CrawlJobs Logo

Vulnerability Management SME

xcede.com Logo

Xcede

Location Icon

Location:
United Kingdom , Sheffield

Category Icon
Category:
IT - Administration

Job Type Icon

Contract Type:
Not provided

Salary Icon

Salary:

Not provided
Save Job
Save Icon
Apply Position

Job Description:

We are seeking an experienced contractor to provide specialist expertise in identifying, analysing, and prioritising technology resilience vulnerabilities across critical services. The role will support resilience risk assessments, vulnerability remediation activities, and regulatory assurance requirements across the technology environment.

Job Responsibility:

  • Support the identification and assessment of technology resilience vulnerabilities
  • Analyse vulnerability impacts against resilience tolerances and critical service requirements
  • Support remediation planning and challenge the effectiveness of control improvements
  • Produce vulnerability insight, prioritisation, and assurance outputs
  • Track remediation actions and provide governance reporting support
  • Interface with Technology Risk, Operational Risk, Audit, and governance stakeholders
  • Provide SME input into regulatory reporting, audits, and assurance activities

Requirements:

  • Strong experience in technology resilience, operational resilience, technology risk, or control assurance
  • Experience assessing technology vulnerabilities and recovery risks across platforms and services
  • Understanding of resilience tolerances, control effectiveness, and remediation practices
  • Experience supporting regulatory, audit, or assurance activities within regulated environments
  • Strong analytical, stakeholder management, and reporting skills
  • Financial services or other regulated industry experience preferred

Additional Information:

Job Posted:
May 05, 2026

Expiration:
June 14, 2026

Work Type:
Hybrid work
Icon
Xcede - All Job Offers
Job Link Share:
Copy Link Icon
Facebook Icon Twitter Icon LinkedIn Icon

Looking for more opportunities? Search for other job offers that match your skills and interests.

Briefcase Icon

Similar Jobs for Vulnerability Management SME

Vulnerability Management SME

Embark on a transformative journey as a Vulnerability Management SME – VP. At Ba...
Location
Location
United States , Whippany
Salary
Salary:
175000.00 - 225000.00 USD / Year
barclays.co.uk Logo
Barclays
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Proficiency with tools such as Nessus, Qualys, Rapid7, or OpenVAS for identifying and analyzing vulnerabilities
  • Understanding of patch deployment strategies, scheduling, and verification across various operating systems and applications
  • Knowledge of network architecture, firewalls, intrusion detection/prevention systems, and secure network protocols
  • Familiarity with Windows, Linux, and macOS platforms, including their respective security features and vulnerabilities
  • Experience with manual and automated penetration testing techniques to validate vulnerabilities
  • Ability to interpret threat feeds, CVEs, and emerging security trends relevant to vulnerability management
  • Understanding of relevant standards and frameworks such as NIST, ISO 27001, CIS Controls, and how they relate to vulnerability management
Job Responsibility
Job Responsibility
  • Allocation of the correct risk rating and remediation prioritisation to a vulnerability based on industry standards for assessment, available threat intelligence concerning exploitation, the reachability of the host (or asset) and the value of the service(s) running on the impacted host
  • Development of vulnerability management operating model, policies and procedures to ensure consistency in vulnerability identification, remediation and reporting
  • Communication of vulnerabilities to relevant parties including senior stakeholders, vendors, external security partners and affect business units using reports and dashboards and provide recommendations for improvement in vulnerability management practices
  • Collaboration with Threat intelligence and Cyber Operations teams to assess and contextualise exposure to latest threat trends and exploits and set appropriate remediation timescales
  • Definition of requirements and acceptance criteria for the implementation and maintenance of automation tools to streamline vulnerability management processes within operating systems and applications
  • Reporting of remediation status of Security Assurance Specialist team findings against Key Risk Indicators
What we offer
What we offer
  • medical, dental and vision coverage
  • 401(k)
  • life insurance
  • paid leave for qualifying circumstances
  • incentive award eligibility
  • competitive holiday allowance
  • private medical care
  • pension contribution
  • Fulltime
Read More
Arrow Right

Security Analyst

As a Security Analyst, you will be responsible for managing security incidents, ...
Location
Location
India , Bengaluru
Salary
Salary:
Not provided
nttdata.com Logo
NTT DATA
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 4 to 5 years+ in Information Security space
  • Strong experiance in Service Now Ticketing tool, Dashboards and Integration
  • Strong experience with Zscaler ZIA, ZPA and ZDX
  • Strong experience with Vulnerability Management Program
  • Strong experience with Qualys Vulnerability Management Tool
  • Strong experience with multiple network operating systems, including two or more of the following: Cisco iOS, Juniper ScreenOS or Junos, Fortinet FortiOS, CheckPoint GAiA, or Palo Alto Networks PAN-OS
  • Tanium, Rapid 7, Nessus, Nitro ESM, Symantec SEP, Symantec Message labs, Thales encryption, Allgress, Forecpoint, Blue coat, Firepower, Cisco ISE, Carbon Black, Titus, Encase
  • Strong oral, written, and presentation abilities
  • Experiance with M365 Copilot
  • Some experience with Unix/Linux system administration
Job Responsibility
Job Responsibility
  • Will be working as an SME for Zscaler Support in Operations for ZIA, ZPA and ZDX
  • Assess and orchestrate the current and planned security posture for NTT data’s Security infrastructure, providing recommendations for improvement and risk reduction
  • Identify and propose process improvements and identify opportunities for new processes and procedures to reduce risk
  • Support security incident response as required
  • First line responder to reported or detected incidents
  • Perform security research, analysis, security vulnerability assessments and penetration tests
  • Provide security audit and investigation support
  • Monitor and track security systems for Vulnerability and respond to potential security Vulnerability
  • Provide support for the Vulnerability management program
  • Provide 24x7 support as operations team working in shifts
Read More
Arrow Right
New

Security Analyst

Location
Location
India , Bengaluru
Salary
Salary:
Not provided
nttdata.com Logo
NTT DATA
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 4 to 5 years+ in Information Security space
  • Strong experiance in Service Now Ticketing tool, Dashboards and Integration
  • Strong experience with Zscaler ZIA, ZPA and ZDX
  • Strong experience with Vulnerability Management Program
  • Strong experience with Qualys Vulnerability Management Tool
  • Some good to have Experience with Crowdstrike EDR and SIEM
  • Strong experience with multiple network operating systems, including two or more of the following: Cisco iOS, Juniper ScreenOS or Junos, Fortinet FortiOS, CheckPoint GAiA, or Palo Alto Networks PAN-OS
  • Tanium, Rapid 7, Nessus, Nitro ESM, Symantec SEP, Symantec Message labs, Thales encryption, Allgress, Forecpoint, Blue coat, Firepower, Cisco ISE, Carbon Black, Titus, Encase
  • Strong oral, written, and presentation abilities
  • Experiance with M365 Copilot
Job Responsibility
Job Responsibility
  • Will be working as an SME for Zscaler Support in Operations for ZIA, ZPA and ZDX
  • Assess and orchestrate the current and planned security posture for NTT data’s Security infrastructure, providing recommendations for improvement and risk reduction
  • Identify and propose process improvements and identify opportunities for new processes and procedures to reduce risk
  • Support security incident response as required
  • First line responder to reported or detected incidents
  • Perform security research, analysis, security vulnerability assessments and penetration tests
  • Provide security audit and investigation support
  • Monitor and track security systems for Vulnerability and respond to potential security Vulnerability
  • Provide support for the Vulnerability management program
  • Provide 24x7 support as operations team working in shifts
  • Fulltime
Read More
Arrow Right

Petroleum & Corporate Solutions Performance Specialist

We are looking for a Petroleum & Corporate Solutions Performance Specialist for ...
Location
Location
Qatar , Doha
Salary
Salary:
Not provided
lobelia.earth Logo
Lobellia
Expiration Date
July 31, 2027
Flip Icon
Requirements
Requirements
  • Bachelor's degree in Computer Science, Information Systems, or related field
  • 10+ years of experience in Oil and Gas industry
  • 5+ years of experience in application portfolio management or related role
  • Strong knowledge of license optimization tools and license management
  • Strong experience in petroleum & Corporate applications governance and performance management
  • Excellent leadership & communication skills, with the ability to communicate technical concepts to non-technical stakeholders
  • Intermediate skills in planning and coordination
  • Knowledge of IT governance and best practices related to application management
  • Ability to work in a fast-paced environment and manage multiple priorities
  • Excellent communication and interpersonal skills
Job Responsibility
Job Responsibility
  • Develops and maintains an understanding of the company's business processes and systems, and identifies opportunities to improve and optimize them
  • Manages the Petroleum & Corporate applications portfolio, including assessing the adoption of applications, and identifying opportunities for optimization and consolidation
  • Custodian of the Petroleum & Corporate Solutions application portfolio
  • Leads License Managers to drive portfolio optimization
  • Supports, optimizes and manages the Petroleum & Corporate application portfolio
  • Keeps the Petroleum & Corporate applications portfolio/CMDB up to date, by conducting regular reviews of the applications portfolio
  • Collaborate with the Petroleum & Corporate Solutions Leads (business partners) in defining and maintaining the applications portfolio strategy and roadmap
  • Monitors industry trends and best practices related to application portfolio management, and applies them to improve the company's application management practices
  • Runs regular license usage reviews, and provides recommendations of optimization opportunities
  • Tracks license (and contracts) expiry dates on a regular basis
What we offer
What we offer
  • Accommodation
  • Transport
  • Visa & Insurance
  • Fulltime
Read More
Arrow Right
New

Cybersecurity SME Lead

The Cybersecurity SME-Lead serves as the technical lead for all cybersecurity ac...
Location
Location
United States , Fort Belvoir
Salary
Salary:
Not provided
aac.com Logo
AAC
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor's degree in IT, cybersecurity, or related field (or 4 additional years’ experience)
  • Ten (10) years IT experience, including ten (10) years DoD cybersecurity and RMF/NIST A&A experience
  • Leadership experience in federal/DoD cyber teams
  • Hands-on expertise with vulnerability remediation, patch automation (PowerShell, Python)
  • Mastery of DISA STIGs, TCG guides, IAVMs, and all DoD cyber documentation
  • Strong experience with security architecture, segmentation, and zero trust
  • Certifications required: ICS300/OT/ICS cyber
  • Training module or course for: ACAS/Forescout
  • Active DoD Secret Clearance and eligible for IT-II Non-Critical Sensitive (Tier 3)
  • Skilled in Microsoft Excel, Power BI, Power Platform
Job Responsibility
Job Responsibility
  • Lead cybersecurity assessment, authorization, and vulnerability management for large, enterprise DLA networks and systems (NIPRNET, SIPRNET, Operational Technology)
  • Advise and design solutions that adhere to Risk Management Framework (RMF), NIST, and DoD requirements
  • Prepare and review advanced technical documentation, assessments, audits, POA&Ms, and lessons learned
  • Develop scripts, automation tools, and reports for vulnerability management at scale
  • Support DLA cybersecurity inspections and maintain inspection readiness
  • Mentor engineers/analysts and enforce best practices
  • Serve as primary interface with DLA leadership, project managers, and assessment teams
  • Report on compliance, risk, and vulnerability trends
  • Represent contractor in meetings and facilitate knowledge transfer
  • Fulltime
Read More
Arrow Right

Senior Cloud Security Engineer – Cloud Foundation

Yotpo is leading the next era of trust and loyalty in eCommerce. With AI-powered...
Location
Location
Bulgaria , Sofia
Salary
Salary:
Not provided
yotpo.com Logo
Yotpo
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 5+ years of hands-on experience as Cloud Security Engineer, DevSecOps, or similar roles within an AWS environment
  • Expertise in managing cloud security controls (IAM, Security Groups/ACLs, WAF, IDS/IPS, load balancing, proxies, VMs, serverless)
  • Experience securing Kubernetes and containerized workloads
  • Proficiency with Python/Bash scripting and automation
  • Experience with Infrastructure-as-Code (IaC), preferably Terraform, and CI/CD tooling (e.g., GitHub Actions)
  • Strong communication skills to influence and guide teams as a cloud security SME
  • Excellent problem-solving skills for high-complexity environments
  • Excellent written and verbal English
Job Responsibility
Job Responsibility
  • Serve as Cloud Security Subject Matter Expert (SME), actively supporting R&D and product teams in developing secure solutions
  • Design secure cloud architectures and implement practical, automated, and scalable controls across services in partnership with DevOps, R&D, and Product teams
  • Continuously assess cloud security posture, identifying gaps and opportunities to reduce risk and adopt best practices
  • Implement, mature, and automate end-to-end cloud security controls across AWS, Kubernetes, CI/CD pipelines, and self-managed systems
  • Lead and improve vulnerability management workflows
  • communicate vulnerabilities and mitigation strategies to stakeholders, balancing business agility and security
  • Own the full lifecycle of security initiatives from proof of concept (POC) and design to deployment and operation while promoting a security-first mindset
  • Maintain and develop the team knowledge base
  • Stay curious and enjoy working with modern security tools and technologies
What we offer
What we offer
  • Track to success – work in a dynamic organization with ambient and laid-back office atmosphere
  • Individualized career development, rewards, and recognition
  • Work-life balance – 25 days paid vacation with add-ons for loyalty, regular team buildings and celebrations in and outside the country
  • Additional health insurance package
  • Internal mobility program and refer-a-friend program
  • Managing a fixed monthly budget for social benefits thru Re:Benefit – a flexible online benefits solution
  • Food vouchers
  • E-learning portals and knowledge sharing sessions
  • Company backed Hackathons, Tech conferences, workshops events, etc
  • Stocked kitchen and bar
  • Fulltime
Read More
Arrow Right

Security Engineer II

PagerDuty is seeking an Enterprise Security Engineer to join its global IT Opera...
Location
Location
Canada , Toronto
Salary
Salary:
122000.00 - 185000.00 CAD / Year
https://www.pagerduty.com Logo
PagerDuty
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • At least 3 years of experience in the information security industry, with 2+ years in network security or zero-trust, and 2+ years in security architecture or solution experience
  • Knowledge of Information Security concepts, especially in the areas of security threats, analyzing security logs and driving Incident response
  • Knowledge and practical experience in network security and zero-trust
  • Understanding of the IAM cybersecurity landscape, including identity stores, authentication/authorization, strong authentication, and privileged access management capabilities and methodologies
  • Understanding of security technologies and concepts, including SIEM, MDR/XDR, EDR and vulnerability management
  • Understanding of security best practices and frameworks (e.g., MITRE ATT&CK, NIST Cybersecurity Framework)
  • Knowledge of incident response processes
Job Responsibility
Job Responsibility
  • Partner closely with CISO organization to design and implement enterprise IT security architectures and solutions
  • Tracking the evolution of cutting-edge security technologies, and keeping up to date of the latest security threats and trends
  • Focus on enterprise security and zero-trust technology, serving as the principal technical expert in this area within the Enterprise Security department
  • Monitors security alerts and leads the team in identifying and responding to security threats
  • Monitors systems for vulnerabilities, provides prioritization, and drives remediation efforts
  • Working cross-functionally to triage suspicious activity and drive remediation (performing L2-L3 duties as needed)
  • Analyzing threat intelligence feeds to develop metrics, alerts, and techniques to protect against new and emerging attack vectors
  • Develop metrics, thresholds, alerts, dashboards, and incident response playbooks
  • Drive the design and development of automated security response and maintenance solutions
  • Oversee our workstation vulnerability management & endpoint compliance program
What we offer
What we offer
  • Competitive salary
  • Comprehensive benefits package
  • Flexible work arrangements
  • Company equity
  • ESPP (Employee Stock Purchase Program)
  • Retirement or pension plan
  • Generous paid vacation time
  • Paid holidays and sick leave
  • Dutonian Wellness Days & HibernationDuty - companywide paid days off in addition to PTO
  • Paid parental leave: 22 weeks for pregnant parent, 12 weeks for non-pregnant parent
  • Fulltime
Read More
Arrow Right

Oracle DBA

This position is for an Oracle DBA supporting the ALTESS commercial cloud custom...
Location
Location
United States , Alexandria
Salary
Salary:
Not provided
e-9corporation.com Logo
E9 Corporation
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • DOD Secret (Fully Adjudicated) clearance as a minimum
  • Systems Engineer – Senior: Masters +10yrs, or Bachelors +12yrs
  • Systems Engineer – Intermediate: Bachelors +5yrs or Associates +7yrs
  • CompTIA Security+ certification
  • Computing Environment (CE) Certification (i.e., MCSE, Server+, etc.) – can be waived for 30 days after project join date
  • Five or more years of experience (including design, installation, configuration, administration, patching, upgrades, tuning, backup and recovery, and troubleshooting) with the Oracle Enterprise Database in a UNIX environment on physical and virtual servers
  • similar skills are required for MySQL and EDB/PostgreSQL
  • Mid to senior level Oracle DBA experience in a commercial cloud environment
  • Experience with enterprise features of Oracle: RAC, ASM, ASO
  • Security+ (Or equivalent IA cert) and computing environment certification (i.e. Oracle Certified Associate, Professional, Master or equivalent)
Job Responsibility
Job Responsibility
  • Serve as an Oracle DBA subject matter expert (SME) for evaluating customer’s current application database architecture and develop a new architecture to be deployed in Azure
  • Collaborate with internal and external parties to transform high-level technical objectives into comprehensive technical requirements
  • Build and deploy database infrastructure for customer applications
  • Provide sustainment of customer database systems to include installation, patching, upgrades, database schema administration, exports/imports, backup administration and hardening of the database systems
  • Assist with identifying and planning potential new cloud services, features and capabilities
  • Make recommendations for improvements to security, scalability, manageability and performance across a wide variety of network, storage, computer and database technologies
Read More
Arrow Right