Find a job 
Featured Companies 
Featured Universities 
For Companies At a Glance
- Tasks: Identify and manage security vulnerabilities to protect IT environments.
- Company: Join Heathrow, a leading airport committed to robust cyber security.
- Benefits: Enjoy flexible working options and a dynamic team culture.
- Why this job: Make a real impact on enterprise-wide security while developing your skills.
- Qualifications: Proficiency in cyber security, data analytics, and stakeholder management required.
- Other info: Must be eligible for Security Clearance; experience in Critical National Infrastructure is a plus.
The predicted salary is between 36000 - 60000 £ per year.
Social network you want to login/join with:
Cyber Security Analyst, Vulnerability Management, London
Client: Heathrow
Location: London, United Kingdom
Job Category: Other
EU work permit required: Yes
Job Reference: 8172e10ed86c
Job Views: 6
Posted: 18.07.2025
Expiry Date: 01.09.2025
Job Description:
We’re looking for a Cyber Security Analyst – Vulnerability Management to play a vital role in protecting our organisation’s IT environments. Reporting to the Cyber Security Manager – Vulnerability Management, you’ll be responsible for identifying, assessing, and driving the remediation of security vulnerabilities across our technology estate. Your work will be essential in helping the organisation maintain a strong and resilient security posture.
This role is key to proactively managing cyber risk, ensuring alignment with regulatory requirements, and supporting overall business continuity. You’ll work across teams to help prioritise and reduce vulnerabilities, making a real contribution to enterprise-wide security.
UAR Accountabilities:
- Understand and maintain the ISP-025 User Access Review procedure. Create and maintain a plan, action logs, schedule regular review meetings, and ensure actions are closed for user access reviews.
- Conduct and/or facilitate regular User Access Reviews with key stakeholders and complete a quality check activity. Repeat the review exercise as per the Control Calendar published by the Cyber assurance team at least every six months.
- Create regular reporting of progress to the Company cyber assurance team in accordance with the Control Calendar and team KPIs. Create and maintain effective user management of access controls to the team SharePoint, including performing regular access reviews.
- Complete user access related activities as required by the control calendars. Maintain engagement and communication with the company assurance team, system SMEs, and, where necessary, third-party suppliers’ SMEs.
CAR Accountabilities
- Understand, analyse, and deliver business requirements in the context of business intelligence related to the CAR. Create regular reviews and progress of the CAR.
- Understand the CAR data, analyse previous and current data, and identify key performance indicators to support and meet CAR objectives. Use the CAR to transform Heathrow’s business requirements into technical publication.
- Document all aspects of the CAR, including algorithms, parameters, models, definitions, and configurations into well-defined documentation such as procedures and manuals. Improve and enhance the CAR to meet Heathrow’s technical and strategic requirements and future changes.
- Support the team with regulatory and compliance activities such as aviation regulations, UK legislation, and standards like PCI-DSS.
- Contribute to the development and maintenance of security policies, baseline standards, frameworks, and roadmaps aligned with strategic goals and standards.
- Support and develop plans and roadmaps for the Cyber Security Team.
- Proficiency or familiarity with data science, business intelligence, and data analytics, including data integration and modeling, presentation tactics, and concepts.
- Experience working with BI tools, creating and building dashboards.
- Building, maintaining, and influencing relationships with internal and external stakeholders.
- Good facilitation and negotiation skills to influence teams and motivate stakeholders.
- Innovative thinking, self-starter attitude, and drive to succeed and follow through.
- Ability to extract and summarize information for senior stakeholders and colleagues.
- Ability to attain Security Clearance at CTC or higher (SC, DV). Experience with Operational Technology (OT) Security and understanding of linking OT Security with compliance regimes.
Ideally, you\’ll also have:
- Experience in Cyber Security and/or Security within Critical National Infrastructure.
- Experience with airport processes, systems, and information, or cyber security within Critical National Infrastructure.
- Knowledge of Microsoft Technology stacks (Active Directory, Sentinel/Defender, SharePoint).
- Experience with Operational Technology (OT) Security and related incident management.
- Knowledge of Microsoft BI stack like Power Pivot, SSRS, SSAS.
#J-18808-Ljbffr
Cyber Security Analyst, Vulnerability Management employer: Heathrow
Contact Detail:
Heathrow Recruiting Team
StudySmarter Expert Advice 🤫
We think this is how you could land Cyber Security Analyst, Vulnerability Management
✨Tip Number 1
Familiarise yourself with the specific tools and technologies mentioned in the job description, such as Microsoft Technology stacks and BI tools. Having hands-on experience or relevant certifications can set you apart from other candidates.
✨Tip Number 2
Network with professionals in the cyber security field, especially those who work in critical national infrastructure. Attend industry events or join online forums to gain insights and potentially get referrals for the position.
✨Tip Number 3
Stay updated on the latest trends and threats in cyber security, particularly in vulnerability management. Being able to discuss current issues and solutions during interviews will demonstrate your passion and knowledge in the field.
✨Tip Number 4
Prepare to showcase your problem-solving skills by thinking of examples where you've successfully identified and remediated vulnerabilities in past roles. This will help you illustrate your capability to contribute effectively to the team at Heathrow.
We think you need these skills to ace Cyber Security Analyst, Vulnerability Management
Some tips for your application 🫡
Tailor Your CV: Make sure your CV highlights relevant experience in cyber security, particularly in vulnerability management. Use keywords from the job description to demonstrate your fit for the role.
Craft a Strong Cover Letter: Write a cover letter that specifically addresses the responsibilities and accountabilities mentioned in the job description. Explain how your skills and experiences align with the needs of the Cyber Security Analyst position.
Showcase Relevant Skills: Emphasise your proficiency in data science, business intelligence, and any experience with BI tools. Mention your familiarity with Microsoft technology stacks and any relevant certifications you hold.
Highlight Soft Skills: In addition to technical skills, highlight your ability to build relationships, facilitate discussions, and influence stakeholders. These soft skills are crucial for the collaborative nature of the role.
How to prepare for a job interview at Heathrow
✨Understand the Role
Make sure you thoroughly understand the responsibilities of a Cyber Security Analyst in Vulnerability Management. Familiarise yourself with key concepts like vulnerability assessment, remediation processes, and compliance standards relevant to the role.
✨Showcase Relevant Experience
Prepare to discuss your previous experience in cyber security, particularly any work related to vulnerability management or critical national infrastructure. Be ready to provide specific examples of how you've identified and mitigated vulnerabilities in past roles.
✨Demonstrate Technical Knowledge
Brush up on your knowledge of tools and technologies mentioned in the job description, such as Microsoft Technology stacks and BI tools. Being able to discuss how you've used these tools effectively will show your technical competence.
✨Prepare for Scenario-Based Questions
Expect scenario-based questions that assess your problem-solving skills and ability to handle real-world cyber security challenges. Practice articulating your thought process and decision-making steps clearly.
