Active SC is required.
Key Responsibilities
* Drive day-to-day vulnerability scanning, triage, reporting, and remediation tracking across multiple business units.
* Serve as the subject matter expert for vulnerability management, contextualising scan results using threat intelligence and business risk.
* Combine vulnerability data with active threat intelligence to prioritise critical exposures and reduce real-world risk.
* Work closely with IT Operations, infrastructure teams, and resolver groups to accelerate patching and explain business impact.
* Guide vulnerability analysts, improve operational processes, and help transition the function from reactive response to proactive risk reduction.
Key Requirements
* Strong hands-on expertise in enterprise vulnerability management within large, complex environments.
* Proven experience with tools such as Tenable, Qualys, or Rapid7, and ability to translate scan output into actionable remediation plans.
* Demonstrated ability to merge CVE data and threat intelligence to drive risk-based prioritisation.
* Experience guiding analysts or leading operational cyber teams with accountability for performance.
* Ability to bridge technical security issues with IT and business stakeholders, driving ownership and faster remediation.