Vulnerability Management Engineer

Vulnerability Management Engineer 

A global Financial Services Organisation requires a Contract Vulnerability Management Engineer to take ownership of the full vulnerability lifecycle across a complex enterprise environment. This role will focus on identifying, assessing, prioritising, and driving remediation of security vulnerabilities.

• Day Rate: £500-£600pd
• IR35 Status: Outside
• Duration: 6 months initially
• Travel: Ad hoc to London 

This VM Engineer will have the following previous experience:

• Own the end-to-end vulnerability lifecycle across a large enterprise environment, including identification, assessment, prioritisation, and remediation tracking. Drive remediation of Critical and High-risk vulnerabilities in line with defined SLAs and business risk tolerance.
• Operate across multiple infrastructure domains including Wintel, UNIX/Linux, Storage, and PVDI environments. Ensure systems remain hardened and secure through proactive patching and continuous vulnerability management.
• Use enterprise vulnerability scanning tools such as Qualys, Nessus, and Rapid7 InsightVM to analyse results and convert findings into actionable remediation tasks.
• Partner closely with infrastructure, engineering, and security teams to coordinate fixes, challenge risk acceptances, and respond rapidly to emerging threats and zero-day vulnerabilities.
• Improve operational efficiency through automation using tools such as Ansible, Microsoft SCCM, PowerShell, and Shell scripting, while supporting governance through KPI/KRI reporting and audit readiness.

,