Vulnerability Manager
Posted Today by The Curve Group
Negotiable
Outside
Hybrid
Greater London, England, United Kingdom
Summary: The role of Vulnerability Manager involves overseeing the vulnerability management lifecycle within a leading financial services organization. This hands-on position requires a cyber security professional to assess existing frameworks, identify gaps, and enhance vulnerability management capabilities while collaborating with technology teams. The ideal candidate will focus on detailed analysis and remediation efforts to reduce the organization's attack surface.
Key Responsibilities:
- Manage the full vulnerability management lifecycle, from identification through to remediation and closure.
- Conduct vulnerability assessments and analyse findings across infrastructure, cloud and endpoint environments.
- Identify gaps in existing processes, tooling and controls, and recommend improvements.
- Work closely with technology teams to prioritise and remediate security vulnerabilities.
- Produce meaningful reporting, metrics and dashboards for stakeholders.
- Support ISO27001 and wider cyber security governance requirements.
- Leverage Microsoft security technologies to improve vulnerability visibility and management.
Key Skills:
- Proven experience managing vulnerability management programmes within complex enterprise environments.
- Strong understanding of vulnerability assessment, risk prioritisation and remediation processes.
- Hands-on experience with Microsoft Defender and the wider Microsoft security ecosystem.
- Experience using Microsoft Security Copilot.
- Strong KQL (Kusto Query Language) skills.
- Ability to identify weaknesses, implement improvements and drive security best practice.
- Excellent stakeholder management and communication skills.
Salary (Rate): undetermined
City: Greater London
Country: United Kingdom
Working Arrangements: hybrid
IR35 Status: outside IR35
Seniority Level: undetermined
Industry: IT
Outside IR35 Hybrid (2/3 days in the London office a week) We're supporting a leading financial services organisation in the search for an experienced Vulnerability Manager to join their Cyber Security team on an initial 6-month contract. This is a hands-on role for a cyber security professional who can take ownership of the vulnerability management lifecycle from end to end. You'll assess the current framework, identify gaps in processes and controls, improve vulnerability management capabilities, and work closely with technology teams to drive remediation activities. We're looking for a do-er rather than a project manager – someone who is comfortable getting into the detail, analysing security risks, challenging stakeholders, and helping the business reduce its overall attack surface.
Key Responsibilities:
- Manage the full vulnerability management lifecycle, from identification through to remediation and closure.
- Conduct vulnerability assessments and analyse findings across infrastructure, cloud and endpoint environments.
- Identify gaps in existing processes, tooling and controls, and recommend improvements.
- Work closely with technology teams to prioritise and remediate security vulnerabilities.
- Produce meaningful reporting, metrics and dashboards for stakeholders.
- Support ISO27001 and wider cyber security governance requirements.
- Leverage Microsoft security technologies to improve vulnerability visibility and management.
Key Skills & Experience:
- Proven experience managing vulnerability management programmes within complex enterprise environments.
- Strong understanding of vulnerability assessment, risk prioritisation and remediation processes.
- Hands-on experience with Microsoft Defender and the wider Microsoft security ecosystem.
- Experience using Microsoft Security Copilot.
- Strong KQL (Kusto Query Language) skills.
- Ability to identify weaknesses, implement improvements and drive security best practice.
- Excellent stakeholder management and communication skills.
If you're an experienced vulnerability management specialist with strong Microsoft security expertise and are available for a new contract opportunity, I'd be keen to hear from you.