Launch Talent Solutions are seeking a Senior Security Vulnerability Specialist to play a critical role in enhancing and maintaining the organisation's security posture through the effective implementation and continuous improvement of its Vulnerability Management Program. This program is 3 years down the line and part of this role is it to uplift and part of the role is BAU.

Reporting to the Security Operations Manager, the Security Vulnerability Specialist is responsible for leading efforts to identify, assess, and remediate vulnerabilities across systems, applications, and infrastructure. This role ensures that all platforms remain secure, compliant, and aligned with best practices. Communication is key as you will work closely with a variety of technology and security teams to guide secure implantations and focussing strong collaborations. Excellent stakeholder engagement is key.

Key Responsibilities

• Lead the development, execution, and continuous improvement of the Vulnerability Management Program.
• Maintain and enhance the vulnerability management platform, including automation of scanning and reporting processes.
• Provide regular reports and actionable insights on vulnerabilities to technical teams and leadership.
• Track, manage, and escalate vulnerability-related tickets and incidents to resolution.
• Maintain and communicate clear documentation for all vulnerability management processes.
• Drive enhancements and future integrations for the vulnerability management platform.
• Support the development and maintenance of vulnerability-related standards and controls.
• Administer user access and provide training on the vulnerability management platform.
• Develop and maintain security metrics, dashboards, and reports to communicate progress and risks mitigated.
• Mentor and train teams on vulnerability management practices and tools.
• Promote awareness and understanding of security risks and mitigation strategies.
• Track and report on remediation progress and trends. Support compliance with internal policies, standards, and industry regulations.

Knowledge & Experience

• Proven experience with Qualys enterprise vulnerability management platform (one or more modules) - essential
• Familiarity with Microsoft Defender Vulnerability Management and how it works closely with Qualys
• Strong understanding of vulnerability scoring systems (e.g., CVSS) and risk assessment practices.
• Experience in collaborating with technical teams to remediate vulnerabilities and investigate false positives.
• Good working knowledge of cloud environments (e.g., Microsoft Azure, AWS) and patch management processes.
• Exposure to Windows, Linux, and containerised operating environments.
• Experience conducting vulnerability assessments across host, cloud, network, and web applications.
• Ability to prioritise vulnerabilities and track resolution progress.
• Familiarity with standards such as CIS Benchmarks, ACSC ISM, and other recognised frameworks.
• Experience with ServiceNow ITSM is desirable.

If you are interested in this role or what to hear more about the position/tech stack please do reach out to Sophie Garrison: Practice Lead - Cyber Security - [email protected]