CrawlJobs Logo

Vulnerability Management SME

barclays.co.uk Logo

Barclays

Location Icon

Location:
United States , Whippany

Category Icon
Category:
IT - Administration

Job Type Icon

Contract Type:
Not provided

Salary Icon

Salary:

175000.00 - 225000.00 USD / Year
Save Job
Save Icon
Apply Position

Job Description:

Embark on a transformative journey as a Vulnerability Management SME – VP. At Barclays, our vision is clear –to redefine the future of banking and help craft innovative solutions. In this role, you will strengthen our cybersecurity posture by identifying, evaluating, and helping to remediate vulnerabilities across our enterprise environment. Positioned within our threat‑informed defense strategy, this role supports and advances our long‑term vulnerability discovery efforts. You will partner closely with teams across Technology, Engineering, and Cybersecurity to drive meaningful risk reduction throughout the organization.

Job Responsibility:

  • Allocation of the correct risk rating and remediation prioritisation to a vulnerability based on industry standards for assessment, available threat intelligence concerning exploitation, the reachability of the host (or asset) and the value of the service(s) running on the impacted host
  • Development of vulnerability management operating model, policies and procedures to ensure consistency in vulnerability identification, remediation and reporting
  • Communication of vulnerabilities to relevant parties including senior stakeholders, vendors, external security partners and affect business units using reports and dashboards and provide recommendations for improvement in vulnerability management practices
  • Collaboration with Threat intelligence and Cyber Operations teams to assess and contextualise exposure to latest threat trends and exploits and set appropriate remediation timescales
  • Definition of requirements and acceptance criteria for the implementation and maintenance of automation tools to streamline vulnerability management processes within operating systems and applications
  • Reporting of remediation status of Security Assurance Specialist team findings against Key Risk Indicators

Requirements:

  • Proficiency with tools such as Nessus, Qualys, Rapid7, or OpenVAS for identifying and analyzing vulnerabilities
  • Understanding of patch deployment strategies, scheduling, and verification across various operating systems and applications
  • Knowledge of network architecture, firewalls, intrusion detection/prevention systems, and secure network protocols
  • Familiarity with Windows, Linux, and macOS platforms, including their respective security features and vulnerabilities
  • Experience with manual and automated penetration testing techniques to validate vulnerabilities
  • Ability to interpret threat feeds, CVEs, and emerging security trends relevant to vulnerability management
  • Understanding of relevant standards and frameworks such as NIST, ISO 27001, CIS Controls, and how they relate to vulnerability management

Nice to have:

  • Experience leveraging machine learning/AI, automation frameworks, or data‑driven analytics to accelerate vulnerability discovery and reduce manual effort
  • Ability to translate complex technical findings into clear, actionable insights for senior executives, boards, and non‑technical stakeholders
  • Engagement with security communities (e.g., FIRST, CSA, OWASP), participation in disclosure programs, and maintaining external intelligence networks that enhance the organization’s visibility and maturity
What we offer:
  • medical, dental and vision coverage
  • 401(k)
  • life insurance
  • paid leave for qualifying circumstances
  • incentive award eligibility
  • competitive holiday allowance
  • private medical care
  • pension contribution

Additional Information:

Job Posted:
March 25, 2026

Employment Type:
Fulltime
Work Type:
Hybrid work
Icon
Barclays - All Job Offers
Job Link Share:
Copy Link Icon
Facebook Icon Twitter Icon LinkedIn Icon

Looking for more opportunities? Search for other job offers that match your skills and interests.

Briefcase Icon

Similar Jobs for Vulnerability Management SME

Security Analyst

As a Security Analyst, you will be responsible for managing security incidents, ...
Location
Location
India , Bengaluru
Salary
Salary:
Not provided
nttdata.com Logo
NTT DATA
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 4 to 5 years+ in Information Security space
  • Strong experiance in Service Now Ticketing tool, Dashboards and Integration
  • Strong experience with Zscaler ZIA, ZPA and ZDX
  • Strong experience with Vulnerability Management Program
  • Strong experience with Qualys Vulnerability Management Tool
  • Strong experience with multiple network operating systems, including two or more of the following: Cisco iOS, Juniper ScreenOS or Junos, Fortinet FortiOS, CheckPoint GAiA, or Palo Alto Networks PAN-OS
  • Tanium, Rapid 7, Nessus, Nitro ESM, Symantec SEP, Symantec Message labs, Thales encryption, Allgress, Forecpoint, Blue coat, Firepower, Cisco ISE, Carbon Black, Titus, Encase
  • Strong oral, written, and presentation abilities
  • Experiance with M365 Copilot
  • Some experience with Unix/Linux system administration
Job Responsibility
Job Responsibility
  • Will be working as an SME for Zscaler Support in Operations for ZIA, ZPA and ZDX
  • Assess and orchestrate the current and planned security posture for NTT data’s Security infrastructure, providing recommendations for improvement and risk reduction
  • Identify and propose process improvements and identify opportunities for new processes and procedures to reduce risk
  • Support security incident response as required
  • First line responder to reported or detected incidents
  • Perform security research, analysis, security vulnerability assessments and penetration tests
  • Provide security audit and investigation support
  • Monitor and track security systems for Vulnerability and respond to potential security Vulnerability
  • Provide support for the Vulnerability management program
  • Provide 24x7 support as operations team working in shifts
Read More
Arrow Right

Group Cyber Security Specialist

The Group Cyber Security Specialist plays a critical hands-on role in delivering...
Location
Location
United Kingdom , Manchester
Salary
Salary:
Not provided
arrowglobal.net Logo
Arrow Global Group
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Proven experience in a technical cyber security, SOC, or security engineering role within complex environments
  • Strong hands-on experience with core security tooling, including EDR, SIEM, Secure Email, Secure Web, CASB, and vulnerability management platforms
  • Solid understanding of incident response lifecycle, threat investigation techniques, and operational security processes
  • Proven experience supporting multi-business-unit, federated, or decentralised IT environments
  • Working knowledge of cloud security principles across Azure and AWS environments
  • Ability to manage multiple priorities across BAU operations, security incidents, and project delivery
  • Strong analytical capability with excellent written and verbal communication and documentation skills
  • Experience driving security remediation and working effectively with IT teams and managed service providers
  • Familiarity with security frameworks and regulatory expectations (e.g. ISO 27001, NIST CSF, FCA or equivalent)
  • Confident stakeholder engagement skills, including the ability to influence, present risk, and communicate effectively with technical and non-technical audiences across geographies
Job Responsibility
Job Responsibility
  • Act as the Group cyber security SME for projects across multiple business units, providing early engagement, risk identification, and secure-by-design guidance
  • Review and challenge solution designs to ensure security controls are embedded from the outset and aligned with Group policies and architectural standards
  • Validate that new systems, applications, integrations, and third-party suppliers meet Group security and assurance requirements
  • Partner with the Group Cyber Architect to ensure implementations align with strategic roadmaps, security patterns, and target architectures
  • Monitor, triage, and respond to SOC/MSSP alerts, supporting threat analysis, incident investigations, and remediation planning
  • Analyse operational security events to identify recurring issues and proactively drive control improvements and SOC maturity
  • Own and enhance security runbooks, detection rules, and BAU processes to strengthen response capability and reduce false positives
  • Manage the end-to-end vulnerability management lifecycle, including scanning, prioritisation, reporting, and stakeholder engagement
  • Identify systemic vulnerability trends, provide technical remediation guidance, and drive SLA-based remediation with BU IT teams
  • Coordinate and manage third-party penetration testing activities, from scoping through to remediation and closure of findings
  • Fulltime
Read More
Arrow Right

Petroleum & Corporate Solutions Performance Specialist

We are looking for a Petroleum & Corporate Solutions Performance Specialist for ...
Location
Location
Qatar , Doha
Salary
Salary:
Not provided
lobelia.earth Logo
Lobellia
Expiration Date
July 31, 2027
Flip Icon
Requirements
Requirements
  • Bachelor's degree in Computer Science, Information Systems, or related field
  • 10+ years of experience in Oil and Gas industry
  • 5+ years of experience in application portfolio management or related role
  • Strong knowledge of license optimization tools and license management
  • Strong experience in petroleum & Corporate applications governance and performance management
  • Excellent leadership & communication skills, with the ability to communicate technical concepts to non-technical stakeholders
  • Intermediate skills in planning and coordination
  • Knowledge of IT governance and best practices related to application management
  • Ability to work in a fast-paced environment and manage multiple priorities
  • Excellent communication and interpersonal skills
Job Responsibility
Job Responsibility
  • Develops and maintains an understanding of the company's business processes and systems, and identifies opportunities to improve and optimize them
  • Manages the Petroleum & Corporate applications portfolio, including assessing the adoption of applications, and identifying opportunities for optimization and consolidation
  • Custodian of the Petroleum & Corporate Solutions application portfolio
  • Leads License Managers to drive portfolio optimization
  • Supports, optimizes and manages the Petroleum & Corporate application portfolio
  • Keeps the Petroleum & Corporate applications portfolio/CMDB up to date, by conducting regular reviews of the applications portfolio
  • Collaborate with the Petroleum & Corporate Solutions Leads (business partners) in defining and maintaining the applications portfolio strategy and roadmap
  • Monitors industry trends and best practices related to application portfolio management, and applies them to improve the company's application management practices
  • Runs regular license usage reviews, and provides recommendations of optimization opportunities
  • Tracks license (and contracts) expiry dates on a regular basis
What we offer
What we offer
  • Accommodation
  • Transport
  • Visa & Insurance
  • Fulltime
Read More
Arrow Right

Security Engineer II

PagerDuty is seeking an Enterprise Security Engineer to join its global IT Opera...
Location
Location
Canada , Toronto
Salary
Salary:
122000.00 - 185000.00 CAD / Year
https://www.pagerduty.com Logo
PagerDuty
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • At least 3 years of experience in the information security industry, with 2+ years in network security or zero-trust, and 2+ years in security architecture or solution experience
  • Knowledge of Information Security concepts, especially in the areas of security threats, analyzing security logs and driving Incident response
  • Knowledge and practical experience in network security and zero-trust
  • Understanding of the IAM cybersecurity landscape, including identity stores, authentication/authorization, strong authentication, and privileged access management capabilities and methodologies
  • Understanding of security technologies and concepts, including SIEM, MDR/XDR, EDR and vulnerability management
  • Understanding of security best practices and frameworks (e.g., MITRE ATT&CK, NIST Cybersecurity Framework)
  • Knowledge of incident response processes
Job Responsibility
Job Responsibility
  • Partner closely with CISO organization to design and implement enterprise IT security architectures and solutions
  • Tracking the evolution of cutting-edge security technologies, and keeping up to date of the latest security threats and trends
  • Focus on enterprise security and zero-trust technology, serving as the principal technical expert in this area within the Enterprise Security department
  • Monitors security alerts and leads the team in identifying and responding to security threats
  • Monitors systems for vulnerabilities, provides prioritization, and drives remediation efforts
  • Working cross-functionally to triage suspicious activity and drive remediation (performing L2-L3 duties as needed)
  • Analyzing threat intelligence feeds to develop metrics, alerts, and techniques to protect against new and emerging attack vectors
  • Develop metrics, thresholds, alerts, dashboards, and incident response playbooks
  • Drive the design and development of automated security response and maintenance solutions
  • Oversee our workstation vulnerability management & endpoint compliance program
What we offer
What we offer
  • Competitive salary
  • Comprehensive benefits package
  • Flexible work arrangements
  • Company equity
  • ESPP (Employee Stock Purchase Program)
  • Retirement or pension plan
  • Generous paid vacation time
  • Paid holidays and sick leave
  • Dutonian Wellness Days & HibernationDuty - companywide paid days off in addition to PTO
  • Paid parental leave: 22 weeks for pregnant parent, 12 weeks for non-pregnant parent
  • Fulltime
Read More
Arrow Right

Oracle DBA

This position is for an Oracle DBA supporting the ALTESS commercial cloud custom...
Location
Location
United States , Alexandria
Salary
Salary:
Not provided
e-9corporation.com Logo
E9 Corporation
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • DOD Secret (Fully Adjudicated) clearance as a minimum
  • Systems Engineer – Senior: Masters +10yrs, or Bachelors +12yrs
  • Systems Engineer – Intermediate: Bachelors +5yrs or Associates +7yrs
  • CompTIA Security+ certification
  • Computing Environment (CE) Certification (i.e., MCSE, Server+, etc.) – can be waived for 30 days after project join date
  • Five or more years of experience (including design, installation, configuration, administration, patching, upgrades, tuning, backup and recovery, and troubleshooting) with the Oracle Enterprise Database in a UNIX environment on physical and virtual servers
  • similar skills are required for MySQL and EDB/PostgreSQL
  • Mid to senior level Oracle DBA experience in a commercial cloud environment
  • Experience with enterprise features of Oracle: RAC, ASM, ASO
  • Security+ (Or equivalent IA cert) and computing environment certification (i.e. Oracle Certified Associate, Professional, Master or equivalent)
Job Responsibility
Job Responsibility
  • Serve as an Oracle DBA subject matter expert (SME) for evaluating customer’s current application database architecture and develop a new architecture to be deployed in Azure
  • Collaborate with internal and external parties to transform high-level technical objectives into comprehensive technical requirements
  • Build and deploy database infrastructure for customer applications
  • Provide sustainment of customer database systems to include installation, patching, upgrades, database schema administration, exports/imports, backup administration and hardening of the database systems
  • Assist with identifying and planning potential new cloud services, features and capabilities
  • Make recommendations for improvements to security, scalability, manageability and performance across a wide variety of network, storage, computer and database technologies
Read More
Arrow Right

Information Security Engineer

We are seeking a Information Security Engineer to serve as a technical leader in...
Location
Location
Salary
Salary:
Not provided
deel.com Logo
Deel
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 5+ years of experience in cybersecurity
  • Handson experience with security tools like EDR, SWG, CASB, ZTNA, SSPM and DLP
  • Experience managing technical vulnerability of OS and applications for endpoints using tools like CrowdStrike Spotlight, InsightVM, Tenable, Qualys.
  • Familiarity with cybersecurity frameworks and best practices, such as MITRE, NIST, CIS, ISO27001, SOC and others.
  • Experience in collaborating with internal stakeholders to rollout enterprise security solutions.
  • Understanding and having the ability to utilize Cloud platforms such as AWS, GCP, Azure to host security tooling.
  • Excellent English in both verbal and written.
Job Responsibility
Job Responsibility
  • Act as the Subject Matter Expert (SME) for Endpoint Detection and Response (EDR) tools/process including optimizing configurations/policies, developing custom threat detection rules, and proactively improving Deel’s overall security posture for remote endpoints (Mac and Windows) and cloud assets (Eg, VMs).
  • Configure, manage, and tune the full suite of security policies within SWG, CASB and ZTNA. Assist our remote colleague with seamless experience through troubleshooting end user issues as needed.
  • Continuously improve SaaS security posture with SSPM tools and processes around it. Collaborate with diverse application owners, understand security control and resolve configuration drifts for our wide range of SaaS applications from baseline.
  • Develop a rigorous review, approval, policy enforcement and auditing for browser extensions, third party OAuth applications for SaaS applications such as Google Workspace, GitHub, Jira etc to meet security and privacy standards.
  • Design, implement, and audit security policies related to enterprise browsers (Eg, Island, Chrome Enterprise etc) including controlling access to sensitive web apps, and data loss prevention (DLP) configuration, ZTNA, secure web browsing experience but not limited to.
  • implement and manage DLP policies across Endpoint, Network, SaaS Applications and Cloud assets, directly supporting the 'Crawl-Walk-Run' program phases. Ensure DLP policies meet diverse data sovereignty, privacy (GDPR, CCPA, etc.), and national regulatory requirements.
  • Run vulnerability management programs for endpoints and servers and ensure they are patched according to the policy in collaboration with stakeholders.
What we offer
What we offer
  • Stock grant opportunities dependent on your role, employment status and location
  • Additional perks and benefits based on your employment status and country
  • The flexibility of remote work, including optional WeWork access
  • Fulltime
Read More
Arrow Right

Web and Application Administrator

This position is for a Web and Application Administrator supporting the ALTESS c...
Location
Location
United States
Salary
Salary:
Not provided
e-9corporation.com Logo
E9 Corporation
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • DOD Secret (Fully Adjudicated) clearance as a minimum
  • Systems Engineer – Senior: Masters +10yrs, or Bachelors +12yrs
  • Systems Engineer – Intermediate: Bachelors +5yrs or Associates +7yrs
  • CompTIA Security+ certification
  • Computing Environment (CE) Certification (i.e., MCSE, Server+, etc.) – can be waived for 30 days after project join date
  • Mid to senior level SQL web and application tier administration experience utilizing mid-tier tools such as IIS, Apache, Nginx, Tomcat, or JBOSS
  • Basic system administration knowledge of Linux and Windows Server operating systems
  • Security+ (Or equivalent IA cert) and computing environment certification (i.e. MCSA – SQL Server, etc.)
  • Strong verbal and written communication skills
  • Experience effectively managing multiple large-scale projects
Job Responsibility
Job Responsibility
  • Serve as a Web and Application subject matter expert (SME) for evaluating customer’s current application architecture and develop a new architecture to be deployed in Azure and utilizing cloud native database services as much as possible (PaaS vs IaaS)
  • Collaborate with internal and external parties to transform high-level technical objectives into comprehensive technical requirements
  • Build and deploy web and application infrastructure for customer applications
  • Provide sustainment of customer web and application tier systems to include installation, configuration, patching, upgrades, hardening of systems per STIG guidance and industry best practices, and SSL certificate management
  • Work closely with customer developers for regular project releases and code deployments
  • Provide troubleshooting assistance for any reported issues
  • Assist with identifying and planning potential new cloud services, features, and capabilities
  • Make recommendations for improvements to security, scalability, manageability, and performance across a wide variety of network, storage, compute, and mid-tier technologies
Read More
Arrow Right

SQL Server DBA

This position is for a SQL Server DBA supporting the ALTESS commercial cloud cus...
Location
Location
United States , Alexandria
Salary
Salary:
Not provided
e-9corporation.com Logo
E9 Corporation
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • DOD Secret (Fully Adjudicated) clearance as a minimum
  • Systems Engineer – Senior: Masters +10yrs, or Bachelors +12yrs
  • Systems Engineer – Intermediate: Bachelors +5yrs or Associates +7yrs
  • CompTIA Security+ certification
  • Computing Environment (CE) Certification (i.e., MCSE, Server+, etc.) – can be waived for 30 days after project join date
  • Mid to senior level SQL Server DBA experience in a commercial cloud environment
  • Experience with enterprise features of SQL Server: Always on Availability Groups, SSRS, Microsoft clustering
  • Security+ (Or equivalent IA cert) and computing environment certification (i.e. MCSA – SQL Server, etc.)
  • Strong verbal and written communication skills
  • Experience effectively managing multiple large-scale projects
Job Responsibility
Job Responsibility
  • Serve as a SQL Server DBA subject matter expert (SME) for evaluating customer’s current application database architecture and develop a new architecture to be deployed in Azure and utilizing cloud native database services (PaaS vs IaaS)
  • Collaborate with internal and external parties to transform high-level technical objectives into comprehensive technical requirements
  • Build and deploy database infrastructure for customer applications
  • Provide sustainment of customer database systems to include installation, patching, upgrades, database schema administration, exports/imports, backup administration and hardening of the database systems
  • Assist with identifying and planning potential new cloud services, features and capabilities
  • Make recommendations for improvements to security, scalability, manageability and performance across a wide variety of network, storage, compute and database technologies
Read More
Arrow Right
Jobs by Category
Art and Entertainment Jobs Banking Jobs Call Center Jobs Construction Jobs Consulting Jobs Customer Service Jobs Education Jobs Energy Jobs Finance Jobs Gastronomy Jobs Health and Beauty Jobs Hospitality and Tourism Jobs Human Resources Jobs Insurance Jobs IT - Administration Jobs IT - Software Development Jobs Legal Jobs Logistics Jobs Manufacturing Jobs Marketing, Digital Marketing, SEO, SEM Jobs Media Jobs Nursing Jobs Office Administration Jobs Pharmacy Jobs Physical Work Jobs Public Relations Jobs Public Sector Jobs Purchasing Jobs Quality Control Jobs Real Estate Jobs Research and Development Jobs Sales Jobs
Job Positions Jobs by Country
United States Jobs United Kingdom Jobs India Jobs Canada Jobs Australia Jobs Germany Jobs Ireland Jobs Poland Jobs
Company
Blog About Us Contact
Follow Us
Facebook
X (Twitter)
LinkedIn
Instagram
CrawlJobs Group
ITFlashcards AllDevBlogs
© 2026 CrawlJobs Ltd. All Rights Reserved
Terms & Conditions Privacy Policy