Vulnerability Management Specialist - Quilter

Fixed Term Contract Duration - 12 Months

About the Business

Quilter plc is a leading provider of financial advice, investments and wealth management, committed to being the UK's best wealth manager for clients and their advisers. Quilter oversees £141.9 billion in customer investments (as of 31 March 2026). It has an adviser and customer offering spanning financial advice, investment platforms, multi-asset investment solutions, and discretionary fund management. The business is comprised of two segments: Affluent and High Net Worth.

Affluent encompasses the financial planning business, Quilter Financial Planning, the Quilter Investment Platform and Quilter Investors, the multi-asset investment solutions business.

High Net Worth includes the discretionary fund management business, Quilter Cheviot, together with Quilter Cheviot Financial Planning.

At Quilter we never stand still. Our foundations are rooted in our extraordinary expertise, which is trusted by hundreds of thousands of customers, but we have great ambitions to stay one step ahead and make an even greater difference to the people and communities we serve.

Our business is transforming, continually modernising, and becoming even more customer centric. So, if you want to be bold in the pursuit of your ambitions, bring new ideas, and challenge and evolve what we do, it's the perfect time to join us!

About the Role

Level : 4
Department: Security Operations (Information Security)
Reports to: Head of Security Operations

Location: Southampton / London / England - Home Worker
Contract Type: Fixed Term contract -12 months

At Quilter, we're strengthening our exposure management capability across on-prem, cloud and externally facing estate.

This role is central to driving a risk-based vulnerability management programme - combining high-quality scanning and asset insight with cloud posture and attack surface intelligence - so that remediation is prioritised where it matters most and delivered with pace and measurable outcomes.

The Vulnerability Management Specialist is responsible for theend-to-end vulnerability management lifecycle, including detection, triage, prioritisation , tracking and assurance of remediation across infrastructure, endpoints, applications and cloud platforms.

The role also supportsCloud Security Posture Management (CSPM)activities, including monitoring of cloud security benchmark compliance and CSPM attack paths ", and integratesAttack Surface Managementfindings to reduce exposure from unknown or unmanaged internet-facing assets.

The successful candidate will be hands-on with enterprise vulnerability tooling and will partner closely with infrastructure, cloud engineering, application teams and third parties to ensure remediation is delivered within defined service levels and supported by clear reporting and governance.

Key Responsibilities

1) Vulnerability Detection, Triage & Prioritisation

• Operate and continuously improve vulnerability scanning and prioritisation using Qualys VMDR and associated capabilities (e.g., agent-based scanning, authenticated scanning, dashboards, reporting, prioritisation workflows).
• Perform daily/weekly triage of new and emerging vulnerabilities, validating detections and ensuring severity and urgency reflect exploitability, asset criticality, business impact, patch availability and compensating controls.

• Apply and maintain consistent severity mapping between industry scoring (e.g., CVSS) and organisational severity definitions used across vulnerability tooling and cloud platforms.
• Stay up to date with emerging threats and adversary capabilities across the evolving threat landscape (including AI - driven exploitation techniques), ensuring security controls remain current, effective and aligned to risk.

2) Cloud Security Posture Management (Azure focus)

• Own day-to-day CSPM triage and oversight, ensuring cloud posture findings are actionable, risk-rated and routed to the correct engineering owners for remediation.
• Monitor and manage CSPM posture outcomes and compliance ratings aligned to relevant cloud security benchmarks, and track CSPM- identified attack path" style findings through to closure.

3) Attack Surface Management & Exposure Reduction

• Ingest and operationalise Attack Surface Management findings to identify and reduce risk from internet-facing assets, unknown services, misconfigurations and unmanaged exposure. (Tooling may include ASM capabilities within existing platforms or dedicated ASM tooling.)
• Work with infrastructure, cloud and network teams to validate exposure, confirm ownership, and drive remediation or risk acceptance through appropriate governance .

4) Remediation Oversight, Governance & Assurance

• Drive remediation outcomes through structured engagement with platform, infrastructure, application, endpoint and cloud teams - ensuring owners understand the risk, required fix, and expected timelines.
• Maintain a robust exception and risk acceptance approach for vulnerabilities that cannot be remediated promptly, ensuring risk decisions are recorded and reviewed.

• Oversee vulnerability response activities for major disclosures and zero-days, including coordination of out - of - band activity and escalation where needed.

5) Reporting, Metrics & Stakeholder Communication

• Produce clear, accurate reporting for operational teams and leadership, including trends, SLA performance, backlog health, and risk-based prioritisation views (e.g., exploited/ attack path exposure-based ).
• Provide concise executive commentary, translating technical exposure into business impact and prioritised actions.

6) Process & Continuous Improvement

• Follow and continuously improve established vulnerability and CSPM processes, ensuring the operating cadence (daily checks, weekly prioritisation reviews, monthly governance touchpoints) remains effective and measurable.
• Contribute to and maintain relevant playbooks/runbooks for vulnerability disclosure response and coordination with technical owners.

Key Stakeholders

• Security Operations / Detection Engineering , Cyber Threat, Infrastructure & Platform and Cloud Engineering, Application Owners, End User Computing, Risk & Governance partners, and relevant third-party suppliers/MSSPs.

About You

Essential Significant hands-on experience operating enterprise vulnerability management tooling , with deep