As the Vulnerability Management Lead, you will oversee both the technical aspects of vulnerability detection and prioritisation, as well as the operational side, including stakeholder communication, cross-functional coordination, compliance, and reporting. You will assess vulnerabilities based on exploitability, manage patching schedules, and ensure robust pre- and post-patch validation. This position reports directly to the Head of Security.

Key Responsibilities

• Lead vulnerability scanning, analysis, prioritisation, and remediation, ensuring alignment with security policies and compliance requirements.
• Collaborate with IT, cloud, engineering, business, and security teams to coordinate patching and remediation with minimal business disruption.
• Draft and distribute clear communication regarding upcoming patching activities.
• Oversee patch testing and validation, ensuring patches are properly tested pre-deployment and verified post-deployment using appropriate tools.
• Maintain oversight of the end-to-end vulnerability management process, ensuring timely resolution and ongoing improvements.

Required Skills & Experience

• 5+ years of experience in vulnerability management or a similar security role, including 2+ years in a leadership position.
• Strong technical knowledge and hands-on experience with vulnerability scanning and assessment tools.
• Familiarity with on-premise, cloud (AWS, Azure), and hybrid environments.
• Ability to communicate effectively with both technical and non-technical stakeholders.
• Proven experience in coordinating patch management across a large organisation and multiple time zones while minimising business disruption.
• Ability to assess vulnerabilities based on risk and exploitability, providing strategic guidance on patching priorities.
• Strong organisational and coordination skills to manage patching schedules, stakeholder engagement, and compliance requirements.