Vulnerability Analyst in York

A contract opportunity for a Vulnerability Management Analyst in London (hybrid/remote) with a global financial services organisation. The initial agreement will be for 6 months with the potential to extend.

Responsibilities:

• Support and deputise for the Threat and Vulnerability Management (TVM) lead in both strategic and operational activities.
• Play an active role in future TVM release cycles, ensuring full estate coverage and configuring additional Tenable modules.
• Develop and maintain standard operating procedures for TVM release cycles and business-as-usual activities.
• Analyse and prioritise outputs from TVM platforms, translating them into actionable mitigation strategies for CI/CD pipelines.
• Conduct routine vulnerability assessments of infrastructure and applications, collaborating with group functions and technology teams to address vulnerabilities within defined SLAs.
• Track and manage open security weaknesses and vulnerabilities through their lifecycle to closure.
• Provide insights into vulnerability exposure during security incidents and identify potential threat vectors.
• Work across multi-cloud environments to resolve vulnerabilities and configuration weaknesses.

Qualifications:

• 1 to 3+ years of experience in a cyber analyst role, focusing on Threat and Vulnerability Management (TVM) technologies.
• Strong knowledge of the vulnerability management lifecycle.
• Excellent analytical skills and the ability to work independently.
• Experience in fast-paced environments.
• Proficiency with Tenable One products.
• Strong communication, presentation, and report-writing skills.
• A BSc or MSc in Cybersecurity (desirable).
• Industry-recognised qualifications such as CompTIA PenTest+ and GIAC GPEN (desirable).

Day-to-Day:

• Conducting vulnerability assessments and collaborating with teams to address identified risks.
• Monitoring and managing security weaknesses, ensuring timely resolution.
• Supporting the TVM lead in strategic initiatives and operational tasks.
• Configuring and optimising TVM tools, including Tenable modules.
• Providing critical insights during security incidents to mitigate potential threats.
• Developing and refining processes to enhance the efficiency of vulnerability management activities.

If you’re curious and want to arrange a call to run through the finer details, reach out anytime!