Application Security Lead
Accurate Background
AWSAzureCloudCyber SecurityGoogle Cloud PlatformJavaMongoDBOraclePythonSDLCSQL
Senior Vulnerability Engineer
Moneycorp
full-time
Posted on:
Origin: • 🇬🇧 United Kingdom
Visit company websiteJob Level
Senior
Tech Stack
AWSAzureCloudGoogle Cloud PlatformLinuxSwift
About the role
- Lead Threat & Vulnerability Management across Azure and IaaS: scanning, coverage, risk scoring and SLA-driven remediation
- Provide regulatory-grade reporting for resilience and audits
- Continuously evaluate and improve vulnerability detection capabilities using tools such as Qualys, Tenable, Rapid7, or similar
- Own scanning coverage for Windows, Linux, containers, images and services
- Define SLAs by severity; track remediation and escalate breaches
- Integrate TVM with SIEM/Defender; publish dashboards and coordinate pen-tests
- Provide evidence for PCI/SWIFT/FFIEC; maintain zero-day response playbooks
- Lead the design and implementation of vulnerability scanning, assessment, and reporting processes across cloud and on-prem environments
- Analyze scan results, prioritize findings based on risk, and coordinate remediation efforts with relevant teams
- Define and evolve the vulnerability management program, aligning with industry standards and regulatory requirements
- Serve as a subject matter expert on vulnerability risk, threat exposure, and mitigation strategies
- Provide technical leadership and mentorship to junior security engineers
- Partner with infrastructure, application, and DevOps teams to ensure vulnerabilities are addressed effectively and efficiently
- Communicate risk and remediation plans to technical and non-technical stakeholders, including executive leadership
- Collaborate with compliance and audit teams to support regulatory reporting and evidence collection
- Integrate threat intelligence feeds to contextualize vulnerabilities and prioritize based on exploitability
- Develop automation scripts and workflows to streamline scanning, reporting, and remediation tracking
Requirements
- Extensive experience in vulnerability management, penetration testing, or security engineering
- Deep understanding of common vulnerabilities (e.g., OWASP Top 10, CVEs), exploit techniques, and mitigation strategies
- Hands-on experience with vulnerability scanning tools (e.g., Qualys, Tenable, Rapid7) and SIEM platforms
- Strong knowledge of cloud security (AWS, Azure, GCP), operating systems, and network protocols
- Experience leading Threat & Vulnerability Management across Azure and IaaS
- Experience scanning Windows, Linux, containers, images and services
- Experience defining SLAs by severity and tracking remediation
- Experience integrating TVM with SIEM/Defender and publishing dashboards
- Experience providing evidence for PCI/SWIFT/FFIEC and maintaining zero-day response playbooks
- Ability to analyze scan results, prioritize findings, and coordinate remediation
- Experience developing automation scripts and workflows for scanning, reporting, and remediation tracking
- Excellent analytical, communication, and stakeholder engagement skills
- Experience providing technical leadership and mentorship to junior security engineers
Similar jobs on JobTailor
Senior Security Operations Manager
Pure Storage
AssemblyAWSAzureCloudCyber SecurityGoogle Cloud PlatformLinuxMacOSPythonSplunk
Head of Cybersecurity
P2P Labs & P2P Tech Services
AWSCloudCyber SecurityGoGoogle Cloud PlatformJavaScriptKubernetesOraclePythonSDLC
Cybersecurity Engineer – Splunk SME
Dragonfli Group
AWSAzureCloudCyber SecurityGoogle Cloud PlatformJavaScriptLinuxPythonSplunkSQLUnix
Cloud Architect
Software Mind
AWSAzureCloudGoogle Cloud PlatformLinuxSQLTerraform