What you’ll be doing
as a Cyber Threat & Vulnerability Analyst:
As a Cyber Threat & Vulnerability Analyst, you’ll be responsible for supporting and improving how we identify, assess, and manage cyber vulnerabilities across the organisation. You’ll help shape how we reduce cyber risk and strengthen our overall security posture.
1. Support end-to-end vulnerability management across IT and operational technology environments
2. Help shape and improve threat and vulnerability management processes, frameworks, and ways of working
3. Work with technical and business teams to prioritise and remediate vulnerabilities based on risk
4. Investigate new vulnerabilities and recommend clear, practical mitigation actions
5. Support integration of vulnerability scanning tools into existing systems and processes
6. Build and maintain dashboards that show cyber risk, trends, and remediation progress in a clear way
7. Contribute to threat assessments and support proactive threat hunting activities
8. Help ensure alignment with standards such as General Data Protection Regulation, Payment Card Industry Data Security Standard, Network and Information Systems Regulations, and International Organization for Standardization 27001
9. Monitor vulnerability management tools and processes, identifying ways to improve effectiveness and reduce risk
Base location: Reading – Clearwater Court
Working pattern or hours: 36 hours Monday to Friday, hybrid working
Necessary requirements for the role: Must be eligible to obtain Counter Terrorist Check security clearance
What you should bring to the role
The must-haves (essential criteria) for this opportunity include:
10. Experience supporting vulnerability management, patching, or cyber risk reduction in a complex environment
11. Understanding of cyber security concepts, including vulnerability management and threat assessment approaches
12. Ability to work with technical teams to support remediation of security issues
13. Experience or understanding of security tooling such as vulnerability scanners or similar technologies
14. Ability to communicate technical issues clearly to both technical and non-technical audiences
15. Awareness of how security risks are managed across different technology environments (for example cloud, servers, end-user devices, or operational systems)
16. A relevant cyber security qualification or industry certification such as Certified Information Systems Security Professional, Certified Information Security Manager, or Certified Cloud Security Professional
Extra qualities that would be a great fit for our team:
17. Experience working with large enterprise or critical infrastructure environments
18. Familiarity with threat intelligence or threat modelling approaches
19. Experience supporting or improving security processes and governance
20. Exposure to operational technology or legacy infrastructure environments
21. Additional cyber security certifications such as Certified Threat Intelligence Analyst, Certified Vulnerability Assessor, Offensive Security Certified Professional, or similar
What’s in it for you?
22. Competitive salary up to £65,000 per annum depending on experience
23. Annual Leave - 26 days holiday per year increasing to 30 with the length of service (plus bank holidays)
24. Performance-related pay plan directly linked to company performance measures and targets
25. Generous Pension Scheme through AON
26. Access to lots of benefits to help you take care of you and your family’s health and wellbeing, and your finances – from annual health MOTs and access to physiotherapy and counselling, to Cycle to Work schemes, shopping vouchers and life assurance.