Vulnerability Analyst- SC Cleared
Posted 1 week ago by Xcede
Negotiable
Inside
Hybrid
Greater London, England, United Kingdom
Summary: The Vulnerability Analyst role is a hands-on contract position focused on operational support for the Vulnerability Management function, aimed at reducing a historical vulnerability backlog and improving data quality. The candidate must possess active SC Clearance and will utilize tools such as Tenable VM and Service Now Vulnerability Response. The position is hybrid and based in London, with a potential for extension beyond the initial three months.
Key Responsibilities:
- Work through vulnerability backlog in Tenable VM and Service Now VR
- Validate findings, remove false positives, and manage exceptions
- Establish a credible “as-is” vulnerability baseline
- Improve risk-based reporting (weekly operational, remediation, and monthly BU/executive views)
- Identify recurring issues, systemic root causes, and high-volume vulnerability clusters
- Support remediation planning for high-risk and repeat vulnerabilities
- Investigate credentialed scan failures (e.g. SSH / SMB)
- Support VM platform health improvements with Security Engineering and Service Now teams
Key Skills:
- Strong hands-on vulnerability management experience
- Proven experience with Tenable VM and Service Now VR
- Experience handling large vulnerability backlogs
- Risk-based mindset with strong analytical and reporting skills
- Comfortable working in fast-paced, imperfect environments
Salary (Rate): undetermined
City: London
Country: United Kingdom
Working Arrangements: hybrid
IR35 Status: inside IR35
Seniority Level: undetermined
Industry: IT
Vulnerability Analyst Initial 3-months (Scope for extension) Market rate - Inside IR35 Hybrid - London Active SC Clearance Essential - Can not be considered without it
We are looking for an experienced Vulnerability Analyst to provide immediate operational support to our clients Vulnerability Management function. This is a hands-on contract role focused on reducing a historical vulnerability backlog, improving data quality, and establishing a trusted baseline using Tenable VM and Service Now Vulnerability Response (VR).
Responsibilities
- Work through vulnerability backlog in Tenable VM and Service Now VR
- Validate findings, remove false positives, and manage exceptions
- Establish a credible “as-is” vulnerability baseline
- Improve risk-based reporting (weekly operational, remediation, and monthly BU/executive views)
- Identify recurring issues, systemic root causes, and high-volume vulnerability clusters
- Support remediation planning for high-risk and repeat vulnerabilities
- Investigate credentialed scan failures (e.g. SSH / SMB)
- Support VM platform health improvements with Security Engineering and Service Now teams
Required Experience
- Strong hands-on vulnerability management experience
- Proven experience with Tenable VM and Service Now VR
- Experience handling large vulnerability backlogs
- Risk-based mindset with strong analytical and reporting skills
- Comfortable working in fast-paced, imperfect environments
Success Criteria
- Backlog reduction with clear downward trends
- Accurate, actionable, risk-based reporting
- VM data trusted as the enterprise single source of truth