76 to 100 of 275 Vulnerability Management Jobs in the UK excluding London

responsibilities Strategic Leadership: Develop a continuously evolving security roadmap and "defence in depth" strategy; manage both internal teams and strategic third‐party partners. Operational Management: Oversee 24x7x365 security operations, including continuous monitoring, threat assessment, incident response (CIRT). Risk & Compliance: Develop and maintain an industry‐standard Risk Management … with PCI‐DSS, GDPR, and NIST frameworks. Governance & Policy: Maintain Information Security policies and conduct regular audits of processes and controls. Technical Oversight: Coordinate vulnerability management, penetration testing, and code reviews; provide "Secure by Design" architectural guidance for all new initiatives. Supply Chain & Budget: Manage a portfolio ...

your experience level, you may bring expertise in some of the following: Cloud Technologies AWS (primary) Azure and/or GCP (beneficial) Cyber Security Vulnerability management (e.g. Tenable) Identity and Access Management (e.g. Azure AD, Keycloak) Static and dynamic analysis (e.g. SonarQube) Network security, certificates, and token … management Virtualisation & Containerisation Docker, Podman Kubernetes GPU containerisation (e.g. NVIDIA Container Toolkit, Run:AI) Architectural Approaches Microservices and serverless architectures Edge computing API design (REST, gRPC/Protobuf) Event-driven systems (Kafka, MQTT) DevSecOps Tooling Version control (Git) CI/CD pipelines (e.g. GitLab CI/CD) Infrastructure ...

such as E-mail Security, EDR, NAC, IT/OT Segmentation, 365 etc along with an understanding of malware prevention, emerging threats, attacks and vulnerability management Understanding of Information Security best practice for elements including workstations, servers, cloud, networking, architecture, common protocols, and application security Can confidently perform … security audits, both internal and external (e.g., third party and supplier assurance) and ensure recommendations are followed for continuous improvement Strong Incident Response Management skills including threat and vulnerability analysis Understanding of security frameworks such as NIST, and Cyber Essentials As the analyst you will work with ...

large team. Strong cyber security background across infrastructure and systems environments Experience delivering or supporting Cyber Essentials/ISO 27001 Knowledge of: Identity & access management (Entra ID, MFA, Conditional Access) Endpoint & network security (EDR/MDR, firewalls) Vulnerability management & patching Incident response processes Ability to translate technical ...

support, optimisation, and integration of enterprise IT systems. Develop and deliver cybersecurity initiatives, including Cyber Essentials certification. Manage security platforms such as identity management and endpoint protection tools. Conduct vulnerability management, penetration testing, and incident response planning. Drive technical projects from planning through to delivery and review. … Skills & Experience Proven experience in cybersecurity engineering. Strong knowledge of enterprise and cloud platforms, particularly Microsoft 365 (Defender, Intune, IAM, Compliance). Demonstrable project management experience ideally (eg Prince2). Experience with compliance frameworks such as Cyber Essentials and audit processes. ITIL qualification or experience working within the ITIL ...

impact, while enjoying hybrid working and strong professional development opportunities. Skills Secure architecture design and secure-by-design principles Risk assessment, threat modelling, and vulnerability management Security frameworks: ISO 27001, NIST 800-30/53, OWASP Cloud security architecture (AWS, Azure, GCP) Incident response, penetration testing, and remediation ...

drive remediation activities Coordinate gap assessments and readiness reviews Provide senior leadership with audit and risk reporting Security Testing & Assurance Coordinate penetration testing and vulnerability assessments Work with internal teams and third-party providers Track remediation of security findings Embed testing into change and release processes Support supplier security … certification Familiarity with SWIFT CSCF (desirable) Background in fintech or regulated financial services (preferred) Experience managing audits and working with auditors Understanding of risk management frameworks Experience with control testing and evidence management Knowledge of cloud, infrastructure, and application security concepts Experience coordinating penetration testing and vulnerability ...

risk strategy Lead and develop a team of information security and technology risk specialists Oversee cyber security operations, including security tooling, incident response, and vulnerability management Maintain and manage the IT risk framework and risk register Ensure alignment with regulatory requirements and industry frameworks (e.g. ISO 27001, NIST … cyber security, or IT risk leadership roles Experience working within financial services or other regulated industries Strong understanding of cyber security frameworks, technology risk management, and operational resilience Experience leading security strategy, governance, and security operations Proven ability to engage and influence senior stakeholders across technology and risk functions ...

approach to sales, and the ability to navigate a matrixed sales organisation. Location: Reading, London, Burton on Trent, Leeds, Manchester Responsibilities: Sales Execution & Pipeline Management: Drive cybersecurity pipeline development and manage the full sales cycle from lead generation to close as part of a deal team. Collaborate with Account … cybersecurity frameworks and compliance (ISO 27001, NIST, GDPR). Familiarity with threat detection, MDR/EDR/XDR, SIEM, email security, and identity management solutions. Awareness of current threat landscape and MSSP service models (SOC, vulnerability management, incident response). ...

both AWS and GCP (essential) Deep understanding of CI/CD pipelines, build tools, artifact repositories, and developer platforms Expertise in secure software delivery, vulnerability management, and platform security Experience with threat modelling, security frameworks, and maturity assessments Strong knowledge of application security, network security, and cloud security … principles Excellent stakeholder management and communication skills Desirable: Experience in financial services or regulated environments Knowledge of Kubernetes and container security Familiarity with supply chain security, SBOM, and secure development practices Relevant certifications (eg CISSP, CISM, CCSP) This is a key role focused on shaping and embedding secure ...

Maintain networking (firewalls, routing, switching, VPNs) Implement monitoring, logging, and backup solutions (e.g. Zabbix, Graylog, Veeam) Support security tooling (Cloudflare WAF/Zero Trust, vulnerability scanning, patching, PKI) Administer Microsoft 365 Produce technical documentation (HLD/LLD) Skills & Experience Strong infrastructure background across cloud and on-prem Experience with … monitoring, logging, and backup tools Knowledge of networking and security principles Familiarity with vulnerability management and VPNs Desirable ITIL processes SIEM/EDR tools (e.g. Microsoft Sentinel/Defender) Scripting (PowerShell, Bash, Python) Due to the volume of applications received for positions, it will not be possible ...

Maintain networking (firewalls, routing, switching, VPNs) Implement monitoring, logging, and backup solutions (e.g. Zabbix, Graylog, Veeam) Support security tooling (Cloudflare WAF/Zero Trust, vulnerability scanning, patching, PKI) Administer Microsoft 365 Produce technical documentation (HLD/LLD) Skills & Experience Strong infrastructure background across cloud and on-prem Experience with … monitoring, logging, and backup tools Knowledge of networking and security principles Familiarity with vulnerability management and VPNs Desirable ITIL processes SIEM/EDR tools (e.g. Microsoft Sentinel/Defender) Scripting (PowerShell, Bash, Python) Jira/Confluence, IBM i Due to the volume of applications received for positions ...

Cyber Security Specialist with some experience spanning technical security operations and GRC. The ideal candidate is someone with fundamental security operations experience (SIEM, EDR, Vulnerability), who has also worked in alignment with any security frameworks. If you've handled audits/accreditations from a technical perspective that … will involve Working alongside an MSSP and third-party security auditors on internal SecOps work, gap analyses and audits Working on SIEM, EDR and Vulnerability Management tools. Working in compliance with various security frameworks (ISO27001, Cyber Essentials +, NIST, CAF.) Working alongside the MSSP to ensure that risks ...

external audits, penetration testing activities and input into Incident & Lessons Learnt calls to identify solutions Ensuring security policies are enforced and completing routine technical vulnerability assessments, working with IT Security Leads to propose and coordinate delivery of mitigating actions and required solutions Attend head office in Portsmouth at least … Sentinel and Defender Proven experience in some or all of the following Sec Ops domain areas: Monitoring, investigating & performing triage on security alerts, Threat & Vulnerability Management, Security Incident handling, Security Intelligence analysis, SOC Tools administration & Security Forensics, Security Engineering You have good understanding and experience of Cyber Security ...

major incident response, troubleshooting and root-cause analysis, implementing long-term fixes. Maintain security best practice across cloud and on-premise environments, including vulnerability management and compliance monitoring. Contribute to and sometimes lead the design and implementation of DR and business continuity plans. Build and maintain automation scripts … VNETs, storage, identity, networking security, WAF/Azure Front Door, and cost management. Skilled in managing MDM/MAM via Intune. Experience with vulnerability remediation and MDR/EDR tooling. High proficiency with Veeam for backup and recovery. Why Join? Company pension scheme Life assurance 25 days annual leave ...

Experience Required: 3+ years of experience as a SOC/Security Engineer within a cloud environment Experience with a range of SIEM, SOAR and vulnerability management tools Experience advising on security best practices and developing SOC playbooks Networking and infrastructure experience, including with Firewalls and IDS/… Ideally, some relevant cybersecurity certifications Hands-on technical implementation AWS policies configuration CrowdStrike setup and management Security tools deployment This is a nice, varied role carrying out detect and response duties in-house as well as consulting on security with external end-clients for our client's application suite ...

premises and cloud environments Deploy, configure, and manage enterprise endpoint security/EDR platforms (e.g. Trellix or equivalent) Implement security hardening, patching, and vulnerability remediation aligned to industry standards (e.g. CIS, NCSC) Manage and optimise Windows Server and Active Directory environments to ensure performance, stability, and security Collaborate with … across Azure and/or AWS Familiarity with virtualisation technologies such as VMware or Hyper-V Solid understanding of endpoint security, threat prevention, and vulnerability management Strong problem-solving skills and ability to communicate effectively within technical teams Experience working in Agile environments ...

first line of defence: detect, analyse, and respond to real-time security incidents across razorblue and client networks Take the lead in vulnerability management from scanning and risk analysis to remediation coordination Run proactive security audits and phishing simulations to strengthen awareness and resilience Collaborate with infrastructure … apply. Full UK Driving License Entry-level security certifications (CompTIA Security+, CySA+, etc.) or working toward one Hands-on experience in security incident response, vulnerability assessments, and root cause analysis Skilled in producing incident reports, security metrics, and supporting training Comfortable with internal security audits and refining SOPs ...

digital estate. This includes ensuring the availability, accessibility, reliability, security, and operational effectiveness of all digital systems, services, and networks. Responsibilities Oversee the management, delivery, and performance of all operations including support, maintenance, vulnerability management, and service management. Ensure all digital systems and networks are available, accessible … teams for all technical services. Develop and execute the technology operations roadmap, maintaining technology roadmaps and service design diagrams. Direct supplier and contract management of managed service contracts, ensuring suppliers deliver against contractual obligations. Foster a culture of innovation, collaboration, and customer-centricity within the team. Key Skills/ ...

Relevant certifications (Microsoft, cybersecurity, or networking qualifications) Experience with virtualisation technologies (VMware, Citrix, or similar) Exposure to security tools and practices (SIEM, threat monitoring, vulnerability management) Experience supporting multi-site or international environments Ability to train or support non-technical users Why choose VANRATH? Partnering with VANRATH gives ...

monitoring both in a reactive and proactive manner, creation of documentation and handouts to advise users of best practice, investigation of issues and threat management, and act as technical advisory to other team members. Assist in investigations and escalations of security violations , attempts to gain unauthori s ed access … impartially and concisely records and reports the appropriate information , including the ability to write reports (within a structure or template provided). Experience of vulnerability scanning tools Networking experience, i.e. patching and basic understanding of TCP/IP Strong a ttention to d etail and p resentation s kills ...

environment Take pragmatic risk-based approach to supporting the wider technology teams with the SDLC Foster strong relationships with engineering, architecture, platform and platform management to provide practical risk appropriate guidance Set the priorities for the AppSec team to make sure that the delivery of the AppSec services … Create, roll out and maintain secure development practices and standards including threat modelling, secure coding practices for all applications and APIs Collaborate with the Vulnerability Engineering Lead to support the identifications, triages, and remediation programs in alignment with risk appetite, appropriate prioritisation and agreed SLAs Lead Application Security Engineer ...

security validation and policy enforcement using cloud-native tools and policy-as-code approaches Supporting threat modelling and secure design across engineering teams Managing vulnerability remediation workflows and ensuring issues are resolved within defined risk and compliance timelines Implementing and maintaining secure configurations across cloud services including … management, WAF, logging and monitoring Creating clear technical documentation, guidance and runbooks to support engineering teams Driving secure development practices across product and platform teams Helping define and enforce governance policies across cloud and DevOps environments Main Skills Needed: 3–5+ years’ experience in DevOps, Platform Engineering or DevSecOps ...

risk frameworks (ISO 31000, NIST, OWASP etc.) Knowledge of GovAssure, CAF, ISO27001, Cyber Essentials Entra ID/Azure/M365 SIEM/EDR/vulnerability management tools Access control models (RBAC/ABAC) Experience supporting audits, assurance reviews, and remediation plans Ability to translate technical risk into clear ...

within a cloud environment Have good Security architecture experience, ideally with a DevSecOps environment Excellent experience with PCI DSS and able to lead design Vulnerability management & Compliance Strong Security standard knowledge and experience, consulting on a range of security policies and standards such as GDPR ...