Find your next tech and IT Job or contract Vulnerability management

Vulnerability Management Specialist Cloud 6 Month contract initially Based: Hybrid, with 4 days onsite in Reading Rate: £375 - £425 p/d - (via Umbrella company) We have a great opportunity with a world leading organisation where you will be provided with all of the support and development to succeed. A progressive organisation where you can really make a difference. We have a great opportunity for a Vulnerability Management Specialist Cloud to join the team. The Vulnerability Specialist is responsible for working with all the stakeholders within Security and throughout the business for developing and enforcing the strategy and vision for end 2 end vulnerability management along with the execution on reducing the biggest risk on Cloud. The role is accountable for the key vulnerability managed areas, including but not limited to, vulnerability assessment, vulnerability hunting, vulnerability research and vulnerability risk management. You must manage the partnerships with key stakeholders providing efficient and consistent vulnerability management services that allows the business to grow. This role must understand the gaps that exist in process, tooling and results and then drive to continually close these gaps. Key Responsibilities: 1. Support Daily Operations o Conduct vulnerability scans, analyse reports, and triage vulnerabilities. o Proficient with Cloud vulnerabilities management - AWS, GCP o Rapid7 CloudSec, Cloud Vulnerability Management - AWS & Google (GCP). o Automate repetitive tasks using scripting or tools to enhance efficiency. 2. Contribute to Process Design o Collaborate in designing and implementing scalable vulnerability management processes. o Provide technical insights to ensure processes are aligned with organisational needs. 3. Collaborate with Stakeholders o Support partnerships with internal teams and external vendors to improve vulnerability remediation. o Foster cross-functional collaboration to address vulnerabilities effectively. 4. Metrics and Reporting o Provide inputs to define actionable metrics for executive-level briefings. o Track and report on vulnerability trends and operational performance. o Use predictive analytics to identify and forecast trends in vulnerabilities. 5. Mentorship and Team Development o Share technical expertise with junior team members to foster growth. o Develop micro-learning modules or hands-on labs for continuous team skill enhancement. 6. Policy Review and Compliance o Assist in the annual review of policies, standards, and processes to ensure compliance with ISO27001. o Provide technical inputs for identifying gaps and developing improvement roadmaps. 7. Process and Standards Improvement o Ensure adherence to quality standards and identify areas for improvement. o Consolidate overlapping responsibilities to streamline processes. 8. Support Security Teams o Assist other Group Security teams by providing vulnerability-specific intelligence. o Contribute to building a shared knowledge repository for all teams. 9. Incident Support o Assist in analysing and resolving security incidents, focusing on vulnerability-related aspects. o Use post-incident reviews to pre-empt vulnerabilities and improve resilience. Key Skills & Experience: o Strong understanding of vulnerability management processes, tools, and frameworks (e.g., Rapid7, Nessus, Qualys, OpenVAS). o knowledge in scripting languages (e.g., Python, PowerShell) for automation. o Knowledge of security standards and frameworks (e.g., ISO 27001, NIST, CIS Controls). * Analytical Skills: o Ability to conduct risk assessments and prioritise vulnerabilities based on business impact. o Experience in creating and interpreting metrics and reports for stakeholders. * Communication and Collaboration: o Excellent written and verbal communication skills for reporting and stakeholder engagement. o Ability to collaborate with cross-functional teams, including SOC, IT, and external vendors. * Problem-Solving: o Experience in incident response and remediation strategies for vulnerabilities. o Creative thinking for implementing counterintuitive solutions (e.g., gamification, predictive analytics). * Leadership and Mentorship: o Proven ability to mentor junior team members and contribute to team skill development. * Experience in fostering a culture of knowledge sharing and continuous improvement. This is an excellent opportunity on a great project of work, If you are looking for your next exciting opportunity, apply now for your CV to reach me directly, we will respond as soon as possible. LA International is a HMG approved ICT Recruitment and Project Solutions Consultancy, operating globally from the largest single site in the UK as an IT Consultancy or as an Employment Business & Agency depending upon the precise nature of the work, for security cleared jobs or non-clearance vacancies, LA International welcome applications from all sections of the community and from people with diverse experience and backgrounds. Award Winning LA International, winner of the Recruiter Awards for Excellence, Best IT Recruitment Company, Best Public Sector Recruitment Company and overall Gold Award winner, has now secured the most prestigious business award that any business can receive, The Queens Award for Enterprise: International Trade, for the second consecutive period.

CGI Cyber Security Team in the UK is one of the largest Cyber consultancies in the UK with around 300 members. The UK Cyber team works across a variety of domains including: Government, Defence, Critical Infrastructure, Healthcare, Utilities, Banking and Financial Services and Many more. At CGI you will get the opportunity to work across a number of domains and work in all areas of Cyber Security allowing you to grow and develop your career. We offer full 360-degree services to our clients from initial consulting on a range of areas including Risk Assessments, Vulnerability Management, Accreditations (ISO27001, GDPR), GRC (Governance, Risk, Compliance), Security Architecture Design and Build (technical and Non-technical), Incident Response, Protective Monitoring Services, Penetration Testing and much more. We take clients through a journey to improve their overall security posture and maturity to ensure they feel reassured in the Security control, measures and systems we have put in place in line with their requirements. At CGI training and development is very important not only do we give you training to keep you up to date with the latest trends within an ever-changing landscape, but we also combine that training with your career ambitions, so we support you in taking your career anywhere you want it to go. Our roles are only available if you hold or fulfil the criteria to obtain a UK Security Clearance.

CGI Cyber Security Team in the UK is one of the largest Cyber consultancies in the UK with around 300 members. The UK Cyber team works across a variety of domains including: Government, Defence, Critical Infrastructure, Healthcare, Utilities, Banking and Financial Services and Many more. At CGI you will get the opportunity to work across a number of domains and work in all areas of Cyber Security allowing you to grow and develop your career. We offer full 360-degree services to our clients from initial consulting on a range of areas including Risk Assessments, Vulnerability Management, Accreditations (ISO27001, GDPR), GRC (Governance, Risk, Compliance), Security Architecture Design and Build (technical and Non-technical), Incident Response, Protective Monitoring Services, Penetration Testing and much more. We take clients through a journey to improve their overall security posture and maturity to ensure they feel reassured in the Security control, measures and systems we have put in place in line with their requirements. At CGI training and development is very important not only do we give you training to keep you up to date with the latest trends within an ever-changing landscape, but we also combine that training with your career ambitions, so we support you in taking your career anywhere you want it to go. Our roles are only available if you hold or fulfil the criteria to obtain a UK Security Clearance.

Cyber Assurance Analyst Norwich (On-site) £19.78-£23.82 per hour (Contract / Public Sector) Excellent opportunity for a Cyber Security Analyst with strong assurance/risk experience to join a large public sector organisation in a critical environment, offering a varied role across alert triage, compliance, risk assessments and incident response. This company are a major public sector organisation supporting essential services and operating a complex technology estate. They are looking to strengthen their cyber function to improve security posture, maintain compliance and support ongoing projects. In this role you will triage and prioritise cyber security alerts and tickets, act as the first escalation point for junior team members, and contribute to wider security workstreams. You'll deliver cyber risk assessments, monitor security controls, support audits, manage vulnerability actions, and advise stakeholders on policy and cyber risk. The ideal candidate will have experience in cyber security with a strong understanding of assurance/control frameworks, risk assessment and compliance. You'll be confident communicating technical cyber issues to non-technical stakeholders and comfortable working in a shift-based environment. This is a fantastic opportunity to secure a contract role with real impact, helping protect essential services while working across a broad cyber remit. The Role: *Triaging cyber alerts/tickets, prioritisation and escalation support *Cyber risk assessments, controls monitoring, audits and project advice *Support compliance activity (DSPT / standards) and vulnerability management *Incident response support + maintaining SOPs and security tooling (e.g., AV/firewalls) The Person: *Cyber security experience (assurance/risk/compliance or SecOps background) *Good knowledge of security frameworks, risk assessment and governance *Strong communication skills with non-technical stakeholders *Happy with on-site working in Norwich and shift-based cover Reference Number: BBBH267217 To apply for this role or for to be considered for further roles, please click "Apply Now" or contact Tommy Williams at Rise Technical Recruitment. Rise Technical Recruitment Ltd acts an employment agency for permanent roles and an employment business for temporary roles. The salary advertised is the bracket available for this position. The actual salary paid will be dependent on your level of experience, qualifications and skill set. We are an equal opportunities employer and welcome applications from all suitable candidates.

Information Security Architect / Manager Our Client is an International company with offices in Central London. They are looking to bring on-board an Information Security Architect / Manager with at least 5 to 8 years proven expertise within Information Security. The function of the position will be as follows: Assess the current environment against industry standards and trends. Implement robust security and control measures, in line with the global IT team Streamline current processes and execute changes for a secured and optimised technology and data landscape. Subject matter expert in application and network security, with operational experience of managing security operations, SIEM solutions, incident, and response management. Collaborate to develop the Infosec strategy and associated operating model. Conduct an in-depth security risk assessment across the technology stack and provide end-to-end mitigation steps for resilience. Working closely with key stakeholders to ensure compliance with security policies, and promotion of strong information security culture. Provide weekly governance, risk and compliance reports utilising key risk and key performance indicators and metrics. Skills/Competencies Required: Experience developing information security policy, process and procedure design and implementation. Excellent troubleshooting, problem solving, and root-cause analytical (RCA) skills. Good working knowledge of Cisco Meraki and associated technologies. Practical knowledge of Continual Service Improvement (CSI) methodologies. Vulnerability management and assessment. Intrusion detection and prevention analysis / frameworks. Solid exposure to cloud based applications security and provisioning. Experience in writing policy, process, and standard playbooks. Experience in SOC and SIEM platforms Excellent communications skills in framing and messaging issues of highly technical nature, into meaningful and relevant information for a varied audience. Excellent analytical skills, with an ability to manage multiple projects under tight guidelines. Experience with common Information security frameworks such as ISO, ITIL, and COBIT. Information security professional qualifications (CISMP, CISSM, SSCP, CAP..etc) ** Occasional travel to other sites may be required. This is 6 month contract assignment based in Central London. Rate will be circa £500 per day. Please do send your CV to us in Word format along with your daily rate and availability.