Threat and Vulnerability Management Analyst

Join us, be part of more. We’re so much more than an energy company. We’re a family of brands revolutionising how we power the planet. We're energisers. One team of 21,000 colleagues that's energising a greener, fairer future by creating an energy system that doesn’t rely on fossil fuels, whilst living our powerful commitment to igniting positive change in our communities. Here, you can find more purpose, more passion, and more potential. That’s why working here is #MoreThanACareer.

We do energy differently - we do it all. We make it, store it, move it, sell it, and mend it. Centrica, Technology is a core driver of how we deliver our strategy. You’ll join a team modernising our platforms, strengthening cyber and operational resilience, and advancing a product‑led way of working that brings engineers, data specialists and business experts together to deliver meaningful outcomes at pace. We’re scaling automation and AI from proof‑of‑concept into real, end‑to‑end change improving customer journeys, reducing cost‑to‑serve, accelerating delivery, and building the digital foundations that underpin everything from energy trading and risk to field operations and critical infrastructure. If you want to work on complex, high‑impact problems using modern engineering practices, and help build reusable platforms that will shape how Centrica operates over the next decade, this is the place to do it.

Location: UK-based hybrid role

The role

We're looking for a motivated Threat & Vulnerability Analyst to join our Threat Informed Defence team. You'll play a key role in identifying, analysing and managing vulnerabilities and risk across the organisation, using a range of security tooling and threat intelligence. You’ll monitor emerging risks, triage findings, and support remediation activities working closely with teams across the business. This includes analysing security data across on-prem and cloud environments, leveraging EDR capabilities, and contributing to a threat-informed defence approach.

• Conduct vulnerability assessments and threat analysis using security tooling and intelligence
• Monitor emerging threats and coordinate response with stakeholders across the business
• Triage and manage findings from multiple security tools
• Support remediation activities and track outcomes
• Analyse security data across on-prem and cloud environments (AWS/Azure)
• Produce clear documentation of vulnerabilities, incidents and remediation actions
• Stay current with industry trends and attacker techniques

What we’re looking for

• Experience in cybersecurity, with a focus on threat and vulnerability management
• Strong understanding of security frameworks and standards
• Hands-on experience with tools such as (Rapid7, Qualys, Nessus, Wiz, Defender)
• Experience or exposure to penetration testing
• Strong analytical, problem-solving and communication skills
• Proactive, detail-oriented and collaborative mindset

Desirable

• Experience with scripting (Python, PowerShell)
• Knowledge of cloud security principles (AWS, Azure)
• Exposure to additional security tools

Why should you apply?

We’re not a perfect place – but we’re a people place. Our priority is supporting all of the different realities our people face. Life is about so much more than work. We get it. That’s why we’ve designed our total rewards to give you the flexibility to choose what you need, when you need it, making sure that you and your family are supported not only financially, but physically and emotionally too.

If you're full of energy, fired up about sustainability, and ready to craft not only a better tomorrow, but a better you, then come and find your purpose in a team where your voice matters, your growth is non-negotiable, and your ambitions are our priority.