1 to 25 of 147 Permanent Vulnerability Management Jobs in the UK excluding London

We’re looking for a Senior Vulnerability Management Analyst to join us in either Amsterdam, London or Reading In this role you will be working closely with one of our Operating companies, Telenet, which will mean regular visits to their site in Mechelen, Belgium. The Threat and Vulnerability Management team ensure effective prioritization and management of vulnerabilities to reduce risk of infection, remote execution and data exfiltration across the Liberty Global estate. The team's key role is to provide proactive and effective management of vulnerabilities to reduce the attack surface and improve the … overall security posture of Liberty Global and their entities. As such the Threat & Vulnerability Management team are looking for talented and passionate security professionals to join their team. As part of TVM our Vulnerability Management Analysts focus on delivering the end-to-end vulnerability management More ❯

Vulnerability Manager About the Role Are you a cybersecurity expert with a passion for protecting businesses from evolving threats? We are looking for a Lead Vulnerability Manager to take ownership of our multi-client vulnerability management programme . In this role, you will lead end-to … end vulnerability identification, assessment, and remediation efforts , ensuring our clients maintain a strong security posture. Key Responsibilities Design, implement, and maintain a comprehensive vulnerability management program for multiple clients. Develop and enforce policies, procedures, and SLAs related to vulnerability management. Serve as the primary point of … contact for clients, ensuring effective communication and security solutions. Vulnerability Identification & Assessment Oversee vulnerability scanning tools to detect security risks across networks, systems, and applications. Conduct regular assessments to identify and prioritize vulnerabilities based on risk, impact, and exploitability . Remediation & Risk Mitigation Collaborate with client IT teams More ❯

Vulnerability Manager About the Role Are you a cybersecurity expert with a passion for protecting businesses from evolving threats? We are looking for a Lead Vulnerability Manager to take ownership of our multi-client vulnerability management programme . In this role, you will lead end-to … end vulnerability identification, assessment, and remediation efforts , ensuring our clients maintain a strong security posture. Key Responsibilities Design, implement, and maintain a comprehensive vulnerability management program for multiple clients. Develop and enforce policies, procedures, and SLAs related to vulnerability management. Serve as the primary point of … contact for clients, ensuring effective communication and security solutions. Vulnerability Identification & Assessment Oversee vulnerability scanning tools to detect security risks across networks, systems, and applications. Conduct regular assessments to identify and prioritize vulnerabilities based on risk, impact, and exploitability . Remediation & Risk Mitigation Collaborate with client IT teams More ❯

rewarding their loyalty, they are offering something they believe every bank should. Job Description: We are seeking a Security Engineering Specialist to enhance our vulnerability management and risk assessment processes. This role will focus on detecting, analyzing, and addressing vulnerabilities using tools such as Qualys and ServiceNow . … The ideal candidate will work closely with internal teams to ensure vulnerabilities are prioritised, tracked against SLAs, and resolved efficiently . Key Responsibilities: Conduct vulnerability management using Qualys and ServiceNow to detect and respond to threats. Prioritize and track vulnerabilities, ensuring compliance with SLA requirements . Report on … vulnerability management metrics and provide insights for continuous improvement . Act as a security consultant to internal teams, assisting them in managing and mitigating vulnerabilities. Perform risk assessments and penetration testing to validate security measures. Provide analysis and recommendations on critical security issues and problem areas. Drive daily More ❯

will be responsible for planning and implementing appropriate security controls to ensure that the information within is kept secure. Key functions/outputs: 1. Vulnerability Scanning & Reporting 2. Endpoint Security 3. Incident Management & Tickets 4. System Hardening 5. Change Work 6. Participation in Regular Meetings 7. Documentation Main … Objectives: Vulnerability Scanning & Reporting Perform regular vulnerability scans and generate reports utilising the below tool sets or similar. The process should be focused on ensuring that the below tool sets are kept up to date and ensure that scans are performed regularly to help assist the Vulnerability … Patch Manager with identifying weaknesses in the system. Code Scans: perform regular code scans to audit code quality metrics, potential bugs, and security vulnerabilities. Vulnerability Management Tooling: perform regular Vulnerability Management Scans and ensure that the warehouse and plugins are kept up to date to capture More ❯

safeguard the organisation's information and technology systems. As the Information Security Manager , you will be responsible for overseeing the organisation's information security management system (ISMS). Your primary focus will be on managing the delivery of, and improving, security policies, practices, and standards to protect our company … mitigate potential vulnerabilities. The Information Security Manager will perform fundamental security and data protection tasks. You will conduct security and data protection assessments, supporting vulnerability management, reviewing security configurations, and contributing to the development of security and data protection policies. The ideal candidate is eager to learn and … posture of our systems and infrastructure Work collaboratively with other departments to ensure the alignment of security efforts with wider business objectives 2. Risk Management: Identify and assess information security risks Provide recommendations for mitigating and managing risks effectively Security system management, administration and reporting; Provide advice and More ❯

AWS background to join our global client's new UK cybersecurity team. This role is predominantly end-client facing, advising on security best practices, vulnerability management and security standard compliance (e.g. NIST, ISO, PCI etc), and assisting with audits and examinations. You will be reporting to the UK … regions. Skills & Experience Required: 2+ years of experience working in Cyber Security within an AWS environment Any experience with CrowdStrike would be a bonus Vulnerability management Strong Security standard knowledge and experience consulting on a range of security policies and standards such as GDPR, ISO, PCI, NIST Experience … in a vibrant office with some of most forward thinking technical people Key Responsibilities: Analysing and developing security requirements, as well as carrying out vulnerability management Ensure consistency across IT Security risk management activities. Advise Engineers on information related to new vulnerabilities and threats and their remediation More ❯

Rapid7 Cybersecurity Advisors partner with our customers above and beyond the tactical aspects of vulnerability management, application security, and threat detection and incident response. You will work with your customers to increase their resilience against threats through tailored mitigation recommendations, proactive threat awareness reporting, and regular touch-points … initiatives and associated best practices. About the Team Rapid7's Managed Services deliver world class, 24/7/365 threat detection, incident response, vulnerability management, and application security services for our customers. As a member of Rapid7's Cybersecurity Advisor team, you are on the front-lines … skills Excellent interpersonal and communication skills Information Security consulting experience Prior technology deployment and configuration experience Experience with security frameworks and concepts Strong project management and prioritization abilities Prior experience in managed or enterprise information security services, vulnerability management, incident response, forensics, malware analysis, penetration testing, or More ❯

regular performance reviews and data audits of deployed models, tracking model drift and identifying opportunities for optimisation to enhance performance and reliability. Security and Vulnerability Management: Participate in threat modelling to identify and assess potential security risks throughout the ML lifecycle. Implement and maintain vulnerability management … Infrastructure: Experience with cloud platforms (AWS, Azure, or GCP) and managing cloud-based ML workflows and resources at scale. Experience with Threat Modelling and Vulnerability Management: Proven ability to conduct threat modelling exercises to identify security risks. Experience in Security and Compliance: Demonstrated experience working within secure, high … that is making a difference in society. A supportive and collaborative environment. As well as this, we offer: Development: access to LinkedIn Learning, a management development programme and training. Wellness: 24/7 Confidential employee assistance programme. Time off: 25 days of annual leave a year, plus bank holidays More ❯

About the Role The Information Security team is responsible for the oversight and execution of the company's information security and risk management programmes to support our business goals. This includes, but is not limited to security strategy, security operations, vulnerability management, incident response, risk identification and … mitigation planning/implementation, identity management, network security, privacy, and compliance. In the position of Information Security Engineer, you will be responsible for ensuring the confidentiality, integrity and availability of our company's information systems and data. You will work closely with cross-functional teams to implement and maintain … safeguard company assets and sensitive data. Monitor networks and systems for security breaches, identifying potential vulnerabilities and taking appropriate corrective actions. Conduct risk assessments, vulnerability scans, and security audits to ensure the effectiveness of security measures. Develop and enforce security policies, procedures, and standards across the organisation. Collaborate with More ❯

technical and non-technical stakeholders to identify root causes, threat vectors, scope of compromise, and recommend remedial and preventative actions Security Operations and Risk Management: Conduct regular vulnerability scans, analyse results, and report on identified risks Manage endpoint security, including antivirus, anti-malware, and access controls Perform system … Cyber Essentials Plus and ISO 27001 Collaboration and Stakeholder Engagement: Collaborate with InfoSec to deliver key security initiatives and ensure adherence to patching and vulnerability management policies Partner with Product and Platform teams to implement secure coding practices and infrastructure security measures Act as a trusted advisor and … point of contact within the firm's engineering community Operational Security Tasks: Develop processes for security operational tasks and tooling, including SIEM, EDR, and Vulnerability Management Scope, conduct, and assess penetration testing activities Participate in the on-call rota providing 24/7 support across 365 days of More ❯

infrastructure operations in a dynamic environment Hybrid working available (2 days onsite in Rugby) Salary £120,000 - £130,000 Opportunity to drive governance, risk management, and service excellence. ABOUT THE CLIENT Our client is a leading organisation that places cybersecurity and infrastructure at the core of its operations. Their … cybersecurity tools, enforce ITIL processes, drive governance, and mitigate risks. Your role will involve working closely with stakeholders to enhance security resilience, oversee incident management, and ensure SLAs are met while continuously improving service delivery frameworks. SERVICE DELIVERY SKILLS: Strong experience in cybersecurity and IT infrastructure roles. Strong background … and infrastructure operations Expertise in ITIL frameworks , including Incident, Change, and Problem Management. Hands-on experience with SIEM, IAM/PAM, Endpoint Security, Firewalls, Vulnerability Management, Encryption, and Cloud/On-Prem security solutions . Proven track record in risk management, SLA monitoring, and operational governance . More ❯

and ensuring everyone understands their role in protecting our organisation. Leading from the front, you will champion a security conscious culture of proactive risk management and practical compliance to deliver meaningful and sustainable security improvements aligned to our strategic ambitions. What you'll be doing to make a difference … everyday processes. Oversee the security posture of cloud environments, ensuring secure configurations, proactive threat monitoring, and resilience planning. Establish and maintain a robust risk management framework, proactively identifying, assessing, and mitigating cybersecurity risks in alignment with business goals. Define standards for operational security including vulnerability management, incident … . Demonstrated experience conducting security due diligence and managing integrations in acquisitions. A proven track record of building and embedding security awareness and risk management frameworks across business and technical teams. Strong operational experience, including establishing and managing incident response, vulnerability management, and security monitoring programs. Ability More ❯

and ensuring everyone understands their role in protecting our organisation. Leading from the front, you will champion a security conscious culture of proactive risk management and practical compliance to deliver meaningful and sustainable security improvements aligned to our strategic ambitions. What you’ll be doing to make a difference … everyday processes. Oversee the security posture of cloud environments, ensuring secure configurations, proactive threat monitoring, and resilience planning. Establish and maintain a robust risk management framework, proactively identifying, assessing, and mitigating cybersecurity risks in alignment with business goals. Define standards for operational security including vulnerability management, incident … . Demonstrated experience conducting security due diligence and managing integrations in acquisitions. A proven track record of building and embedding security awareness and risk management frameworks across business and technical teams. Strong operational experience, including establishing and managing incident response, vulnerability management, and security monitoring programs. Ability More ❯

working with the Ministry of Defence (MOD). The ideal candidate must possess DV Clearance and have a deep understanding of secure systems, risk management, and cyber security best practices within a defence environment. RESPONSIBILITIES Provide technical cyber security consultancy to public and private sector clients. Perform security assessments … penetration testing, and vulnerability management to protect critical systems. Design, implement, and maintain security architectures and frameworks aligned with government standards. Lead and support risk assessments, threat modelling, and incident response initiatives. Work closely with stakeholders to ensure compliance with NCSC and other relevant security policies. Develop and … Ministry of Defence. Strong technical expertise in areas such as network security, endpoint security, cloud security, and secure system architecture. Experience in penetration testing, vulnerability management, and cyber threat intelligence. Solid knowledge of security technologies such as SIEM, IDS/IPS, firewalls, and endpoint detection and response (EDR More ❯

cover the 3rd line support of enterprise services delivered to Virgin Money internal and external customers hosted on Windows Server Physical and Virtual Infrastructure. Vulnerability Management, Security update scheduling, and deployment of updates to the Windows server estate is a key part of the role, so experience in …/7 cover We need you to have... Excellent knowledge and experience in IT security, system administration, with a focus on security patch management and operating system upgrades Experience liaising with 3rd party suppliers Demonstrated experience in scripting and automation (e.g., PowerShell, Python) to streamline patching and upgrade processes. … Excellent knowledge supporting Windows Server Operating System (Install, Configure, Manage) Demonstrated experience supporting Active Directory (Install, Configure, Manage) Excellent knowledge of support and management of Windows Networking Technologies (DNS, TCP/IP, DHCP) Demonstrated experience using MS Failover Clustering (Install, Configure, Manage) Management and experience administering Infoblox Management More ❯

cover the 3rd line support of enterprise services delivered to Virgin Money internal and external customers hosted on Windows Server Physical and Virtual Infrastructure. Vulnerability Management, Security update scheduling, and deployment of updates to the Windows server estate is a key part of the role, so experience in …/7 cover We need you to have… Excellent knowledge and experience in IT security, system administration, with a focus on security patch management and operating system upgrades Experience liaising with 3rd party suppliers Demonstrated experience in scripting and automation (e.g., PowerShell, Python) to streamline patching and upgrade processes. … Excellent knowledge supporting Windows Server Operating System (Install, Configure, Manage) Demonstrated experience supporting Active Directory (Install, Configure, Manage) Excellent knowledge of support and management of Windows Networking Technologies (DNS, TCP/IP, DHCP) Demonstrated experience using MS Failover Clustering (Install, Configure, Manage) Management and experience administering Infoblox Management More ❯

involve working closely with the wider technology teams to enhance their cyber maturity. Furthermore, it provides the opportunity to contribute towards the implementation and management of various security technologies. Main responsibilities: Analysing security events and incidents relating to internal and customer assets. Designing and developing SIEM security use cases. … Designing and implementing security controls and secure configurations. Maintaining proactive vulnerability scanning ensuring that all known vulnerabilities are addressed in line with policy. Collaborating with development teams to implement secure development practices. Configuring and maintaining security tooling across the infrastructure. Collaborating on maturing security incident management processes and … tests, assessments and audits of our information security policies, procedures, and systems. Identifying, assessing, managing, remediating, and tracking information security risks through our risk management framework and ensuring key risks are reported to the CISO. Performing regular internal security audits aligned to ISO/IEC 27001 and SOC2 controls. More ❯

Development. Container native technology and ecosystem projects e.g. OpenShift, EKS, AKS and vanilla K8s. The application of DevSecOps practices to application delivery e.g. Secrets Management, Application Security Testing, Vulnerability Management etc. Ability to integrate security controls into the DevSecOps lifecycle to ensure ongoing compliance with standards like … PCI DSS, etc. Technical knowledge Technical knowledge and hands-on experience in the following technologies (providing cert details where applicable): Issue and Project Management tools such as JIRA, Confluence. Hashicorp Terraform. Hashicorp Vault. SAST Security Testing such as GitLab, Checkmarx or Veracode. DAST Security Testing such as OWASP ZAP … or Veracode. SCA Security Testing such as Checkmarx, Trivy, or Veracode. IAST Security Testing such as Checkmarx. Vulnerability Management such as PA Prisma. QA Testing such as Selenium. Ready to make a difference? If you’re a leader in DevSecOps, with the technical know-how and the drive More ❯

Development. Container native technology and ecosystem projects e.g. OpenShift, EKS, AKS and vanilla K8s. The application of DevSecOps practices to application delivery e.g. Secrets Management, Application Security Testing, Vulnerability Management etc. Ability to integrate security controls into the DevSecOps lifecycle to ensure ongoing compliance with standards like … PCI DSS, etc. Technical knowledge Technical knowledge and hands-on experience in the following technologies (providing cert details where applicable): Issue and Project Management tools such as JIRA, Confluence. Hashicorp Terraform. Hashicorp Vault. SAST Security Testing such as GitLab, Checkmarx or Veracode. DAST Security Testing such as OWASP ZAP … or Veracode. SCA Security Testing such as Checkmarx, Trivy, or Veracode. IAST Security Testing such as Checkmarx. Vulnerability Management such as PA Prisma. QA Testing such as Selenium. Ready to make a difference? If you’re a leader in DevSecOps, with the technical know-how and the drive More ❯

Development. Container native technology and ecosystem projects e.g. OpenShift, EKS, AKS and vanilla K8s. The application of DevSecOps practices to application delivery e.g. Secrets Management, Application Security Testing, Vulnerability Management etc. Ability to integrate security controls into the DevSecOps lifecycle to ensure ongoing compliance with standards like … PCI DSS, etc. Technical knowledge Technical knowledge and hands-on experience in the following technologies (providing cert details where applicable): Issue and Project Management tools such as JIRA, Confluence. Hashicorp Terraform. Hashicorp Vault. SAST Security Testing such as GitLab, Checkmarx or Veracode. DAST Security Testing such as OWASP ZAP … or Veracode. SCA Security Testing such as Checkmarx, Trivy, or Veracode. IAST Security Testing such as Checkmarx. Vulnerability Management such as PA Prisma. QA Testing such as Selenium. Ready to make a difference? If you’re a leader in DevSecOps, with the technical know-how and the drive More ❯

Development. Container native technology and ecosystem projects e.g. OpenShift, EKS, AKS and vanilla K8s. The application of DevSecOps practices to application delivery e.g. Secrets Management, Application Security Testing, Vulnerability Management etc. Ability to integrate security controls into the DevSecOps lifecycle to ensure ongoing compliance with standards like … PCI DSS, etc. Technical knowledge Technical knowledge and hands-on experience in the following technologies (providing cert details where applicable): Issue and Project Management tools such as JIRA, Confluence. Hashicorp Terraform. Hashicorp Vault. SAST Security Testing such as GitLab, Checkmarx or Veracode. DAST Security Testing such as OWASP ZAP … or Veracode. SCA Security Testing such as Checkmarx, Trivy, or Veracode. IAST Security Testing such as Checkmarx. Vulnerability Management such as PA Prisma. QA Testing such as Selenium. Ready to make a difference? If you’re a leader in DevSecOps, with the technical know-how and the drive More ❯

Development Container native technology and ecosystem projects e.g. OpenShift, EKS, AKS and vanilla K8s The application of DevSecOps practices to application delivery e.g. Secrets Management, Application Security Testing, Vulnerability Management etc Ability to integrate security controls into the DevSecOps lifecycle to ensure ongoing compliance with standards like … PCI DSS, etc Technical knowledge Technical knowledge and hands on experience in the following technologies (providing cert details where applicable): Issue and Project Management tools such as JIRA, Confluence DevOps Tooling e.g. Automation, Orchestration, CI/CD, Testing using Jenkins, GitLab etc Hashicorp Terraform Hashicorp Vault SAST Security Testing … DAST Security Testing such as OWASP ZAP or Veracode SCA Security Testing such as Checkmarx, Trivy, or Veracode IAST Security Testing such as Checkmarx Vulnerability Management such as PA Prisma QA Testing such as Selenium Ready to make a difference? If youre a leader in DevSecOps, with the More ❯

We’re looking for a Senior Cyber Threat Intelligence Analyst role to join us in Reading As part of the Global Security Threat & Vulnerability Management team, the Cyber Threat Intelligence team collects, processes, and analyses data to produce information an organisation can use to understand the threats that … Desirable: Experience of supporting security governance initiatives within a telecommunications organisation. Exposure to, and experience in, technical security disciplines (e.g. Security Architecture, Threat Intelligence, Vulnerability Management). Experience in researching new or emerging security requirements (e.g. new regulation or technology). CompTIA Security+. Achieved and willing to work … Tomorrow’s Connections Today! Liberty Global is a dynamic team of veteran operators and investors committed to generating and delivering value through the strategic management of our three platforms: Liberty Telcom, Liberty Growth, and Liberty Services. We prioritize diversity, equity, and sustainability, using technology for good. If you're More ❯

of IT to develop the Assembly Commission's IT vision, strategy and accompanying action plan and deliver it through a robust programme and project management framework, in line with best practice, to support the continuing digital transformation of Assembly and Assembly Commission business. Identify future challenges in the IT … landscape and develop relevant mitigation strategies. Operational Information Security Management Lead, develop, implement, and monitor a comprehensive technical information security program, including all related policies, standards, and guidelines to protect information assets, especially where changes have been made. Lead and define security best practices and align them with organisational … HIPAA, PCI-DSS, and SOX. Lead and prepare for internal and external security audits, documenting compliance status and remediation efforts. Supplier and Third-Party Management Assess and manage security risks associated with third-party suppliers, including reviewing security documentation, conducting periodic audits and mitigating risk through appropriate controls. Documentation More ❯