Role Details Job Title: Vulnerability Analyst SC Cleared Location: Gloucester, UK ( onsite) Special Working Conditions Mandatory training and pre joining checks must be completed. The contract will be awarded upon successful completion of all required checks. Candidate must hold an active, transferable SC clearance with a minimum of 3 months validity remaining. Valid Active SC is mandatory. Job Purpose and Primary Objectives The Vulnerability Analyst will be responsible for identifying, analyzing, and managing security vulnerabilities within the organization's IT infrastructure using the Tenable One platform. The role is essential in mitigating security risks, ensuring compliance, and protecting the organization's assets by working closely with internal teams, vendors, and partners. The analyst will provide clear, actionable reports and recommendations to support the timely remediation of vulnerabilities. Key Responsibilities Analyze and manage vulnerabilities using Tenable One platform, working closely with internal teams, partners, and vendors. Generate and deliver vulnerability reports, ensuring they are clear and actionable, based on data from Tenable One. CVE & CVSS Tracking: Monitor vulnerabilities using CVE (Common Vulnerabilities and Exposures) and assess risk levels using the CVSS (Common Vulnerability Scoring System). Collaboration: Work cross-functionally with partners and vendors to manage and remediate vulnerabilities, ensuring timely resolution. Tracking & Documentation: Maintain a complete tracking system for all vulnerabilities and remediation activities, providing regular updates and reports to stakeholders. Compliance: Ensure all vulnerability management practices meet regulatory and security compliance requirements. Key Skills / Knowledge / Experience SC Clearance (Active). Proficiency in using Tenable One for vulnerability scanning, tracking, and reporting. Strong knowledge of CVE and CVSS frameworks. Experience with vulnerability lifecycle management from identification to remediation. Excellent report-writing skills with the ability to translate technical findings into business impact. Strong collaboration skills for working with vendors, partners, and internal teams. Understanding of compliance standards and best practices in Vulnerability Management. Additional Remarks Good to be: Reporting experience in Service Now Tool. Certifications such as CISSP, CISM, or equivalent are a plus. Knowledge of security frameworks. Person Specification Informing Provides the information people need to know to do their jobs and to feel good about being part of the team, unit, and/or the organization. Is able to provide informative and quantifiable information so that accurate decision making can be taken in a timely manner. Problem Solving Uses rigorous logic and methods to solve difficult problems with effective solutions and probes all fruitful sources for answers. Can see hidden problems and is excellent at detailed analysis by looking beyond the obvious and doesn't stop at the first answer. Technical Learning Able to learn new skills quickly and is adept at learning new industry skills and competencies via various methods, including research and attendance at technical courses and seminars etc. Key Relationships & Contacts With Client Establish and maintain excellent relationship with customer stakeholders and develop processes to improve efficiency and effectiveness for the client as an on-going basis. With Line Manager / Senior Stakeholders Maintain regular contact with Line Manager / Senior Stakeholders to update and appraise them on critical business issues and data points. With Offshore Teams Maintain regular contact with required Offshore teams as and when required to update them on current issues and decisions, seeking support for issues that affect the success of the contracts on-going deliverables as and when required. With Peers Develop and maintain positive relationships with other business partners, both internal and external, ensuring best practice advice is shared and maximum efficiency achieved. With Others Effectively and professionally, communicate regularly with all functional teams and other parts of the company as required in the proper performance of such duties by regularly sharing information and building positive relationships to help achieve business goals and objectives within the account. Building positive relationships with external contacts to maximize efficiency and to always represent the business in a professional manner.