Security Engineer
Duration: Temporary
Rate: DOE
We're looking for a Security Engineer to take ownership of the implementation and day-to-day optimisation of a vulnerability management capability built around the Qualys VMDR platform. This role sits at the intersection of hands-on security engineering and governance, ensuring vulnerabilities are identified, prioritised, and managed in a consistent, risk-driven way across the organisation.
Responsibilities:
* Rolling out and configuring the Qualys VMDR platform across multiple environments (on-prem, cloud, hybrid)
* Designing and maintaining operational documentation, including deployment guides, runbooks, and support procedures
* Defining and embedding processes covering:
* Agent and sensor deployment
* Vulnerability scanning cycles and re-scans
* Analysis, validation, and triage of findings
* Remediation tracking, escalation, and follow-up
* Regular and ad-hoc reporting
* Implementing role-based access controls aligned to security, IT, management, and third-party responsibilities
* Building dashboards and reports tailored to different teams, asset groups, and environments
* Ensuring reporting aligns with business risk, asset criticality, and operational priorities
Experience/ Skills:
* Background in cybersecurity, vulnerability management, or infrastructure security
* Proven hands-on experience implementing and operating Qualys VMDR
* Exposure to large-scale or complex IT landscapes (enterprise, hybrid, and/or cloud)
* Solid working knowledge of:
* Windows and Linux operating systems
* Networking concepts and firewall technologies
* Cloud platforms and services
* Experience working within regulated or compliance-driven environments (e.g. ISO 27001, NIS2, SOC 2) is a strong plus