Be at the heart of actionFly remote-controlled drones into enemy territory to gather vital information.

Apply Now

Cybersecurity Vulnerability Lead

Finsbury Square
1 week ago
Create job alert

Cybersecurity Vulnerability Lead - £700 per day - Inside IR35 - Remote - 6 Months initial contract.

Our client, the UKs leading producer of Zero Carbon energy, is looking for a Cybersecurity Vulnerability Lead to join them on a contract basis. 

This is a senior role with responsibility for the organisation’s vulnerability management programme across multiple business units, technologies, and regulatory environments.

The organisation has made significant investment in Tenable as its core vulnerability management platform. You’ll be expected to lead its strategic and day-to-day usage, ensuring vulnerabilities are accurately identified, prioritised, and remediated while driving continuous improvement in how the platform is integrated and utilised.

Candidates with strong Tenable expertise, particularly those who have embedded it at scale in large or regulated environments such as financial services, will be especially attractive for this role.

Security Clearance -

Due to the sensitive nature of the work, candidates must be eligible for SC clearance.

Candidates with active or recently lapsed SC clearance will be prioritised.

Applicants without clearance must be willing and eligible to undergo vetting.

The Role -

As Cybersecurity Vulnerability Lead, you will:

Own the end-to-end vulnerability management programme, with Tenable One at the core.

Define and deliver the strategy, policies, SLAs, and operating rhythm.

Lead on risk-based prioritisation using exploit intelligence, asset criticality, and business impact.

Translate scan data into clear, actionable remediation plans for technical teams.

Build dashboards and executive reports (ServiceNow, Power BI).

Provide rapid risk assessments and emergency patch governance during incidents.

Support audits and regulatory compliance (ISO27001, CE+, GDPR, NIS2, ONR).

Drive automation, integrating tools and workflows to improve efficiency.

Act as subject matter expert for Tenable and related tooling, ensuring platforms are fully leveraged.

Mentor analysts and security champions, building maturity across the team.

About You - 

You will bring experience leading vulnerability management at enterprise scale, ideally in financial services or similarly regulated industries.

You should also have hands-on knowledge of the following:

Core Vulnerability Management -

Tenable One (Exposure Management, Attack Surface Management, Attack Paths, Identity)

AWS Inspector

Agent-based and network-based scanning

Cloud integrations (AWS, Azure, GCP)

Dashboards and risk-based prioritisation

Patch & Endpoint Management -

Microsoft Intune / SCCM / WSUS

Jamf

Workflow & ITSM Integration - 

ServiceNow (dashboards, SOAR)

Jira

Cloud & Application Security -

AWS Security Hub

Azure Defender for Cloud

Veracode

Threat Intelligence & Exploit Context -

Tenable Threat Intelligence

Exploit DB

Metasploit

SIEM, SOAR & Monitoring - 

Microsoft Sentinel

SOAR platforms (ServiceNow SOAR)

Automation & Scripting - 

Python, PowerShell, Bash, Ansible

Reporting & Metrics -

Power BI

ServiceNow dashboards

Excel (advanced analysis)

Frameworks & Standards -

NIST CSF, ISO 27001, OWASP, CE / CE+, GDPR, NIS2, ONR

Security Domains / Capabilities -

Identity and Access Management (IAM)

Network Security

Data Protection

Cloud Security Controls

Application Security

Security Monitoring

Processes & Practices -

Vulnerability Management Programmes

Incident Response and Threat Assessment

Emergency Patch Governance

Risk-based Prioritisation (CVEs, exploit intelligence, asset criticality, business impact)

Audit Support (internal assurance, penetration test follow-ups, external audits)

Exception and exemption management

Automation of manual tasks

Dashboarding for risk and SLA metrics

What's on Offer -

A leadership role with significant influence across a major UK organisation.
Opportunity to work with a forward-thinking Cyber Services function pushing boundaries in vulnerability management

Related Jobs

View all jobs

Head Of Information Technology

Cybersecurity Architect

Cybersecurity Architect - London, UK

Principal Engineer

Lead Security Solution Architect

Business Development Manager (MDR)

Subscribe to Future Tech Insights for the latest jobs & insights, direct to your inbox.

By subscribing, you agree to our privacy policy and terms of service.

Industry Insights

Discover insightful articles, industry insights, expert tips, and curated resources.

Jobs

Why Cyber Security Careers in the UK Are Becoming More Multidisciplinary

Cyber security used to be viewed primarily as a technical discipline: firewalls, encryption, intrusion detection, penetration testing. In the UK today, it’s far broader. Organisations now face complex legal frameworks, ethical dilemmas, human-behaviour risks, communication challenges & usability hurdles. This shift means cyber security careers are becoming more multidisciplinary. From protecting NHS patient records to defending financial services, securing supply chains & safeguarding national infrastructure, cyber security now touches every sector. Employers increasingly want professionals who understand law, ethics, psychology, linguistics & design alongside traditional technical skills. In this article, we’ll explore why UK cyber security careers are expanding in this way, how these five disciplines shape the profession, and what job-seekers & employers need to know to thrive in this new landscape.

Jobs

Cyber Security Team Structures Explained: Who Does What in a Modern Cyber Security Department

Cyber security has become a top priority for UK organisations of all sizes. From small businesses to financial institutions, healthcare providers, and government bodies, the risk of cyber attack is now a constant concern. Threats are more sophisticated, regulations more demanding, and customers more aware of data privacy than ever before. But defending against cyber threats isn’t simply about having the right tools — it’s about having the right team. A modern cyber security department relies on clearly defined roles and responsibilities to ensure that defences are proactive, incidents are managed swiftly, and compliance is maintained. This article explains the structure of a modern cyber security team, the roles you’ll typically find within it, how they collaborate, and what skills, qualifications, and salaries are expected in the UK job market.

Jobs

Why the UK Could Be the World’s Next Cyber Security Jobs Hub

Cyber security has become one of the defining challenges of the digital age. From protecting personal data and financial transactions to defending national infrastructure and corporate systems, the demand for strong cyber defences has never been higher. As businesses, governments, and individuals depend more heavily on digital services, the scale and sophistication of cyber threats have risen dramatically. Ransomware attacks, data breaches, state-sponsored cyber operations, and insider threats are now everyday risks. In response, organisations worldwide are investing heavily in cyber security talent. The United Kingdom is uniquely positioned to become a global cyber security jobs hub. With its strong tech sector, world-class universities, advanced defence capabilities, and established financial markets, the UK already has the foundations. The question is whether it can scale up, attract, and retain the right talent to meet global demand. This article explores why the UK is poised to become the world’s next cyber security jobs hub, the opportunities available, the challenges ahead, and what needs to happen for this vision to be realised.

🍪 We use cookies to enhance your browsing experience on our website. By continuing to use this site, you consent to the use of cookies as described in our Cookie Policy. You can review our Cookie Policy for more information.