25 of 25 Vulnerability Assessment Jobs in the Midlands

more at experianplc.com. Internal Grade E Job Description As a Cyber Defence Analyst, you will join the Cyber Fusion Center, performing in-depth analysis, assessment, and response to security threats by following documented policies to meet Service Level Goals. The team provides global 24x7 security operations and monitoring … prioritizing cybersecurity alerts, including being the dedicated contact for potential security incidents reported by users (e.g., Experian employees). Depending on the results of assessment, this team is then responsible for investigating, containing, eradicating, and recovering from events falling in its scope or escalating higher-risk events to dedicated ...

Responsibilities Continually develop and drive a comprehensive cybersecurity strategy aligned with best practice frameworks and industry standards Take the lead on risk assessments and vulnerability reviews, implementing robust controls to mitigate threats. Manage incident response processes, including preparation, detection, resolution, and post-incident analysis. Mentor and develop the cybersecurity … departments. What We're Looking For Security leadership experience in a complex organisation, ideally with team management responsibilities. Technical security background: SIEM, EDR and vulnerability management tools Strong background in vulnerability and risk management, including scanning, assessing, and mitigating risks. Hands-on experience securing Microsoft environments, covering cloud ...

/ICS environments Developing and implementing attack scenarios and detection use cases using frameworks such as MITRE ATT&CK for ICS Performing vulnerability assessments, threat modelling and attack path analysis to identify and address security weaknesses Supporting risk assessments and compliance against standards such as IEC 62443, NIST SP800 … Engineering, Computer Science or a related discipline, plus around 3-5 years' practical cyber security experience Hands-on experience in offensive security (penetration testing, vulnerability assessment, adversary simulation) Working knowledge of ICS/OT environments (e.g. SCADA, PLCs, RTUs) and securing IT/OT interfaces At least ...

industry-standard methodologies. Execute wireless security assessments, social engineering engagements, and red team exercises. Conduct application security testing, including API and web service assessments. Vulnerability Assessment and Analysis Identify, validate, and prioritize security vulnerabilities discovered during testing. Analyze attack paths and assess the business impact of identified vulnerabilities. … penetration testing or offensive security roles. Preferred Qualifications: Experience conducting red team exercises and adversarial attack simulations. Familiarity with threat modeling and risk assessment methodologies. Background in information security or IT security operations. Success Metrics (6–12 Months) Complete a minimum of 10 penetration testing engagements per quarter. Achieve ...

industry-standard methodologies. Execute wireless security assessments, social engineering engagements, and red team exercises. Conduct application security testing, including API and web service assessments. Vulnerability Assessment and Analysis Identify, validate, and prioritize security vulnerabilities discovered during testing. Analyze attack paths and assess the business impact of identified vulnerabilities. … penetration testing or offensive security roles. Preferred Qualifications: Experience conducting red team exercises and adversarial attack simulations. Familiarity with threat modeling and risk assessment methodologies. Background in information security or IT security operations. Success Metrics (6–12 Months) Complete a minimum of 10 penetration testing engagements per quarter. Achieve ...

industry-standard methodologies. Execute wireless security assessments, social engineering engagements, and red team exercises. Conduct application security testing, including API and web service assessments. Vulnerability Assessment and Analysis Identify, validate, and prioritize security vulnerabilities discovered during testing. Analyze attack paths and assess the business impact of identified vulnerabilities. … penetration testing or offensive security roles. Preferred Qualifications: Experience conducting red team exercises and adversarial attack simulations. Familiarity with threat modeling and risk assessment methodologies. Background in information security or IT security operations. Success Metrics (6–12 Months) Complete a minimum of 10 penetration testing engagements per quarter. Achieve ...

industry-standard methodologies. Execute wireless security assessments, social engineering engagements, and red team exercises. Conduct application security testing, including API and web service assessments. Vulnerability Assessment and Analysis Identify, validate, and prioritize security vulnerabilities discovered during testing. Analyze attack paths and assess the business impact of identified vulnerabilities. … penetration testing or offensive security roles. Preferred Qualifications: Experience conducting red team exercises and adversarial attack simulations. Familiarity with threat modeling and risk assessment methodologies. Background in information security or IT security operations. Success Metrics (6–12 Months) Complete a minimum of 10 penetration testing engagements per quarter. Achieve ...

industry-standard methodologies. Execute wireless security assessments, social engineering engagements, and red team exercises. Conduct application security testing, including API and web service assessments. Vulnerability Assessment and Analysis Identify, validate, and prioritize security vulnerabilities discovered during testing. Analyze attack paths and assess the business impact of identified vulnerabilities. … penetration testing or offensive security roles. Preferred Qualifications: Experience conducting red team exercises and adversarial attack simulations. Familiarity with threat modeling and risk assessment methodologies. Background in information security or IT security operations. Success Metrics (6–12 Months) Complete a minimum of 10 penetration testing engagements per quarter. Achieve ...

industry-standard methodologies. Execute wireless security assessments, social engineering engagements, and red team exercises. Conduct application security testing, including API and web service assessments. Vulnerability Assessment and Analysis Identify, validate, and prioritize security vulnerabilities discovered during testing. Analyze attack paths and assess the business impact of identified vulnerabilities. … penetration testing or offensive security roles. Preferred Qualifications: Experience conducting red team exercises and adversarial attack simulations. Familiarity with threat modeling and risk assessment methodologies. Background in information security or IT security operations. Success Metrics (6–12 Months) Complete a minimum of 10 penetration testing engagements per quarter. Achieve ...

industry-standard methodologies. Execute wireless security assessments, social engineering engagements, and red team exercises. Conduct application security testing, including API and web service assessments. Vulnerability Assessment and Analysis Identify, validate, and prioritize security vulnerabilities discovered during testing. Analyze attack paths and assess the business impact of identified vulnerabilities. … penetration testing or offensive security roles. Preferred Qualifications: Experience conducting red team exercises and adversarial attack simulations. Familiarity with threat modeling and risk assessment methodologies. Background in information security or IT security operations. Success Metrics (6–12 Months) Complete a minimum of 10 penetration testing engagements per quarter. Achieve ...

mobile applications (iOS/Android), and Cloud environments (Azure, AWS, GCP). Wireless networks and remote working setups. Security configuration and segmentation reviews. Perform vulnerability assessments and risk-based testing using industry best practices. Validate findings, reproduce issues, and advise on realistic remediation. Support red team/adversarial simulation ...

application security testing for a range of clients, helping identify vulnerabilities and strengthen defences. Key Responsibilities Deliver high-quality penetration tests and vulnerability assessments. Produce clear, actionable reports and remediation guidance. Support CHECK-accredited engagements and collaborate with senior testers. Stay current with new exploits, tools, and testing techniques. ...

application security testing for a range of clients, helping identify vulnerabilities and strengthen defences. Key Responsibilities Deliver high-quality penetration tests and vulnerability assessments. Produce clear, actionable reports and remediation guidance. Support CHECK-accredited engagements and collaborate with senior testers. Stay current with new exploits, tools, and testing techniques. ...

application security testing for a range of clients, helping identify vulnerabilities and strengthen defences. Key Responsibilities Deliver high-quality penetration tests and vulnerability assessments. Produce clear, actionable reports and remediation guidance. Support CHECK-accredited engagements and collaborate with senior testers. Stay current with new exploits, tools, and testing techniques. ...

application security testing for a range of clients, helping identify vulnerabilities and strengthen defences. Key Responsibilities Deliver high-quality penetration tests and vulnerability assessments. Produce clear, actionable reports and remediation guidance. Support CHECK-accredited engagements and collaborate with senior testers. Stay current with new exploits, tools, and testing techniques. ...

application security testing for a range of clients, helping identify vulnerabilities and strengthen defences. Key Responsibilities Deliver high-quality penetration tests and vulnerability assessments. Produce clear, actionable reports and remediation guidance. Support CHECK-accredited engagements and collaborate with senior testers. Stay current with new exploits, tools, and testing techniques. ...

application security testing for a range of clients, helping identify vulnerabilities and strengthen defences. Key Responsibilities Deliver high-quality penetration tests and vulnerability assessments. Produce clear, actionable reports and remediation guidance. Support CHECK-accredited engagements and collaborate with senior testers. Stay current with new exploits, tools, and testing techniques. ...

public cloud (Azure, AWS, GCP), cloud native platforms (Docker, Kubernetes, etc.), and Software as a Service (SaaS) solutions. Formulate HMG Information Assurance Risk Assessment and Risk Treatment Plans Establish security requirements for cloud-based solutions by evaluating business strategies and requirements, implementing security standards such as ISO 27000 series … Working within environments utilising DevOps, DevSecOps, SRE, CI/CD, Infrastructure & Security as Code (Docker, Git, Terraform) Managing technical assessments of security related technologies, vulnerability assessments and penetration tools and techniques Enabling & informing risk-based decisions: Working with higher impact or more complex risks, advising on the impact ...

public cloud (Azure, AWS, GCP), cloud native platforms (Docker, Kubernetes, etc.), and Software as a Service (SaaS) solutions. Formulate HMG Information Assurance Risk Assessment and Risk Treatment Plans Establish security requirements for cloud-based solutions by evaluating business strategies and requirements, implementing security standards such as ISO 27000 series … Working within environments utilising DevOps, DevSecOps, SRE, CI/CD, Infrastructure & Security as Code (Docker, Git, Terraform) Managing technical assessments of security related technologies, vulnerability assessments and penetration tools and techniques Enabling & informing risk-based decisions: Working with higher impact or more complex risks, advising on the impact ...

public cloud (Azure, AWS, GCP), cloud native platforms (Docker, Kubernetes, etc.), and Software as a Service (SaaS) solutions. Formulate HMG Information Assurance Risk Assessment and Risk Treatment Plans Establish security requirements for cloud-based solutions by evaluating business strategies and requirements, implementing security standards such as ISO 27000 series … Working within environments utilising DevOps, DevSecOps, SRE, CI/CD, Infrastructure & Security as Code (Docker, Git, Terraform) Managing technical assessments of security related technologies, vulnerability assessments and penetration tools and techniques Enabling & informing risk-based decisions: Working with higher impact or more complex risks, advising on the impact ...

public cloud (Azure, AWS, GCP), cloud native platforms (Docker, Kubernetes, etc.), and Software as a Service (SaaS) solutions. Formulate HMG Information Assurance Risk Assessment and Risk Treatment Plans Establish security requirements for cloud-based solutions by evaluating business strategies and requirements, implementing security standards such as ISO 27000 series … Working within environments utilising DevOps, DevSecOps, SRE, CI/CD, Infrastructure & Security as Code (Docker, Git, Terraform) Managing technical assessments of security related technologies, vulnerability assessments and penetration tools and techniques Enabling & informing risk-based decisions: Working with higher impact or more complex risks, advising on the impact ...

public cloud (Azure, AWS, GCP), cloud native platforms (Docker, Kubernetes, etc.), and Software as a Service (SaaS) solutions. Formulate HMG Information Assurance Risk Assessment and Risk Treatment Plans Establish security requirements for cloud-based solutions by evaluating business strategies and requirements, implementing security standards such as ISO 27000 series … Working within environments utilising DevOps, DevSecOps, SRE, CI/CD, Infrastructure & Security as Code (Docker, Git, Terraform) Managing technical assessments of security related technologies, vulnerability assessments and penetration tools and techniques Enabling & informing risk-based decisions: Working with higher impact or more complex risks, advising on the impact ...

public cloud (Azure, AWS, GCP), cloud native platforms (Docker, Kubernetes, etc.), and Software as a Service (SaaS) solutions. Formulate HMG Information Assurance Risk Assessment and Risk Treatment Plans Establish security requirements for cloud-based solutions by evaluating business strategies and requirements, implementing security standards such as ISO 27000 series … Working within environments utilising DevOps, DevSecOps, SRE, CI/CD, Infrastructure & Security as Code (Docker, Git, Terraform) Managing technical assessments of security related technologies, vulnerability assessments and penetration tools and techniques Enabling & informing risk-based decisions: Working with higher impact or more complex risks, advising on the impact ...

public cloud (Azure, AWS, GCP), cloud native platforms (Docker, Kubernetes, etc.), and Software as a Service (SaaS) solutions. Formulate HMG Information Assurance Risk Assessment and Risk Treatment Plans Establish security requirements for cloud-based solutions by evaluating business strategies and requirements, implementing security standards such as ISO 27000 series … Working within environments utilising DevOps, DevSecOps, SRE, CI/CD, Infrastructure & Security as Code (Docker, Git, Terraform) Managing technical assessments of security related technologies, vulnerability assessments and penetration tools and techniques Enabling & informing risk-based decisions: Working with higher impact or more complex risks, advising on the impact ...

demand. In this varied role you will be accountable for a broad range of Security Operations activities, including proactive monitoring, incident response, threat and vulnerability management, managing the external Security Operations Centre (SOC) partnership and developing security capabilities. You will also play a key part in providing expert technical … advice for risk assessments and compliance initiatives. The ideal candidate will possess strong experience in managing and delivering security operations, including planning vulnerability assessments and penetration testing, investigating security breaches, maintaining operational security processes, maturity assessments and actively contributing technical expertise to risk management. An understanding of ISO27001 ...