Vulnerability Management Specialist – Cloud (Contract)
We are recruiting for an experienced Vulnerability Management Specialist to support a large enterprise cloud environment on a contract basis. This role is hands-on and delivery-focused, working across AWS and GCP to identify, prioritise and reduce security risk at scale.
You will be responsible for end-to-end vulnerability management, from scanning and analysis through to remediation support, reporting and continuous improvement. This is not a pure SOC, GRC or penetration testing role – it requires practical ownership of cloud vulnerability operations.
Key Responsibilities
• Perform cloud vulnerability scanning and analysis across AWS and Google Cloud (GCP)
• Triage and prioritise vulnerabilities based on risk and business impact
• Work with engineering, infrastructure and security teams to support remediation
• Use tools such as Rapid7 (InsightVM / CloudSec) or equivalent (Nessus, Qualys)
• Contribute to vulnerability metrics, dashboards and reporting
• Support incident response activities related to vulnerabilities
• Automate repetitive tasks using Python or PowerShell
• Contribute to process, tooling and standards improvement (ISO 27001, NIST, CIS)
Required Experience
• Proven experience in vulnerability management or cloud security
• Strong hands-on exposure to AWS and/or GCP
• Experience with vulnerability scanning tools (Rapid7 preferred)
• Understanding of cloud security risks, misconfigurations and remediation
• Ability to work with multiple stakeholders in a large environment
Nice to Have
• Scripting and automation experience
• Exposure to enterprise-scale cloud platforms
• Security frameworks and standards knowledge
Hybrid working. Immediate or short notice starters preferred.
Apply now to discuss further
