76 to 100 of 139 Vulnerability Management Jobs in the UK excluding London

refine detection rules and use cases to improve threat visibility. Threat Hunting: Proactively hunt for advanced threats and indicators of compromise across the environment. Vulnerability Management: Identify, assess, and prioritise vulnerabilities and recommend remediation actions. Security Reporting: Produce detailed reports on incidents, trends, and overall security posture. Process … network, cloud) Ability to independently investigate and resolve security incidents Scripting or automation experience (e.g., Python, PowerShell) is a plus Strong communication and stakeholder management skills What You’ll Be Doing Acting as an escalation point for Level 1 analysts Working closely with customers and internal teams on incident ...

cybersecurity. They offer a supportive environment with investment in modern tools, frameworks, and professional development. Description Conduct and support information security risk assessments, vulnerability reviews, and the maintenance of the risk register. Monitor security alerts across platforms such as SIEM, endpoint security, and DLP tools, investigating incidents as required. … external security risks. Profile Experience in information security, risk assessment, and incident response within a regulated or structured environment. Familiarity with security monitoring tools, vulnerability management, and supporting audit activities. Understanding of security frameworks such as ISO 27001, NIST, or Cyber Essentials. Strong communication skills, with the ability ...

such as E-mail Security, EDR, NAC, IT/OT Segmentation, 365 etc along with an understanding of malware prevention, emerging threats, attacks and vulnerability management Understanding of Information Security best practice for elements including workstations, servers, cloud, networking, architecture, common protocols, and application security Can confidently perform … security audits, both internal and external (e.g., third party and supplier assurance) and ensure recommendations are followed for continuous improvement Strong Incident Response Management skills including threat and vulnerability analysis Understanding of security frameworks such as NIST, and Cyber Essentials As the analyst you will work with ...

customer-facing systems. Non-functional Practice: Own non-functional excellence for enterprise customers: performance, reliability, observability, and incident management. Champion security best practices (e.g., vulnerability management, data protection, RBAC, audit logging) and ensure changes support SLAs/SLOs appropriate for SaaS products and white-label clients. Learning & Continuous ...

knowledge-sharing and ability to hand over to BAU teams. Experience contributing to cyber security certification projects. Desirable Experience with penetration test remediation and vulnerability management. Knowledge of Zero Trust approaches. Familiarity with incident detection/response processes. Experience integrating risk/security data into reporting or automation tools. ...

approach to sales, and the ability to navigate a matrixed sales organisation. Location: Reading, London, Burton on Trent, Leeds, Manchester Responsibilities: Sales Execution & Pipeline Management: Drive cybersecurity pipeline development and manage the full sales cycle from lead generation to close as part of a deal team. Collaborate with Account … cybersecurity frameworks and compliance (ISO 27001, NIST, GDPR). Familiarity with threat detection, MDR/EDR/XDR, SIEM, email security, and identity management solutions. Awareness of current threat landscape and MSSP service models (SOC, vulnerability management, incident response). ...

both AWS and GCP (essential) Deep understanding of CI/CD pipelines, build tools, artifact repositories, and developer platforms Expertise in secure software delivery, vulnerability management, and platform security Experience with threat modelling, security frameworks, and maturity assessments Strong knowledge of application security, network security, and cloud security … principles Excellent stakeholder management and communication skills Desirable: Experience in financial services or regulated environments Knowledge of Kubernetes and container security Familiarity with supply chain security, SBOM, and secure development practices Relevant certifications (eg CISSP, CISM, CCSP) This is a key role focused on shaping and embedding secure ...

opportunity to work across public and private sector environments , helping organisations identify vulnerabilities and strengthen their security posture. You will deliver penetration testing and vulnerability assessments across a range of environments while contributing to the development of a growing cyber security practice. Key Responsibilities Conduct penetration tests and vulnerability … Produce clear technical reports and present findings to clients Provide remediation advice and security improvement recommendations Support the Security Operations Centre with threat and vulnerability insights Contribute to internal documentation, procedures and service development Support and mentor junior team members Skills & Experience 1+ year penetration testing experience Cyber security ...

Experience Required: 3+ years of experience as a SOC/Security Engineer within a cloud environment Experience with a range of SIEM, SOAR and vulnerability management tools Experience advising on security best practices and developing SOC playbooks Networking and infrastructure experience, including with Firewalls and IDS/… Ideally, some relevant cybersecurity certifications Hands-on technical implementation AWS policies configuration CrowdStrike setup and management Security tools deployment This is a nice, varied role carrying out detect and response duties in-house as well as consulting on security with external end-clients for our client's application suite ...

This is a high-octane senior individual contributor position that allows you to focus entirely on technical architecture and global strategy with no people management duties. You should apply if you want: Dynamic Autonomy: Reporting to the IT Director, you will be the primary authority responsible for managing … up. Aligning global security protocols with regional requirements, including NIST (Americas) and Essential 8 (Australia). Acting as the sole, energetic technical lead for vulnerability management and endpoint security across the worldwide estate. Why has this role arisen? The organisation is shifting toward a more automated, integrated security ...

Cyber Security Specialist with some experience spanning technical security operations and GRC. The ideal candidate is someone with fundamental security operations experience (SIEM, EDR, Vulnerability), who has also worked in alignment with any security frameworks. If you've handled audits/accreditations from a technical perspective that … will involve Working alongside an MSSP and third-party security auditors on internal SecOps work, gap analyses and audits Working on SIEM, EDR and Vulnerability Management tools. Working in compliance with various security frameworks (ISO27001, Cyber Essentials +, NIST, CAF.) Working alongside the MSSP to ensure that risks ...

cybersecurity. They offer a supportive environment with investment in modern tools, frameworks, and professional development. Description Conduct and support information security risk assessments, vulnerability reviews, and the maintenance of the risk register. Work closely with SOC team and infrastructure team for remediation plan Assist with regulatory and audit obligations … ongoing monitoring of external security risks. Profile Experience in information security, risk assessment within a regulated or structured environment. Familiarity with security monitoring tools, vulnerability management, and supporting audit activities. Understanding of security frameworks such as ISO 27001, NIST, or Cyber Essentials. Strong communication skills, with the ability ...

improvement, ensuring systems remain secure while new capabilities are introduced. This position is suited to someone who enjoys working across security tooling, system hardening, vulnerability management and secure architecture, within environments where security is mission critical. The Role You'll work closely with the Cyber Security Engineering Lead ...

Skills: Strong analytical and problem-solving skills are essential. The analyst must be able to assess complex IT systems and identify risk factors, interpret vulnerability data, and quantitatively rate risks. Attention to detail is critical for reviewing large lists of EOL assets and ensuring nothing is missed. Cybersecurity Knowledge … security and risk principles (e.g., CompTIA Security+, Certified Ethical Hacker (CEH), or GIAC/GSEC) would be a plus. Certifications specifically in risk management or governance (such as CRISC, Certified Information Systems Auditor (CISA), or ISO 27001 Lead Auditor/Implementer) are also advantageous for this role, as they ...

security and data protection matters Define & Govern Design and implement company-wide security policies and standards Own the information security roadmap, governance, and risk management Automate and enforce consistent, scalable security processes Collaborate & Influence Work closely with senior stakeholders on compliance, data protection and risk Oversee security alignment with … approach with the drive to build and grow a function Passion for education, awareness and influencing security culture Desirable: exposure to SOC services, vulnerability management, ISO/NIST/Cyber Essentials frameworks, Azure/M365 security stack, or experience developing policies and governance. What ...

Analysis), SAST (Static Application Security Testing), and DAST (Dynamic Application Security Testing) tooling to ensure effective scanning and remediation. Support engineering teams with triage, vulnerability management, and secure coding best practices. Ensure adherence to the Secure Software Development Lifecycle (SSDLC). Support risk assessments and contribute to risk … management processes. Conduct regular security assessments and report findings. Collaborate with cross-functional teams (Engineering, Operations, Product) to meet security requirements. Maintain and develop security documentation and standards Stay current with emerging threats, technologies, and regulations. Contribute to the Security Champions programme through advice and training. Develop reports ...

Review, update, and validate policies, procedures, third‐party risk assessments, and vendor assurance records to meet regulatory and framework requirements. Lead incident and risk management : Act as a trusted escalation point for incidents and concerns, maintain incident reporting logs, ensure investigations are completed, and required actions are taken. Monitor … security effectiveness : Support vulnerability management by overseeing tooling, tracking KPIs, and ensuring security controls operate effectively. Provide compliance expertise and enablement : Serve as a trusted advisor to stakeholders, deliver security awareness training, support projects as needed, and stay current on emerging technologies and data protection legislation. What ...

intel and incident response to convert findings into new detections This is not a SOC analyst, SIEM administrator, SecOps generalist, cloud security, IAM, or vulnerability management role. Responsibilities: Design and implement behaviour based detections in Microsoft Sentinel (KQL) and Splunk (SPL) Own detection logic end-to-end: creation … testing, tuning, false-positive reduction, lifecycle management Map detections to MITRE ATT&CK and track coverage gaps Maintain and improve a detection library over time Validate detections using: threat hunting, incident learnings, testing frameworks (e.g. Atomic Red Team) Work closely with IR and SOC teams, but not perform ...

intel and incident response to convert findings into new detections This is not a SOC analyst, SIEM administrator, SecOps generalist, cloud security, IAM, or vulnerability management role. Responsibilities: Design and implement behaviour based detections in Microsoft Sentinel (KQL) and Splunk (SPL) Own detection logic end-to-end: creation … testing, tuning, false-positive reduction, lifecycle management Map detections to MITRE ATT&CK and track coverage gaps Maintain and improve a detection library over time Validate detections using: threat hunting, incident learnings, testing frameworks (e.g. Atomic Red Team) Work closely with IR and SOC teams, but not perform ...

monitoring both in a reactive and proactive manner, creation of documentation and handouts to advise users of best practice, investigation of issues and threat management, and act as technical advisory to other team members. Assist in investigations and escalations of security violations , attempts to gain unauthori s ed access … impartially and concisely records and reports the appropriate information , including the ability to write reports (within a structure or template provided). Experience of vulnerability scanning tools Networking experience, i.e. patching and basic understanding of TCP/IP Strong a ttention to d etail and p resentation s kills ...

environment Take pragmatic risk-based approach to supporting the wider technology teams with the SDLC Foster strong relationships with engineering, architecture, platform and platform management to provide practical risk appropriate guidance Set the priorities for the AppSec team to make sure that the delivery of the AppSec services … Create, roll out and maintain secure development practices and standards including threat modelling, secure coding practices for all applications and APIs Collaborate with the Vulnerability Engineering Lead to support the identifications, triages, and remediation programs in alignment with risk appetite, appropriate prioritisation and agreed SLAs Lead Application Security Engineer ...

technical domains* Knowledge of frameworks such as NIST CSF, ISO/IEC 27001/27002, CIS Controls, and Cyber Essentials* Understanding of risk management, threat landscapes, and control effectiveness* Experience across multiple cyber service areas (e.g., SOC/MDR, vulnerability management, security awareness, CTI, advisory, vCISO)* Ability ...

best practices Carry out regular patching, upgrades, and preventive maintenance activities Support end-user device configuration, including new hardware setup and policy/compliance management Provide clear, business-focused technical input and guidance where required Produce and maintain technical documentation for both end users and support teams Contribute … access) Experience with Microsoft Azure (IaaS & PaaS), including security and governance Familiarity with firewall configuration and network security best practices Experience with threat hunting, vulnerability management, and security tooling Strong experience producing technical documentation Experience in a support or infrastructure-focused IT role Benefits 25 days annual leave ...

looking for people with broad expertise across multiple security domains, including security of emerging technologies (e.g., AI), Operational Technology (OT) security, security operations (vulnerability management, detect & response), cyber strategy, and IAM, combined with strong commercial acumen. In this role, you will oversee project delivery, build trusted client relationships … frameworks incorporating industry best practices and international standards (NIST, ISO 27001) Create high-quality deliverables including threat and risk assessments, security policies, procedures, assurance management plans, and compliance evidence Stay current on emerging threats, AI-driven security solutions, and regulatory developments, contributing insights to shape client strategies Commercial & Business ...

Implement security controls across endpoint, identity, email, and network layers• Work extensively with Microsoft Defender (Defender for Endpoint, M365 Defender) and security policies• Deliver vulnerability management and patching across managed environments• Support Cyber Essentials/CE+ readiness and security best practices• Act as a client-facing Information Security ...