Remediation Engineer

Summary: The Remediation Engineer – Security & Vulnerability Management role is focused on supporting vulnerability management and threat remediation efforts within an organization. The successful candidate will analyze security vulnerabilities, coordinate with cross-functional teams, and implement effective remediation strategies to mitigate risk exposure across various environments, including on-premise and cloud platforms. This position requires a strong technical background and the ability to manage vulnerability lifecycle processes effectively. The role is based in Middlesex, UK, with a hybrid working arrangement.

Key Responsibilities:

• Lead the identification, assessment, and remediation of vulnerabilities across all operating systems (Windows, Linux, macOS) and platforms (on-premise and cloud).
• Analyze vulnerability scan results from tools such as Qualys, Nessus and cloud native tools.
• Collaborate with system, application, and infrastructure teams to prioritize and remediate vulnerabilities across on-premise and cloud environments.
• Prioritize vulnerabilities based on risk, asset criticality, and threat intelligence, ensuring timely resolution.
• Perform or coordinate OS and application patching using tools such as SCCM, Ansible, Tanium, or Satellite.
• Contribute to remediation playbooks, SOPs, and security incident response plans.
• Manage and support secure configurations, patching, and vulnerability remediation across AWS and Azure environments.
• Remediate security misconfigurations or threats in AWS, Azure, and/or GCP using cloud-native security tools (e.g., AWS Inspector, Azure Security Center).
• Collaborate with IT, DevOps, and application teams to track and verify remediation efforts.
• Maintain and enhance tools and processes for vulnerability tracking, reporting, and dashboard metrics.
• Develop and deliver regular status updates, risk reports, and executive summaries to stakeholders.
• Create automation scripts (PowerShell, Bash, Python) to assist in large-scale remediation efforts.
• Support integration of remediation workflows into CI/CD pipelines.
• Serve as the primary point of contact for security remediation coordination, driving accountability across teams.
• Continuously improve the vulnerability management program through automation, documentation, and adoption of best practices.
• Stay updated on emerging vulnerabilities, CVEs, and remediation techniques.

Key Skills:

• Strong knowledge of vulnerability management tools (e.g., AWS Inspector, Azure Security Center, Qualys, or similar).
• Solid understanding of operating systems (Windows, Linux).
• Hands-on experience with AWS and Azure cloud security practices.
• Familiarity with patch management, endpoint protection, and configuration management tools.
• In-Depth Knowledge Of: Windows Server, Linux distributions (Ubuntu, RHEL/CentOS).
• Network and endpoint security principles.
• Patch management and vulnerability lifecycle.
• Vulnerability scanning and management tools (e.g., Tenable, Qualys, Rapid7).
• Scripting and automation (PowerShell, Bash, Python).
• Ticketing and ITSM tools (e.g., Jira, ServiceNow, Remedy).
• Security compliance standards (e.g., NIST, PCI-DSS, ISO 27001, CIS Benchmarks).

Salary (Rate): 390 GBP/Day

City: Middlesex

Country: United Kingdom

Working Arrangements: hybrid

IR35 Status: inside IR35

Seniority Level: undetermined

Industry: IT