Senior Threat and Vulnerability Engineer

ENSEK

Senior Threat and Vulnerability Engineer at ENSEK transforming energy retail operations through innovative security practices. Responsible for managing threat intelligence and enhancing cybersecurity measures within the organization.

Posted 6/19/2026full-time🇬🇧 United KingdomSeniorWebsite

About the role

Key responsibilities & impact

Demonstrate a growth mindset, actively seeking feedback and opportunities to improve.
Foster psychological safety by welcoming diverse opinions and contributing respectfully.
Take ownership of assigned tasks, ensuring proactive communication and follow-through.
Demonstrate resilience and adaptability when facing challenges.
Understand product purpose and customer value, incorporating this understanding into daily work.
Use threat and vulnerability data to inform technical decisions, strategic direction and remediation plans.
Maintain awareness of the commercial and security landscape, ensuring solutions are cost-conscious and proportionate.
Leverage external and internal threat intelligence to proactively inform design decisions, incident response, and remediation planning.
Translate threat landscape intelligence into actionable plans, ensuring appropriate horizon scanning aligned with company growth objectives.
Support and continuously improve Security Incident processes to enable the organisation to respond at pace.
Drive improvement in ENSEK's vulnerability management programme and associated processes.
Communicate threats and risks clearly to non-technical stakeholders, enabling streamlined and prioritised remediation
Continuously identify evolving threats to the organisation's security perimeter.
Assess technical designs using threat modelling methodologies (STRIDE, PASTA, DREAD, etc.) to embed security at the design stage of the Secure Software Delivery Life Cycle.
Drive ENSEK's Vulnerability Management Assessment processes to meet complex and evolving regulatory requirements.

Requirements

What you’ll need

Ability to interpret complex threat intelligence to disseminate to technical and non-technical stakeholders.
Strong commitment to security best practices and alignment with internal policies and regulatory requirements.
Proven ability to perform in-depth technical threat and vulnerability assessments across infrastructure and application code.
Experience proactively utilising internal tooling and industry knowledge to identify vulnerabilities across on-premises infrastructure and SaaS offerings.
Ability to determine and prioritise appropriate remediation pathways for vulnerabilities, weaknesses, and threats.
Ownership of end-to-end vulnerability management — from identification through remediation to eradication.
Actively collect, interpret, and disseminate relevant threat intelligence in real time.
Provide horizon-scanning insights that support ENSEK's ambitious growth plans.
Communicate with internal and external stakeholders on threats relevant to ENSEK's environment.
Upskill the wider team and organisation on evolving threats and assessment methodologies.

Benefits

Comp & perks

25 days’ holiday + bank holidays
Option to buy or sell 5 extra annual leave days per year
Vitality Health Insurance, including private healthcare, virtual GP access, mental‑health support and wellbeing perks (50% off gym memberships -Virgin Active, Nuffield, PureGym)
Pension with 5% matched contribution
Regular team‑wide and company‑wide events
2 volunteering days per year to give back
Remote‑first working environment with offices in London and Nottingham

ATS Keywords

✓ Tailor your resume

Applicant Tracking System Keywords

Tip: use these terms in your resume and cover letter to boost ATS matches.

Hard Skills & Tools

threat intelligencevulnerability assessmentthreat modellingSecure Software Delivery Life Cycleremediation planningincident responsevulnerability managementsecurity best practicesregulatory compliancehorizon scanning

Soft Skills

growth mindsetpsychological safetyproactive communicationresilienceadaptabilityownershipclear communicationteam upskillingcollaborationinterpretation of complex information