standards, procedures, and documentation, including playbooks and guidelines. * Oversee the implementation and adherence to security operations procedures, assessing real and potential security breaches, and ensuring thorough investigation and resolution. * Familiarity with IT Service Frameworks, methodologies, and industry best practices such as more »

Threat & Vulnerability Manager London – Hybrid Salary: DoE Gresham Hunt is currently partnered with a leading financial services client in the search for an experienced Vulnerability Management professional for their London based team. This is an exciting opportunity to help drive the vulnerability management programme as … years experience across different technical disciplines within the Cybersecurity landscape. Experience using vulnerability scanning tools such as Nessus, Qualys, Rapid7, Wiz, OpenVAS, and penetration testing frameworks like Metasploit. Knowledge of security and risk frameworks, plus regulatory compliance frameworks e.g. NIST, Cobit, ISO 27001. Understanding of OWASP, MITRE, CVSS and … other standards/frameworks relevant to application security and vulnerability management. Experience with cloud technologies, preferably Azure and AWS. Familiarity with security methodologies: Attack and Defensive, Threat Hunting, etc. Scripting experience would be beneficial i.e. Python, Shell, Ansible, Jenkins, etc. Hold relevant industry certifications such as CISSP, CISM, CRISC more »

Who we are A Managed Security Service Provider (MSSP) with a wealth of experience gained in the Defence and Commercial sectors. We help organisations of all sizes build cyber-security capabilities and maintain compliance through practical Consulting and Managed Services. Our suite of services blends together best-in-breed technologies … to provide real time 24×7 monitoring, triage, remediation, threat assessment, vulnerability management, and Professional Services to give our Clients absolute peace of mind that their critical environments are protected. Our Security Operations Centre (SOC) delivers an array of services that provide our Customers with robust end-to … end cyber security protection, from monitoring services to threat relevant detection content, from leading threat intelligence to a Customer focus that enables us to become our Customers’ trusted partner. Role Description Talion is looking for an individual to take responsibility for the delivery of several of our Managed Security Service more »

OpticoreIT is a specialist IT services consultancy offering various opportunities to work within challenging and exciting environments across our client base varying from Large Enterprises to FTSE 100 spanning across multiple verticals including Finance, Media, Telecommunications, and much more. Currently, we are searching for a Security Operations Engineer to join … ll also be expected to come into the office three days a week. What you’ll be doing: System improvements Vulnerability management Threat management Threat analysis Reporting Process/Documentation writing, aligning to Azure benchmarking, aligning to CIS benchmarking Improvements to AppSec (including SAST, DAST, and CICD … configuration) Network security improvements Azure cloud platform security improvements Incident/investigation and resolution. What you’ll bring: Experience in Microsoft Azure and Defender Engineering. Application security experience including DAST & SAST. Microsoft threat analysis experience and EASM tools. Strong security testing experience including penetration testing. Strong security baseline knowledge In more »

Cyber Incident Response Manager Cyber Incident Respond Principal/Manager will own all cyber security events throughout the incident life-cycle, ensuring all reporting and escalation flows are performed in adherence to agreed documentation and SLA’s. You will work side by side with the Cyber Detect Team. Cyber Detect … manage all security alerts undertaking triage analysis and technical incident response. Incident readiness is the first step of the incident life-cycle, preparing for the next incident if of the upmost importance. As Respond Manager you will be expected to deliver a strong incident readiness program. This is based in … days a week, x3 remote. £70 – 90,000 + Financial Industry Employment Benefits + Bonuses Lead cross-functional post-incident process reviews to identify and implement continuous improvement initiatives. Partner with Legal, 2LoD, Major Incident Management, Threat Management, Vulnerability Management, Attack Surface Reduction, Software Engineering, Security more »

Job DescriptionInformation Security ManagerAre you passionate about safeguarding critical information assets in the fast-paced realm of engineering and technology? Do you thrive on the challenge of ensuring compliance within the intricate landscape of pharmaceutical research? If so, we have the perfect opportunity for you!Overview:As a Information Security … Manager, you will play a pivotal role in fortifying my clients defenses and upholding regulatory compliance across their operations in the US, UK, and Europe. You'll work independently to champion and enforce best practice inline with policies and frameworks. Responsibilities:Governance, Risk, and Compliance (GRC): Lead the development and … implementation of robust information security policies, procedures, and controls to ensure compliance with industry standards and regulations.Risk Management: Identify, assess, and mitigate information security risks across all facets of our business operations, with a focus on safeguarding sensitive data and intellectual property.Security Operations: Oversee the day-to-day management more »

Yeovil Position: Cyber Security Engineer Location: Yeovil, Somerset, United Kingdom Salary: £40,000 - £45,000 + Great Benefits A longstanding (20+ years) Digital Transformation and IT Service Provider has an exciting new opportunity for a Cyber Security Engineer to join them in Yeovil, securing the infrastructure of high-profile customers. … This business partners with leading tech vendors including Microsoft, Cisco, Juniper, and many more. They add to their customer base year upon year leading them to where they are today, one of the UK's best rated MSPs with an extensive list of clients in the local area and further … someone with a passion for all things Cyber Security, this is the opportunity for you. It offers full responsibility for ensuring customers' data, systems, and networks remain secure, and any possible threats eliminated. The position will see you accountable for implementing, configuring, and maintaining security tools and platforms to prevent more »

Working within the Cyber Security team you'll get the opportunity to further your skills across the implementation, maintenance, and configuration of security tools and platforms; creating policy changes, completing constant monitoring, identifying/resolving issues. and performing vulnerability testing. The role is very diverse covering all aspects of … Cyber Security and would offer an excellent opportunity to further your skills and expand your knowledge working across a variety of different security products and offer the chance to gain additional certifications and experience. You will gain further exposure to End to end threat & vulnerability management Operational support … of security technologies, products, and services Vulnerability scans and identifying vulnerabilities in systems Monitoring for unusual activities, implement defensive protocols, and report incidents Actively assist in evolving the toolkits to deal with potential threats. You will need to have Strong Knowledge of controls or tools such as SIEM, IDS more »

Cyber Security Engineer My client, a leading MSP based in Exeter, is currently looking for a Cyber Security Engineer to join their team and hit the ground running - delivering a suite of technical, operational, and risk management services. Collaborating closely with regional teams, you'll ensure compliance with industry … standards, policies, and procedures, while actively mitigating evolving threats, thus driving forward a diverse array of security enhancement initiatives. Salary: Up to £35,000 DOE Location: Exeter Key responsibilities: Monitor for attacks, intrusions and unusual, Unauthorised or illegal activity Creating and executing strategies to secure and protect networks and data … resources Planning computer and network security upgrades and testing hardware and software related to the upgrade Use advanced analytic tools to determine emerging threat patterns and vulnerabilities i.e. SentinelOne Managing technical problems related to applications and production equipment Addressing intrusions using expertise in computer forensics Engage in 'ethical hacking', for more »

Information Security Manager Are you passionate about safeguarding critical information assets in the fast-paced realm of engineering and technology? Do you thrive on the challenge of ensuring compliance within the intricate landscape of pharmaceutical research? If so, we have the perfect opportunity for you! Overview: As a Information Security … Manager, you will play a pivotal role in fortifying my clients defenses and upholding regulatory compliance across their operations in the US, UK, and Europe. You'll work independently to champion and enforce best practice inline with policies and frameworks. Responsibilities: Governance, Risk, and Compliance (GRC): Lead the development and … implementation of robust information security policies, procedures, and controls to ensure compliance with industry standards and regulations. Risk Management: Identify, assess, and mitigate information security risks across all facets of our business operations, with a focus on safeguarding sensitive data and intellectual property. Security Operations: Oversee the day-to more »

Are you a Cloud technologist? You could be progressing your career in a senior, hands-on role at a global FinTech with flexible working and a range of perks and benefits including continual professional development. As a Senior Cloud Engineer you will join a global team responsible for delivering Azure … cloud based platforms and services for use by engineering teams across the global business. The Azure estate consists of 74 active subscriptions, 3000 IaaS boxes, thousands of PaaS services with over 5000 containers running at one time. You'll help to improve cloud technologies including automation, IaC and security by … design. There's a broad range of responsibilities including handling requests related to system administration, operations governance, threat/vulnerability management and incident response, you'll collaborate with engineering teams to evaluate and identify optimal cloud solutions providing subject matter expertise across a range of Azure based services. more »

Hybrid)£100,000The role:• Provide guidance on advanced engineering methods to safeguard the network from security threats associated with various architectures, including web, mobile, and client/server.• Evaluate the security measures of third-party systems and applications to ensure compliance with bank policies and standards, including authentication, authorization, and … error handling.• Collaborate with teams across different regions to address technology and cybersecurity regulations not covered by the global framework.• Lead the implementation of security measures across different platforms by collaborating with technology infrastructure teams, demonstrating expertise and leadership in information and cybersecurity.• Investigate potential security incidents to determine their … severity and whether they constitute a breach.• Work with stakeholders to enhance the cyber program, including refining detection tools and improving access to data sources.• Serve as a point of contact for stakeholders during security incidents and investigations, including those outside the technology team.• Respond to regulatory inquiries regarding security more »

The role: • Provide guidance on advanced engineering methods to safeguard the network from security threats associated with various architectures, including web, mobile, and client/server. • Evaluate the security measures of third-party systems and applications to ensure compliance with bank policies and standards, including authentication, authorization, and error handling. … Collaborate with teams across different regions to address technology and cybersecurity regulations not covered by the global framework. • Lead the implementation of security measures across different platforms by collaborating with technology infrastructure teams, demonstrating expertise and leadership in information and cybersecurity. • Investigate potential security incidents to determine their severity and … whether they constitute a breach. • Work with stakeholders to enhance the cyber program, including refining detection tools and improving access to data sources. • Serve as a point of contact for stakeholders during security incidents and investigations, including those outside the technology team. • Respond to regulatory inquiries regarding security incidents and more »

Lead. This role will be responsible for establishing an Application Security function from the ground up, which will involve the implementation of tooling, processes and frameworks. As the first Application Security hire, you will work closely with Application, Platform, and Support teams, to embed a shift left culture within SDLC.Responsibilities … Lead on application threat and vulnerability management for prioritising and fixing vulnerabilities. Cultivate strong relationships with IT and Security stakeholders.Monitor application security tools and metrics against SLAs. Collaborate with the wider Security and development teams on deploying scanning tech.Partner with Security teams to assess and mitigate application vulnerabilities. … Coordinate with IT and Enterprise Security for deploying and maintaining scanning solutions.Requirements:Experience in building Application Security programmes.Previous hands-on experience as an AppSec Engineer, Software Security Engineer or Software Engineer will be advantageous. Experience in implementing SAST/DAST/SCA tooling. Knowledge of frameworks such as OWASP more »

Lead. This role will be responsible for establishing an Application Security function from the ground up, which will involve the implementation of tooling, processes and frameworks. As the first Application Security hire, you will work closely with Application, Platform, and Support teams, to embed a shift left culture within SDLC. … Responsibilities: Lead on application threat and vulnerability management for prioritising and fixing vulnerabilities. Cultivate strong relationships with IT and Security stakeholders. Monitor application security tools and metrics against SLAs. Collaborate with the wider Security and development teams on deploying scanning tech. Partner with Security teams to assess and … mitigate application vulnerabilities. Coordinate with IT and Enterprise Security for deploying and maintaining scanning solutions. Requirements: Experience in building Application Security programmes. Previous hands-on experience as an AppSec Engineer, Software Security Engineer or Software Engineer will be advantageous. Experience in implementing SAST/DAST/SCA tooling. Knowledge of more »

Senior Information Security Consultant Salary: £60,000 + 20% bonus Hybrid working model We are seeking an experienced and dedicated Senior Information Security Consultant to join our team. The ideal candidate will have a strong background in DevSecOps environments, with extensive experience in performing project risk assessments and technical risk … assessments. The candidate must also have a solid understanding of agile frameworks and how they intersect with information security. What will I be doing? Lead and execute comprehensive project risk assessments and technical information security risk assessments across various projects. Integrate security practices seamlessly into the DevSecOps pipeline, ensuring robust … and proactive security measures. Collaborate with development, operations, and product teams to embed security into agile development cycles. Provide expert guidance on security best practices, including secure coding, threat modelling, vulnerability management, and incident response. Develop and implement security policies, standards, and procedures tailored to agile and DevSecOps more »

be centred on ensuring security is delivered into a wide range of projects. There will be a focus on working closely with DevOps teams and embedding security throughout a software development life cycle. Responsibilities: Act as the main security point of contact & SME for required projects Manage security risk for … the whole project life cycle Perform security activities, including but not limited to, security design reviews, risk assessments, threat modelling, and vulnerability management and risk mitigation on internally & externally developed software Embedding security within DevOps (eg CI/CD pipelines), developing security requirements On-demand Security assessment of … various components like Web apps, Containers, Platforms etc Reviewing security assessment reports and create a remediation pipeline Experience in web application security assessments like SAST, DAST etc. Act as the Security subject matter expert within Agile/waterfall project planning, development, and execution Obtain and review all required artefacts as more »

Job title: Cyber Security Analyst Experience Level: 4 years + Salary: £45,000-£50,000 Location: London/Hybrid Skills: Cyber Security, Incident Response, Threat Intelligence, Vulnerability Management The role: My client are seeking a mid-level Cyber Security Analyst to join their team. The role will eventually … leadership responsibilities. The position focuses on the technical side of Cyber Security rather than the policy side. Core responsibilities: Security assessments Penetration tests Hardware and software compliance Working to maintain the Cyber Essentials and ISO27001 accreditations Providing Cyber related training to staff members Threat Intelligence and hunting Vulnerability Management more »