Vulnerability Management Analyst

4 weeks ago

United Kingdom InfoSec People Ltd Full time

We’re supporting a household-name retailer to hire a hands-on Cyber Vulnerability Management Analyst into their Global Threat & Vulnerability function. You’ll run scanning across cloud, networks and apps, turn findings into risk-based actions, and partner with SOC, AppSec, Networks and Cloud to land fixes fast. If you enjoy closing the loop—from discovery to remediation—and automating the boring bits, you’ll love this. The role will be focused on the offensive security and have experience in Bug Bounty Programs working with companies such as Hacker One, Red Teaming and Pen Testing Web Applications. Responsibilities The Vulnerability Management Analyst role will have the following key responsibilities: - Conduct comprehensive vulnerability assessments on systems, networks, and applications. Analyse and interpret vulnerability scan results, prioritize findings using risk-based prioritization methodology, and provide actionable recommendations for remediation. Evaluate and manage vulnerabilities, including prioritization, investigation, and tracking remediation activities. Evaluate new tools and techniques in security testing and articulate their value and impact. Operate vulnerability and configuration scanning tools, like Tenable, Qualys, InsightVM. Perform technical and non-technical risk and vulnerability assessments of relevant technology focus areas. Defining, creating and implementing various SOPs (Standard Operating Procedures) and SOMs (Service Operating Models). Use asset risk profiles, vulnerability severity ratings, and threat information to communicate remediation priorities. Support incident response in investigations and response at all stages. Assist and work closely with our offensive security team, SOC team, Network Team, AppSec team. Experienced in working attack surface management area. Generate and distribute operational-level reports and key vulnerability reporting metrics along with KPIs, KRIs and monthly/weekly reporting. Maintain communication with the Vulnerability Management Lead and other internal & external stakeholders for collaboration and information sharing. Maintain knowledge of applicable policies, regulations, and compliance documents. Engage in team working and demonstrate a professional, motivated attitude. Collaborate with the security compliance team to meet compliance and regulation requirements. Leverage threat intelligence sources to inform on exposure to vulnerabilities. Assist in automated or manual patching remediation processes. Essential 1-2 years experience in vulnerability management role or equivalent Hands-on experience with vulnerability assessments, management, and remediation strategies. Project management skills to help deliver vulnerability programs. Understanding of cloud environments (AWS, Azure, GCP) and their unique vulnerabilities. Detailed understanding of Windows, Linux/Unix, and other OS vulnerabilities. Ability to perform risk analysis and prioritize vulnerabilities based on severity and impact. Aptitude for analysing complex technical information and cyber threats. Security Framework Knowledge: Familiarity with common security frameworks like CIS, NIST

  • Offensive Security and Vulnerability Management Lead

    4 days ago

    United Kingdom, Edinburgh, SC, Freer Analog Devices Full time £60,000 - £120,000 per year

    About Analog DevicesAnalog Devices, Inc. (NASDAQ: ADI ) is a global semiconductor leader that bridges the physical and digital worlds to enable breakthroughs at the Intelligent Edge. ADI combines analog, digital, and software technologies into solutions that help drive advancements in digitized factories, mobility, and digital healthcare, combat climate...

  • Security Vulnerability Lead

    5 days ago

    United Kingdom DXC Technology Full time

    Job DescriptionJob Title: Security Vulnerability LeadLocation: Hybrid London or Newcastle, UKDXC’s Insurance Software and BPS business provides a range of software and services to the global insurance market including life, wealth, health, commercial and speciality, property and casualty, and reinsurance. DXC is also a key partner of the London Market,...

  • Security Vulnerability Lead

    1 week ago

    United Kingdom DXC Technology Full time

    Job DescriptionJob Title: Security Vulnerability LeadLocation: Hybrid London or Newcastle, UKDXC's Insurance Software and BPS business provides a range of software and services to the global insurance market including life, wealth, health, commercial and speciality, property and casualty, and reinsurance. DXC is also a key partner of the London Market,...

  • Security Vulnerability Lead

    6 days ago

    United Kingdom DXC Technology Full time

    Job DescriptionJob Title: Security Vulnerability LeadLocation: Hybrid London or Newcastle, UKDXC’s Insurance Software and BPS business provides a range of software and services to the global insurance market including life, wealth, health, commercial and speciality, property and casualty, and reinsurance. DXC is also a key partner of the London Market,...

  • Security Vulnerability Lead

    4 days ago

    United Kingdom DXC Technology Full time

    Job Description Job Title: Security Vulnerability Lead Location: Hybrid London or Newcastle, UK DXC's Insurance Software and BPS business provides a range of software and services to the global insurance market including life, wealth, health, commercial and speciality, property and casualty, and reinsurance. DXC is also a key partner of the London Market,...

  • Security Vulnerability Lead

    4 days ago

    United Kingdom DXC Technology Full time

    Job Description Job Title: Security Vulnerability Lead Location: Hybrid London or Newcastle, UK DXC’s Insurance Software and BPS business provides a range of software and services to the global insurance market including life, wealth, health, commercial and speciality, property and casualty, and reinsurance. DXC is also a key partner of the London Market,...

  • JDE Business Analyst

    3 weeks ago

    United Kingdom Catch Resource Management Full time

    JDE Business Analyst – ERP Business Analyst, JD Edwards, E1, E1 9.2, 8.12, Distribution, Manufacturing, Finance, Design, Procurement, Advanced Pricing, Warehousing, Integration, Configuration, Junior JDE Consultant, Admin, IT, WinTel, Troubleshooting, Finance, Stock, Inventory, ERP, CRM, EDI, Retail, Ecommerce, System Integrations, Complex Configurations,...

  • Security Analyst

    1 week ago

    London, Windsor and Maidenhead, United Kingdom Micro IT Global Full time £40,000 - £80,000 per year

    As part of a network expansion, we are looking for a 24x7 Security Analyst (Incident Handler) who will conduct vulnerability assessments and monitor systems, networks, databases and Web-hosted services for potential system breaches on behalf of a leading SATCOMS company.Key responsibilities of the position:Act as a first-line security event analyst...

  • Business Analyst – Work From Home

    3 weeks ago

    United Kingdom Catch Resource Management Full time

    JDE Business Analyst – ERP Business Analyst, JD Edwards, E1, E1 9.2, 8.12, Distribution, Manufacturing, Finance, Design, Procurement, Advanced Pricing, Warehousing, Integration, Configuration, Junior JDE Consultant, Admin, IT, WinTel, Troubleshooting, Finance, Stock, Inventory, ERP, CRM, EDI, Retail, Ecommerce, System Integrations, Complex Configurations,...

  • Senior Commodity Analyst

    8 hours ago

    London, ECN United Kingdom Egon Oldendorff Management Full time

    Senior Commodity Analyst - Grains (f/m/d)LondonFounded in 1921, OLDENDORFF CARRIERS combines its history as a German shipowner with the network of one of the world's leading drybulk operators. We cur