SonicJobs Logo
Left arrow iconBack to search
  1. Home
  2. Manchester
  3. Ict security manager
  4. Vulnerability Lead Security management

Vulnerability Lead Security management

Reed
Posted 15 hours ago, valid for 25 days
Location

Manchester, Greater Manchester M17 1DJ, England

Contract type

Full Time

In order to submit this application, a Reed account will be created for you. As such, in addition to applying for this job, you will be signed up to all Reed’s services as part of the process. By submitting this application, you agree to Reed’s Terms and Conditions and acknowledge that your personal data will be transferred to Reed and processed by them in accordance with their Privacy Policy.

Sonic Summary

info
  • A Vulnerability Lead is needed in Manchester for a hybrid role, requiring on-site presence once a month.
  • The position offers a salary between £60K and £65K per year.
  • Candidates should have significant practical experience as a vulnerability analyst or lead, with at least 3 years in the Cyber Operations domain.
  • Key responsibilities include managing vulnerability assessments, producing reports, and leading vulnerability management processes.
  • Essential skills include knowledge of vulnerability management practices, experience with relevant regulations, and familiarity with hybrid infrastructure environments, particularly Microsoft Azure.

Vulnerability Lead 

Manchester/Hybrid (On site once per month)

£60K  -£65K

A Vulnerability Lead is required for our client who are based in Manchester. The successful candidate will support in defending the organisation’s systems by detecting weaknesses in digital assets and will take action to correct and strengthen security. You will work within the Defence and Availability Centre (DAC) – the combined Security Operations Centre (SOC) and Network Operations Centre (NOC). The Vulnerability Lead will be responsible for providing operational leadership of all aspects of vulnerability management.

Responsibilities:

  • Complete day-to-day technical activities to identify, assess, categorise, prioritise, remediate, and manage vulnerabilities across digital assets and environments.
  • Validate vulnerability alerting by working across the teams to understand business impacts.
  • Produce threat informed vulnerability reports and assessments that identify technical and procedural findings and provide recommended remediation strategies/solutions.
  • Prioritise, lead and co-ordinate vulnerability activities, such as monitoring and configuring scans.
  • Co-ordinate and prioritise the delivery of vulnerability management programme, including specifically identification, remediation and the monitoring of our performance and progress.
  • Use automated approaches and methodologies to enable more efficient and effective team processes.
  • Co-ordinate and lead the vulnerability meetings, workshops and forums.
  • Conduct regular reviews and fine-tuning of vulnerability management processes.
  • Analyse organisation's cyber defence policies and configurations and evaluate compliance with regulations.
  • Work with technical colleagues, suppliers, and external companies. Identify where vulnerability capabilities can be continuously improved.

Essential Skills:

  • Significant practical experience as vulnerability analyst/lead working within the Cyber Operations domain; this is not an entry level role.
  • Strong knowledge of, vulnerability management practices, and relevant regulations (e.g., GDPR, NIST, ISO 27001, etc.).
  • Practical ‘hands on’ knowledge and experience, working with vulnerability management platforms.
  • Extensive experience of writing vulnerability reports and assessments.
  • Proven experience of providing excellent customer service ensuring the needs of internal and external customers are me.
  • Understanding of the Cyber Kill Chain and MITRE ATT&CK techniques, supported by familiarity with common and the latest forms of malware.
  • Experience working within hybrid infrastructure environments, consisting of on premises and cloud; PaaS, SaaS, IaaS services, with a focus on Microsoft Azure.  

Desirable criteria:

Relevant industry qualifications and certifications (GSEC, GEVA). Good technical security knowledge based on practical experience, across at least 3 years, including: Microsoft Windows, 365 and Azure technologies, Rapid7, Microsoft Defender for Endpoint.

Apply now in a few quick clicks

In order to submit this application, a Reed account will be created for you. As such, in addition to applying for this job, you will be signed up to all Reed’s services as part of the process. By submitting this application, you agree to Reed’s Terms and Conditions and acknowledge that your personal data will be transferred to Reed and processed by them in accordance with their Privacy Policy.

Logo
SonicJobs
Your next career move. Sorted.
Search jobsbackground image

Contact us

© 2017 - 2025 SonicJobs App Ltd. All rights reserved

Terms & Conditions | Privacy Policy | Browse Jobs