CrawlJobs Logo

Enterprise Security Posture Management SME

United Kingdom, Knutsford · Job Posted June 30, 2026
Apply Position
Job Link Share

Job Description

Join our Proactive Defence team as an Enterprise Security Posture Management SME, leading capabilities across Attack Surface Management (ASM), Attack Path Management (APM), and Breach & Attack Simulation (BAS) within the CISO organization. You will drive a proactive, threat-informed approach to exposure management, helping the bank identify, prioritise, and reduce exploitable security risk through greater visibility, attack path analysis, and continuous control validation. This role is critical to shifting from reactive vulnerability management to proactive exposure reduction by providing continuous visibility of the attack surface, mapping how attackers can move through the environment, and validating security controls through adversary simulation. In doing so, you will help the organization identify, prioritise, and reduce exploitable security risk in a way that is threat-informed, measurable, and directly tied to business impact.

Job Responsibility

  • leading capabilities across Attack Surface Management (ASM), Attack Path Management (APM), and Breach & Attack Simulation (BAS) within the CISO organization
  • driving a proactive, threat-informed approach to exposure management
  • helping the bank identify, prioritise, and reduce exploitable security risk through greater visibility, attack path analysis, and continuous control validation

Requirements

  • Ability to continuously identify internet-facing assets, shadow IT, domains, subdomains, certificates, cloud services, APIs, SaaS exposures, third-party-hosted assets, and assets with unclear ownership
  • Ability to prioritise the most material exposures by combining exploitability, business criticality, asset ownership, threat intelligence, vulnerability data, and likelihood of attack
  • Ability to enrich attack surface findings with attacker techniques, active exploitation trends, KEV data, offensive security teams findings, and sector-specific threat intelligence

Nice to have

  • Hands-on experience with EASM/ASM platforms
  • Experience using tools such as external attack surface management, CAASM, vulnerability management, cloud posture, and exposure management platforms
  • Understanding of common attack surface risks across AWS, Azure, GCP, Entra ID, Active Directory, Kubernetes, APIs, internet gateways, and exposed management interfaces
  • Ability to use BAS outputs to validate whether identified exposures are exploitable, test control effectiveness, simulate attacker behaviours, and support evidence-based prioritisation

What we offer

  • Competitive holiday allowance
  • Life assurance
  • Private medical care
  • Pension contribution

Looking for more opportunities?

Search for other job offers that match your skills and interests.

Similar Jobs for

Enterprise Security Posture Management SME

8 matching positions

Professional Service Staff Consultant

As a SIEM Engineer for Cortex XSIAM, you will play a pivotal role in assisting o...
Location
Location
Japan , Chiyoda, Tokyo
Salary
Salary:
Not provided
paloaltonetworks.com Logo
Palo Alto Networks
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 6+ years of hands-on experience in deploying and integrating SIEM solutions within enterprise to large enterprise-level environments
  • Proficiency in coordinating and conducting event collection, log management, event management, compliance automation, and identity monitoring using SIEM platforms
  • Ability to conceive and develop correlation and detection rules in SIEM systems to enable effective alerting
  • Familiarity with a range of SIEM technologies, such as Splunk and IBM QRadar
  • Proven experience in providing consultative services to end customers within the realm of cybersecurity, particularly in SIEM and SOC domains
  • Demonstrated ability to comprehend customer requirements, analyze complex security environments, and deliver strategic recommendations that align with their goals
  • Strong expertise in Regular Expressions (Regex)
  • Skill in understanding logs and locating relevant third-party documentation when required
  • Knowledge of generating reports on SIEM status, including metrics like logging source count, log collection rate, and other performance indicators
  • Proficient in comprehending and creating technical design documentation
Job Responsibility
Job Responsibility
  • Collaborate with the technical lead to devise a comprehensive log ingestion strategy
  • Contribute to the development of detection strategies based on industry best practices
  • Articulate a step-by-step process to ensure the ingestion of high-quality log sources
  • Monitor and optimize log sources for optimal performance
  • Create meticulous and effective correlation rules
  • Fine-tune log sources and correlation rules to enhance system efficiency
  • Serve as the subject matter expert (SME) in SIEM, correlation, and log source ingestion
  • Serve as a trusted advisor to end customers, offering consultative guidance and expertise in optimizing the utilization of Cortex XSIAM
  • Leverage your in-depth knowledge of SIEM and SOC practices to assess customer needs, provide tailored recommendations, and assist in the formulation of effective security strategies
  • Collaborate closely with customers to understand their unique challenges and objectives, translating them into actionable steps that enhance their security posture
  • Fulltime
Read More
Arrow Right

Sr Technology Consultant-CTJ-Poly

We are looking for a Sr Technology Consulting professional. The person in this r...
Location
Location
United States , Annapolis Junction
Salary
Salary:
101800.00 - 193800.00 USD / Year
https://www.microsoft.com/ Logo
Microsoft Corporation
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor's Degree in Computer Science, Engineering, Finance, Business, or related field OR equivalent experience
  • 3+ years leadership experience in relevant area of business OR equivalent experience
  • Candidates must be able to meet Microsoft, customer and/or government security screening requirements
  • The successful candidate must have an active U.S. Government Top Secret Clearance with access to Sensitive Compartmented Information (SCI) based on a Single Scope Background Investigation (SSBI) with Polygraph
  • This position requires verification of U.S. citizenship due to citizenship-based legal restrictions
Job Responsibility
Job Responsibility
  • Engage others appropriately to understand and define customer requirements
  • Communicate the business value of planned solutions to customers/ partners
  • Identify technical and business risks in programs and proposes mitigations
  • Act as an ambassador in the consumption of intellectual property (IP) by leveraging and/or modifying existing IP or creating repeatable content where applicable
  • Improve Managed Standard Offerings (MSO) quality and collaborates with portfolio and solution teams of the domain by providing feedback
  • Identify opportunities to expand or accelerate the adoption and consumption of the cloud and Microsoft technologies
  • Collaborate with internal stakeholders in the pre-sale process by understanding business requirements and providing industry and technical input and/or solution offerings to help shape the deal
  • Supports drafting proposals and/or statement of work (SOW)
  • Provide input on staffing and skill requirements for delivery to Resource Deployment, Technical Delivery Managers (TDMs), and/or Project Managers
  • Facilitate, as appropriate, other team members to scale the business with existing customers by articulating value propositions of strategic Microsoft products and services and developing new offerings for the domain
  • Fulltime
Read More
Arrow Right

Active Directory Engineer (Technology Specialist I)

This is a 100% remote position, which requires one day onsite yearly.
Location
Location
United States , New York
Salary
Salary:
109000.00 - 163695.00 USD / Year
mountsinai.org Logo
Mount Sinai Health System
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor degree in Computer Science or a related discipline, or an equivalent combination of education and work experience. Masters degree preferred.
  • Eight years of diverse work experience in IT with a minimum of six years experience in systems analysis and application program development, or an equivalent combination of education and work experience.
  • 8+ years of Active Directory experience in enterprise environments
  • 5+ years administering Microsoft Entra ID (Azure AD)
  • Strong knowledge of Azure conditional policies, App registrations and Enterprise applications
  • Strong proficiency in PowerShell, Microsoft Graph or equivalent Microsoft‑supported scripting and automation tooling used for Entra ID and Active Directory operations.
Job Responsibility
Job Responsibility
  • Serve as the hands-on technical lead and subject matter expert for Entra ID and Active Directory environments and related technologies
  • Establish and operate a centralized Entra ID and Active Directory support function, including support models, standards, and escalation processes
  • Lead incident response, root-cause analysis, and long-term remediation for directory-related issues
  • Partner with IAM, Security, Infrastructure, and Compliance teams while maintaining clear ownership boundaries
  • Acting as escalation point for directory/domain issues
  • Root Cause Analysis and Problem Management
  • SME advisory posture for directory and identity platforms
  • Analyzing the environment and driving continuous improvement plans
  • Managing stakeholder expectations through clear technical communication
  • Administer Microsoft Entra ID (Azure AD) tenants
  • Fulltime
Read More
Arrow Right

Sr IT Security/Vulnerability Management Specialist

AAC is seeking Senior Security Analyst focusing on Vulnerability Management to j...
Location
Location
United States , Bethesda
Salary
Salary:
Not provided
aac.com Logo
AAC
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Requires bachelor’s degree in computer science, cyber security, engineering, or a related technical field. Additional experience and relevant certifications may be considered in leu of a degree.
  • 5-7 years of progressive and related experience in IT security with at least 3 years in vulnerability management.
  • Expert knowledge of IT security vulnerabilities and risk assessments with the ability to explain the risks associated with them to executives, program, and technology staff.
  • Expert knowledge of Tenable.sc (on-prem) and Tenable.io (cloud).
  • Strong knowledge of vulnerability management lifecycle, patch management, and risk scoring (e.g., CVSS2).
  • Familiarity with cloud platforms (AWS and GCP) and hybrid environments.
  • Understanding of Windows, Linux/Unix, and network devices security hardening.
  • Ability to work with program staff, executives, security application vendors and technology staff to achieve IT security goals and objectives.
  • Experience developing and maintaining Security Assessment and Authorization (SA&A) documentation for large IT systems for the Federal Government.
  • Excellent working experience in applying FISMA, and FedRAMP processes and policies to information systems.
Job Responsibility
Job Responsibility
  • Lead the agency’s vulnerability management lifecycle using Tenable.sc, Tenable.io, Nessus Manager, and Nessus scanners (on-prem and cloud).
  • Analyze, prioritize, and track remediation of vulnerabilities in coordination with IT operations and system owners.
  • Maintain scan schedules, asset groups, scan policies dashboards, and reports tailored to agency infrastructure and communicate risk posture and remediation progress to relevant infrastructure, application, and cloud teams to remediate vulnerabilities.
  • Define the scanner and security center architecture, refine data flows and synchronizations, tune scanning configurations to minimize false positives and ensure the best coverage.
  • Develop and maintain documentation for system setup, operation, vulnerability management processes, exceptions, and remediation tracking.
  • Support implementation of security projects that require compliance with relevant government policies or standards.
  • Act as SME for vulnerability management tools and processes.
  • Ensure systems and practices comply with FISMA and FedRAMP related Security Assessment and Authorization (SA&A) and compliance for the organization’s IT programs.
  • Assist in coordination, implementation, communication, and enforcement of the organization’s IT security policies.
  • Support incident response.
  • Fulltime
Read More
Arrow Right

Network Security Advisor

The Network Senior Specialist Advisor is responsible for the daily operations an...
Location
Location
India , Remote, Karnātaka
Salary
Salary:
Not provided
nttdata.com Logo
NTT DATA
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Highly experienced Network and Security Architect with 12+ years of hands-on network troubleshooting experience, including at least 5 years in network and security administration
  • Extensive hands-on experience with Palo Alto Firewalls, Prisma Access / Prisma SASE, Cisco routing and switching, F5, SD-WAN, and AWS networking
  • Strong expertise in routing protocols including EIGRP, BGP, along with hands-on exp with switching technologies
  • CCIE(Routing & Switching) & PCNSE certification
  • Proven ability to analyze complex technical issues and design optimal, scalable solutions
  • Deep understanding of Palo Alto architecture, including templates, stacks, Global Protect, and advanced troubleshooting using packet captures and debugs
  • Network design experience is a strong advantage
  • 12+ years of hands-on experience in Network and Security administration around Architecture, Design and operations
  • Strong understanding of Palo Alto architecture, including templates and stack configurations
  • Excellent time management and organizational skills, with the ability to manage multiple operational priorities effectively
Job Responsibility
Job Responsibility
  • Act as a Subject Matter Expert (SME), providing advanced technical escalation support to L2/L3 engineers
  • Deliver end-to-end operational support for enterprise Network and Security environments across multiple customers
  • Troubleshoot and resolve complex issues related to Palo Alto Firewalls, Prisma/GlobalProtect, Routing &Switching, F5 and associated network traffic flows
  • Perform advanced troubleshooting using packet captures, logs, and debugs on Palo Alto firewalls
  • Write custom queries and generate operational and security reports using Palo Alto reporting tools
  • Support daily steady-state operations, including request fulfillment, change management, and participation in weekly on-call rotations
  • Conduct weekly and monthly health checks across all supported network security platforms
  • Perform system maintenance activities, including upgrades, patching, and configuration updates
  • Assist in firewall rule set reviews to enhance customers’ overall security posture and compliance
  • Detect, investigate, and respond to security incidents
Read More
Arrow Right

Resilience And Readiness Manager

The Resilience & Readiness Manager is a manager-level role within the Risk & Res...
Location
Location
United Kingdom
Salary
Salary:
Not provided
admiralgroup.co.uk Logo
Admiral Group Plc
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Deep experience in resilience disciplines such as incident management, crisis management, business continuity, operational resilience, or resilience testing
  • Strong understanding of FCA/PRA Operational Resilience requirements
  • Experience of defining/leading scenario testing exercises
  • Experience working in UK financial services, preferably general insurance
  • Knowledge of FCA/PRA Operational Resilience requirements/Business Resilience
  • Understanding of risk assessment, root cause analysis, and dependency mapping across people, process, technology, data, and third parties
  • Proven track record in oversight, assurance, governance or framework ownership rather than operational response
  • Excellent analytical and reporting skills, with ability to convert data into clear insights for senior stakeholders
  • Strong interpersonal and influencing skills, able to challenge constructively and drive consistent standards across diverse operational teams
Job Responsibility
Job Responsibility
  • Establish and lead the Resilience & Readiness team
  • Own, maintain and continuously improve the enterprise-wide frameworks supporting RR
  • Ensure frameworks remain aligned to FCA/PRA Operational Resilience expectations, ISO22301 principles, internal and group policies, and industry best practice
  • Champion the use of shared risk and control frameworks, collaborating with the Risk, Controls Assurance, Regulatory Resilience, and TPRM functions to ensure consistent processes, methodologies, reporting and governance
  • Lead the embedding of resilience practices, behaviours and disciplines across Value Streams and business functions
  • Provide expert SME support and advisory services to Value Streams as they assess, maintain and improve their own resilience posture
  • Embed the Fusion across the enterprise to enable proactive monitoring and management of resilience within Valuer streams
  • Provide clear, concise reporting into executive forums, risk committees to report on Resilience posture
  • Promote a mature forward-looking resilience culture of preparedness, continuous learning and operational safety across the organisation
  • Deliver training, awareness and exercising programmes to uplift resilience capability
What we offer
What we offer
  • Up to £3,600 of free shares each year after one year of service
  • 33 days holiday (including bank holidays) when they join us, increasing the longer you stay with us, up to a maximum of 38 days (including bank holidays)
  • Option to buy or sell up to an additional five days of annual leave
  • Fulltime
Read More
Arrow Right

Cyber Security Engineer

Location
Location
United States , McLean
Salary
Salary:
Not provided
arcfield.com Logo
Arcfield
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Must possess and be able to maintain a TS/SCI clearance with Polygraph
  • A Bachelor’s degree (or equivalent experience) in Computer Science, Systems Engineering, Mathematics, Information Systems, or other associated discipline
  • BS 10-12, MS 8-10, PhD 5-7
  • Demonstrated experience with encryption technologies
  • Demonstrated experience with operating systems
  • Demonstrated experience with database technologies
  • Demonstrated experience with networking, including Open Systems Interconnection (OSI) model, TCP/IP, Multiprotocol Label Switching (MPLS), Synchronous Optical Network (SONET), and Ethernet
  • Demonstrated experience with routing, switching, firewalls, and data protection
  • Demonstrated experience with cloud computing
  • Demonstrated experience with information storage
Job Responsibility
Job Responsibility
  • Serve as the customer-facing Subject Matter Expert (SME) on all cybersecurity-related issues
  • Provide policy guidance and cybersecurity direction across the Sponsor’s Directorates and/or Mission Centers
  • Support information system security topics across multiple organizational components
  • Ensure cybersecurity compliance with applicable laws, Executive Orders, National Security Systems, National Security Memoranda, and Sponsor policies and guidelines
  • Advise on the development, deployment, operations, implementation, and support of component information systems
  • Apply both technical and policy expertise to ensure secure system lifecycle management
  • Collaborate with stakeholders to integrate cybersecurity requirements into system design and operations
  • Assess and provide recommendations to improve cybersecurity posture across systems and programs
  • Fulltime
Read More
Arrow Right

Professional Service Staff Consultant

As a SIEM Engineer for Cortex XSIAM, you will play a pivotal role in assisting o...
Location
Location
Japan , Tokyo
Salary
Salary:
Not provided
paloaltonetworks.it Logo
Palo Alto Networks Italia
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Exceptional written and verbal communication and presentation skills, for both internal and external interactions
  • 6+ years of hands-on experience in deploying and integrating SIEM solutions within enterprise to large enterprise-level environments
  • Proficiency in coordinating and conducting event collection, log management, event management, compliance automation, and identity monitoring using SIEM platforms
  • Ability to conceive and develop correlation and detection rules in SIEM systems to enable effective alerting
  • Familiarity with a range of SIEM technologies, such as Splunk and IBM QRadar
  • Proven experience in providing consultative services to end customers within the realm of cybersecurity, particularly in SIEM and SOC domains
  • Demonstrated ability to comprehend customer requirements, analyze complex security environments, and deliver strategic recommendations that align with their goals
  • Strong expertise in Regular Expressions (Regex)
  • Skill in understanding logs and locating relevant third-party documentation when required
  • Knowledge of generating reports on SIEM status, including metrics like logging source count, log collection rate, and other performance indicators
Job Responsibility
Job Responsibility
  • Collaborate with the technical lead to devise a comprehensive log ingestion strategy
  • Contribute to the development of detection strategies based on industry best practices
  • Articulate a step-by-step process to ensure the ingestion of high-quality log sources
  • Monitor and optimize log sources for optimal performance
  • Create meticulous and effective correlation rules
  • Fine-tune log sources and correlation rules to enhance system efficiency
  • Serve as the subject matter expert (SME) in SIEM, correlation, and log source ingestion
  • Serve as a trusted advisor to end customers, offering consultative guidance and expertise in optimizing the utilization of Cortex XSIAM
  • Leverage your in-depth knowledge of SIEM and SOC practices to assess customer needs, provide tailored recommendations, and assist in the formulation of effective security strategies
  • Collaborate closely with customers to understand their unique challenges and objectives, translating them into actionable steps that enhance their security posture
  • Fulltime
Read More
Arrow Right