98 Vulnerability Management jobs in London

Description

Embark on a Mission to Fortify Amazon's Defenses as a Security Engineer with the Vulnerability Management & Remediation Operations team!

Amazon Security is seeking a Security Engineer to join our Vulnerability Management and Remediation Operations (VMRO) team in London, UK. The VMRO team is responsible for discovering, assessing, triaging, detecting, and driving the remediation of vulnerabilities across the Amazon ecosystem



Key job responsibilities

- Analyse public and private vulnerability disclosures and exploit code

- Deeply understand and assess the technical details and potential impact of vulnerabilities across Amazon's infrastructure, services, and applications.

- Investigate and triage vulnerabilities, identifying severity and the scope of potential impact to Amazon.

- Support response and remediation efforts, assisting builder teams to fix their security issues in a timely manner

- Engineer high quality, scalable, and accurate vulnerability detection mechanisms

- Design and implement automation, tools and workflows to enhance our operations capabilities.

- Be part of a global team and participate in periodic on-call responsibilities to ensure the continuous monitoring and remediation of vulnerabilities.

- Experience programming in Python, Ruby, Go, Swift, Java, .Net, C++ or similar object oriented language and SQL

Basic Qualifications

- Bachelor's degree in computer science or equivalent

- Knowledge of networking protocols such as HTTP, DNS and TCP/IP

- Experience programming in Python, Ruby, Go, Swift, Java, .Net, C++ or similar object oriented language

- 5 years security engineering experience in system, network, and/or application security

- 5 years experience developing vulnerability assessment tests with Python or Java.

- 5 years experience improving accuracy of vulnerability detection mechanisms across a diverse technical ecosystem

- 3 years experience troubleshooting networking, operating systems, applications, or cloud services.

- 3 years experience building cloud-based services

Preferred Qualifications

- Experience with AWS products and services

- Experience with any combination of the following: threat modeling, secure coding, identity management and authentication, software development, cryptography, system administration and network security



Amazon is an equal opportunities employer. We believe passionately that employing a diverse workforce is central to our success. We make recruiting decisions based on your experience and skills. We value your passion to discover, invent, simplify and build. Protecting your privacy and the security of your data is a longstanding top priority for Amazon. Please consult our Privacy Notice ( ) to know more about how we collect, use and transfer the personal data of our candidates.



Amazon is an equal opportunity employer and does not discriminate on the basis of protected veteran status, disability, or other legally protected status.



Our inclusive culture empowers Amazonians to deliver the best results for our customers. If you have a disability and need a workplace accommodation or adjustment during the application and hiring process, including support for the interview or onboarding process, please visit for more information. If the country/region youu2019re applying in isnu2019t listed, please contact your Recruiting Partner.

Description
Embark on a Mission to Fortify Amazon's Defenses as a Security Engineer with the Vulnerability Management & Remediation Operations team!
Amazon Security is seeking a Security Engineer to join our Vulnerability Management and Remediation Operations (VMRO) team in London, UK. The VMRO team is responsible for discovering, assessing, triaging, detecting, and driving the remediation of vulnerabilities across the Amazon ecosystem
Key job responsibilities
- Analyse public and private vulnerability disclosures and exploit code
- Deeply understand and assess the technical details and potential impact of vulnerabilities across Amazon's infrastructure, services, and applications.
- Investigate and triage vulnerabilities, identifying severity and the scope of potential impact to Amazon.
- Support response and remediation efforts, assisting builder teams to fix their security issues in a timely manner
- Engineer high quality, scalable, and accurate vulnerability detection mechanisms
- Design and implement automation, tools and workflows to enhance our operations capabilities.
- Be part of a global team and participate in periodic on-call responsibilities to ensure the continuous monitoring and remediation of vulnerabilities.
- Experience programming in Python, Ruby, Go, Swift, Java, .Net, C++ or similar object oriented language and SQL
Basic Qualifications
- Bachelor's degree in computer science or equivalent
- Knowledge of networking protocols such as HTTP, DNS and TCP/IP
- Experience programming in Python, Ruby, Go, Swift, Java, .Net, C++ or similar object oriented language
- 5 years security engineering experience in system, network, and/or application security
- 5 years experience developing vulnerability assessment tests with Python or Java.
- 5 years experience improving accuracy of vulnerability detection mechanisms across a diverse technical ecosystem
- 3 years experience troubleshooting networking, operating systems, applications, or cloud services.
- 3 years experience building cloud-based services
Preferred Qualifications
- Experience with AWS products and services
- Experience with any combination of the following: threat modeling, secure coding, identity management and authentication, software development, cryptography, system administration and network security
Amazon is an equal opportunities employer. We believe passionately that employing a diverse workforce is central to our success. We make recruiting decisions based on your experience and skills. We value your passion to discover, invent, simplify and build. Protecting your privacy and the security of your data is a longstanding top priority for Amazon. Please consult our Privacy Notice ( ) to know more about how we collect, use and transfer the personal data of our candidates.
Amazon is an equal opportunity employer and does not discriminate on the basis of protected veteran status, disability, or other legally protected status.
Our inclusive culture empowers Amazonians to deliver the best results for our customers. If you have a disability and need a workplace accommodation or adjustment during the application and hiring process, including support for the interview or onboarding process, please visit for more information. If the country/region you're applying in isn't listed, please contact your Recruiting Partner.

Description

Embark on a Mission to Fortify Amazon's Defenses as a Support Engineer with the Vulnerability Management & Remediation Operations team!



Amazon Security is seeking an experienced and innovative Support Engineer specialising in cybersecurity to join our Vulnerability Management and Remediation Operations (VMRO) team in London, UK. The VMRO team is a global team that is responsible for assessing, detecting, and driving the remediation of vulnerabilities across the Amazon ecosystem.



Key job responsibilities

- Support vulnerability detection campaigns by working closely with Campaign Owners to launch and continuously improve the quality of campaigns across Amazon.

- Assess and negotiate with customers to drive down security risk by engaging with teams to remediate critical security vulnerabilities in their environments.

- Collaborate with builder teams to implement security fixes and improvements.

- Understand technical details of vulnerabilities affecting Amazon's infrastructure, services, and applications.

- Review and analyse common vulnerability disclosures and assist in evaluating potential impacts.

- Help triage vulnerabilities and contribute to impact and detection logic assessments.

- Contribute to the development of automation of repetitive tasks.

- Actively participate in updating documentation and sharing knowledge across your global peers.

- Participate in an on-call rotation to support continuous monitoring and remediation of vulnerabilities.



If you're excited about the opportunity to make a significant impact on the security of one of the world's largest and most complex technology ecosystems from our London office, we'd love to hear from you!



About the team

Why Amazon Security?



At Amazon, security is central to maintaining customer trust and delivering delightful customer experiences. Our organization is responsible for creating and maintaining a high bar for security across all of Amazonu2019s products and services. We offer talented security professionals the chance to accelerate their careers with opportunities to build experience in a wide variety of areas including cloud, devices, retail, entertainment, healthcare, operations, and physical stores.



Inclusive Team Culture



In Amazon Security, itu2019s in our nature to learn and be curious. Ongoing DEI events and learning experiences inspire us to continue learning and to embrace our uniqueness. Addressing the toughest security challenges requires that we seek out and celebrate a diversity of ideas, perspectives, and voices.



Training & Career Growth



Weu2019re continuously raising our performance bar as we strive to become Earthu2019s Best Employer. Thatu2019s why youu2019ll find endless knowledge-sharing, training, and other career-advancing resources here to help you develop into a better-rounded professional.



Work/Life Balance



We value work-life harmony. Achieving success at work should never come at the expense of sacrifices at home, which is why we strive for flexibility as part of our working culture. When we feel supported in the workplace and at home, thereu2019s nothing we canu2019t achieve.



Mentorship & Career Growth



Weu2019re continuously raising our performance bar as we strive to become Earthu2019s Best Employer. Thatu2019s why youu2019ll find endless knowledge-sharing, mentorship and other career-advancing resources here to help you develop into a better-rounded professional.

Basic Qualifications

- Bachelor's degree in Computer Science, Computer Engineering, Software Engineering, Cybersecurity or related technical degree or equivalent; or 3+ years equivalent technology experience

- Strong understanding of security concepts with a security mindset.

- Strong understanding of computer and network weaknesses and mitigating controls.

- Strong ability to understand risk and prioritisation in the context of the business.

- Ability to communicate effectively within technical and business settings.

- Ability to document learnings and contribute to knowledge sharing and runbook building.

- Experience with secure-cloud configuration, (CloudTrail, AWS Config), cloud-security technologies (VPC, Security Groups, WAF etc.), and cloud-permission systems (IAM).

- Experience with identity and access concepts, with technologies to secure production and corporate access, (SSO, SAML) and with Federated Identity, RBAC, authentication and authorisation solution, encryption, SSL, and related.

Preferred Qualifications

- 2+ years of experience in fields such a Security Operations, technology audit, or security vulnerability lifecycle.

- Ability to prioritise multiple tasks and projects.

- Have a passion to learn and thrive in a dynamic and constantly changing environment.

- Experience with virtualisation technologies, especially with AWS services.

- Relevant industry certifications such as CISSP, SANS, ISC2, CompTia, etc.

- Maturity, judgment, negotiation/influence skills, analytical skills, and leadership skills.

- Demonstrated knowledge of web protocols, common attacks, and working knowledge of Linux/Unix tools and architecture.

- Understanding of best practices across multiple security disciplines/domains.

- Demonstrated ability to work autonomously with a Bias for Action, critical and creative thinking.

- Demonstrated ability to collaborate, develop partnerships, and work effectively as a member of a global, inclusive team.



Amazon is an equal opportunities employer. We believe passionately that employing a diverse workforce is central to our success. We make recruiting decisions based on your experience and skills. We value your passion to discover, invent, simplify and build. Protecting your privacy and the security of your data is a longstanding top priority for Amazon. Please consult our Privacy Notice ( ) to know more about how we collect, use and transfer the personal data of our candidates.



Amazon is an equal opportunity employer and does not discriminate on the basis of protected veteran status, disability, or other legally protected status.



Our inclusive culture empowers Amazonians to deliver the best results for our customers. If you have a disability and need a workplace accommodation or adjustment during the application and hiring process, including support for the interview or onboarding process, please visit for more information. If the country/region youu2019re applying in isnu2019t listed, please contact your Recruiting Partner.

Description

Embark on a Mission to Fortify Amazon's Defenses as a Support Engineer with the Vulnerability Management & Remediation Operations team!



Amazon Security is seeking an experienced and innovative Support Engineer specialising in cybersecurity to join our Vulnerability Management and Remediation Operations (VMRO) team in London, UK. The VMRO team is a global team that is responsible for assessing, detecting, and driving the remediation of vulnerabilities across the Amazon ecosystem.



Key job responsibilities

- Support vulnerability detection campaigns by working closely with Campaign Owners to launch and continuously improve the quality of campaigns across Amazon.

- Assess and negotiate with customers to drive down security risk by engaging with teams to remediate critical security vulnerabilities in their environments.

- Collaborate with builder teams to implement security fixes and improvements.

- Understand technical details of vulnerabilities affecting Amazon's infrastructure, services, and applications.

- Review and analyse common vulnerability disclosures and assist in evaluating potential impacts.

- Help triage vulnerabilities and contribute to impact and detection logic assessments.

- Contribute to the development of automation of repetitive tasks.

- Actively participate in updating documentation and sharing knowledge across your global peers.

- Participate in an on-call rotation to support continuous monitoring and remediation of vulnerabilities.



If you're excited about the opportunity to make a significant impact on the security of one of the world's largest and most complex technology ecosystems from our London office, we'd love to hear from you!



About the team

Why Amazon Security?



At Amazon, security is central to maintaining customer trust and delivering delightful customer experiences. Our organization is responsible for creating and maintaining a high bar for security across all of Amazonu2019s products and services. We offer talented security professionals the chance to accelerate their careers with opportunities to build experience in a wide variety of areas including cloud, devices, retail, entertainment, healthcare, operations, and physical stores.



Inclusive Team Culture



In Amazon Security, itu2019s in our nature to learn and be curious. Ongoing DEI events and learning experiences inspire us to continue learning and to embrace our uniqueness. Addressing the toughest security challenges requires that we seek out and celebrate a diversity of ideas, perspectives, and voices.



Training & Career Growth



Weu2019re continuously raising our performance bar as we strive to become Earthu2019s Best Employer. Thatu2019s why youu2019ll find endless knowledge-sharing, training, and other career-advancing resources here to help you develop into a better-rounded professional.



Work/Life Balance



We value work-life harmony. Achieving success at work should never come at the expense of sacrifices at home, which is why we strive for flexibility as part of our working culture. When we feel supported in the workplace and at home, thereu2019s nothing we canu2019t achieve.



Mentorship & Career Growth



Weu2019re continuously raising our performance bar as we strive to become Earthu2019s Best Employer. Thatu2019s why youu2019ll find endless knowledge-sharing, mentorship and other career-advancing resources here to help you develop into a better-rounded professional.

Basic Qualifications

- Bachelor's degree in Computer Science, Computer Engineering, Software Engineering, Cybersecurity or related technical degree or equivalent; or 3+ years equivalent technology experience

- Strong understanding of security concepts with a security mindset.

- Strong understanding of computer and network weaknesses and mitigating controls.

- Strong ability to understand risk and prioritisation in the context of the business.

- Ability to communicate effectively within technical and business settings.

- Ability to document learnings and contribute to knowledge sharing and runbook building.

- Experience with secure-cloud configuration, (CloudTrail, AWS Config), cloud-security technologies (VPC, Security Groups, WAF etc.), and cloud-permission systems (IAM).

- Experience with identity and access concepts, with technologies to secure production and corporate access, (SSO, SAML) and with Federated Identity, RBAC, authentication and authorisation solution, encryption, SSL, and related.

Preferred Qualifications

- 2+ years of experience in fields such a Security Operations, technology audit, or security vulnerability lifecycle.

- Ability to prioritise multiple tasks and projects.

- Have a passion to learn and thrive in a dynamic and constantly changing environment.

- Experience with virtualisation technologies, especially with AWS services.

- Relevant industry certifications such as CISSP, SANS, ISC2, CompTia, etc.

- Maturity, judgment, negotiation/influence skills, analytical skills, and leadership skills.

- Demonstrated knowledge of web protocols, common attacks, and working knowledge of Linux/Unix tools and architecture.

- Understanding of best practices across multiple security disciplines/domains.

- Demonstrated ability to work autonomously with a Bias for Action, critical and creative thinking.

- Demonstrated ability to collaborate, develop partnerships, and work effectively as a member of a global, inclusive team.



Amazon is an equal opportunities employer. We believe passionately that employing a diverse workforce is central to our success. We make recruiting decisions based on your experience and skills. We value your passion to discover, invent, simplify and build. Protecting your privacy and the security of your data is a longstanding top priority for Amazon. Please consult our Privacy Notice ( ) to know more about how we collect, use and transfer the personal data of our candidates.



Amazon is an equal opportunity employer and does not discriminate on the basis of protected veteran status, disability, or other legally protected status.



Our inclusive culture empowers Amazonians to deliver the best results for our customers. If you have a disability and need a workplace accommodation or adjustment during the application and hiring process, including support for the interview or onboarding process, please visit for more information. If the country/region youu2019re applying in isnu2019t listed, please contact your Recruiting Partner.

Description
Embark on a Mission to Fortify Amazon's Defenses as a Support Engineer with the Vulnerability Management & Remediation Operations team!
Amazon Security is seeking an experienced and innovative Support Engineer specialising in cybersecurity to join our Vulnerability Management and Remediation Operations (VMRO) team in London, UK. The VMRO team is a global team that is responsible for assessing, detecting, and driving the remediation of vulnerabilities across the Amazon ecosystem.
Key job responsibilities
- Support vulnerability detection campaigns by working closely with Campaign Owners to launch and continuously improve the quality of campaigns across Amazon.
- Assess and negotiate with customers to drive down security risk by engaging with teams to remediate critical security vulnerabilities in their environments.
- Collaborate with builder teams to implement security fixes and improvements.
- Understand technical details of vulnerabilities affecting Amazon's infrastructure, services, and applications.
- Review and analyse common vulnerability disclosures and assist in evaluating potential impacts.
- Help triage vulnerabilities and contribute to impact and detection logic assessments.
- Contribute to the development of automation of repetitive tasks.
- Actively participate in updating documentation and sharing knowledge across your global peers.
- Participate in an on-call rotation to support continuous monitoring and remediation of vulnerabilities.
If you're excited about the opportunity to make a significant impact on the security of one of the world's largest and most complex technology ecosystems from our London office, we'd love to hear from you!
About the team
Why Amazon Security?
At Amazon, security is central to maintaining customer trust and delivering delightful customer experiences. Our organization is responsible for creating and maintaining a high bar for security across all of Amazon's products and services. We offer talented security professionals the chance to accelerate their careers with opportunities to build experience in a wide variety of areas including cloud, devices, retail, entertainment, healthcare, operations, and physical stores.
Inclusive Team Culture
In Amazon Security, it's in our nature to learn and be curious. Ongoing DEI events and learning experiences inspire us to continue learning and to embrace our uniqueness. Addressing the toughest security challenges requires that we seek out and celebrate a diversity of ideas, perspectives, and voices.
Training & Career Growth
We're continuously raising our performance bar as we strive to become Earth's Best Employer. That's why you'll find endless knowledge-sharing, training, and other career-advancing resources here to help you develop into a better-rounded professional.
Work/Life Balance
We value work-life harmony. Achieving success at work should never come at the expense of sacrifices at home, which is why we strive for flexibility as part of our working culture. When we feel supported in the workplace and at home, there's nothing we can't achieve.
Mentorship & Career Growth
We're continuously raising our performance bar as we strive to become Earth's Best Employer. That's why you'll find endless knowledge-sharing, mentorship and other career-advancing resources here to help you develop into a better-rounded professional.
Basic Qualifications
- Bachelor's degree in Computer Science, Computer Engineering, Software Engineering, Cybersecurity or related technical degree or equivalent; or 3+ years equivalent technology experience
- Strong understanding of security concepts with a security mindset.
- Strong understanding of computer and network weaknesses and mitigating controls.
- Strong ability to understand risk and prioritisation in the context of the business.
- Ability to communicate effectively within technical and business settings.
- Ability to document learnings and contribute to knowledge sharing and runbook building.
- Experience with secure-cloud configuration, (CloudTrail, AWS Config), cloud-security technologies (VPC, Security Groups, WAF etc.), and cloud-permission systems (IAM).
- Experience with identity and access concepts, with technologies to secure production and corporate access, (SSO, SAML) and with Federated Identity, RBAC, authentication and authorisation solution, encryption, SSL, and related.
Preferred Qualifications
- 2+ years of experience in fields such a Security Operations, technology audit, or security vulnerability lifecycle.
- Ability to prioritise multiple tasks and projects.
- Have a passion to learn and thrive in a dynamic and constantly changing environment.
- Experience with virtualisation technologies, especially with AWS services.
- Relevant industry certifications such as CISSP, SANS, ISC2, CompTia, etc.
- Maturity, judgment, negotiation/influence skills, analytical skills, and leadership skills.
- Demonstrated knowledge of web protocols, common attacks, and working knowledge of Linux/Unix tools and architecture.
- Understanding of best practices across multiple security disciplines/domains.
- Demonstrated ability to work autonomously with a Bias for Action, critical and creative thinking.
- Demonstrated ability to collaborate, develop partnerships, and work effectively as a member of a global, inclusive team.
Amazon is an equal opportunities employer. We believe passionately that employing a diverse workforce is central to our success. We make recruiting decisions based on your experience and skills. We value your passion to discover, invent, simplify and build. Protecting your privacy and the security of your data is a longstanding top priority for Amazon. Please consult our Privacy Notice ( ) to know more about how we collect, use and transfer the personal data of our candidates.
Amazon is an equal opportunity employer and does not discriminate on the basis of protected veteran status, disability, or other legally protected status.
Our inclusive culture empowers Amazonians to deliver the best results for our customers. If you have a disability and need a workplace accommodation or adjustment during the application and hiring process, including support for the interview or onboarding process, please visit for more information. If the country/region you're applying in isn't listed, please contact your Recruiting Partner.

Why work for us?
A career at Janus Henderson is more than a job, it's about investing in a brighter future together.
Our Mission at Janus Henderson is to help clients define and achieve superior financial outcomes through differentiated insights, disciplined investments, and world-class service. We will do this by protecting and growing our core business, amplifying our strengths and diversifying where we have the right.
Our Values are key to driving our success, and are at the heart of everything we do:
Clients Come First - Always | Execution Supersedes Intention | Together We Win | Diversity Improves Results | Truth Builds Trust
If our mission, values, and purpose align with your own, we would love to hear from you!
Your opportunity
+ Lead the identification, assessment, and remediation of vulnerabilities across applications, infrastructure, and cloud environments, collaborating with development and operations teams for effective solutions.
+ Optimise vulnerability scanning profiles, dashboards, and reports to ensure comprehensive coverage and actionable insights, while analysing data to prioritise risks and provide clear remediation guidance.
+ Contribute to the continuous improvement of vulnerability management processes, policies, and procedures, including supporting incident response activities and aligning with industry best practices.
+ Identify potential security risks and document clear, actionable remediation options or mitigating controls aligned with industry best practices.
+ Contribute to other cybersecurity initiatives, utilizing our standards and procedures while adhering to industry best practices.
+ Perform risk assessments and execute system tests to ensure proper functioning of data processing activities and security measures.
+ Ensure that security controls in both new and existing computer systems comply with established security policies and guidelines.
+ Assist in incorporating regulatory compliance requirements, such as SOX and GLBA, into the organization's security roadmap.
+ Conduct thorough security incident investigations, including maintaining chain of custody, implementing containment measures, performing root cause analysis, and identifying preventive strategies.
+ Supporting incident response with vulnerability intelligence during security events.
+ Participate in the Information Security on-call rotation
What to expect when you join our firm
+ Hybrid working and reasonable accommodations
+ Generous Holiday policies
+ Excellent Health and Wellbeing benefits including corporate membership to ClassPass
+ Paid volunteer time to step away from your desk and into the community
+ Support to grow through professional development courses, tuition/qualification reimbursement and more
+ All-inclusive approach to Diversity, Equity and Inclusion
+ Maternal/paternal leave benefits and family services
+ Complimentary subscription to Headspace - the mindfulness app
+ All employee events including networking opportunities and social activities
+ Lunch allowance for use within our subsidized onsite canteen
Must have skills
+ 3+ years in an Information Security role with proven experience in Vulnerability Management
+ Proven hands-on experience with vulnerability management platforms and in a vulnerability management role
+ Experience in information security incident response
+ Knowledge of vulnerability management (remediation and configuration) and other security scanner tools.
+ Strong understanding of vulnerability assessment methodologies and risk scoring
+ Strong collaboration skills working with application and infrastructure teams within a security context
+ In-depth working knowledge of security best practices and frameworks (e.g., MITRE ATT&CK, OWASP Top 10, NIST)
+ Excellent verbal and written communication skills
+ Ability to manage multiple projects and tasks.
+ Analytical ability to capture and summarise information, find solutions to various tactical and strategic problems and prioritise work
+ Exposure to public cloud infrastructure (SaaS, IaaS, and PaaS)
+ Familiarity with patch management processes and tools
Nice to have skills
+ 5+ years of experience within Incident Response and Vulnerability Management
+ Knowledge of Tenable.sc and/or Tenable.io
+ Knowledge of cloud security vulnerabilities and associated scanning techniques
+ Experience with scripting or automation to enhance vulnerability management processes (e.g. Python) and to drive efficiency and innovation
+ Relevant Information Security certifications (e.g. CompTIA Security+, CySA+, CEH, SANS, Cloud Certifications).
Supervisory responsibilities
+ No
Potential for growth
+ Mentoring
+ Leadership development programs
+ Regular training
+ Career development services
+ Continuing education courses
You will be expected to understand the regulatory obligations of the firm, and abide by the regulated entity requirements and JHI policies applicable for your role.
At Janus Henderson Investors we're committed to an inclusive and supportive environment. We believe diversity improves results and we welcome applications from all backgrounds. Don't worry if you don't think you tick every box, we still want to hear from you! We understand everyone has different commitments and while we can't accommodate every flexible working request we're happy to be asked about work flexibility and our hybrid working environment. If you need any reasonable accommodations during our recruitment process, please get in touch and let us know at
#LI-LN2 #LI-HYBRID
Janus Henderson (including its subsidiaries) will not maintain existing or sponsor new industry registrations or licenses where not supported by an employee's job functions (as determined by Janus Henderson at its sole discretion).
All applicants must be willing to comply with the provisions of Janus Henderson Investment Advisory Code of Ethics related to personal securities activities and other disclosure and certification requirements, including past political contributions and political activities. Applicants' past political contributions or activity may impact applicants' eligibility for this position. Janus Henderson is an equal opportunity /Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability or veteran status. All applications are subject to background checks.

We are Vitesse – the treasury and payment partner of choice for insurance.  

Formed in 2014 by a team of proven FinTech entrepreneurs, we are an FCA-regulated business providing global claim funds management and payment solutions. Operating one of the largest banking and payment settlement networks in the world, we give our customers direct access to 200 countries and currencies. Through a single integration, insurers can use this network to pay claims in as fast as 45 seconds and deliver a superior claimant experience. Our market-leading treasury proposition provides insurers with transparency and control over their claim funds, even when delegated to third-parties, allowing them to have their money in the right place, at the right time, to make that all-important payment when customers need it most.

With over 260 employees across our London headquarters, Europe, and the US, $93m Series C funding secured, our US licence approved and exceeding £15bn in processed transactions, we are only just getting started.

We are collaborative, customer centric and work with integrity, whilst partnering with some of the biggest insurance leaders including Lloyd’s of London and Many Pets. We take huge pride in our company culture, ensuring that everyone has a part to play, an opportunity to be heard, be involved, and the ability to make a real difference.  As we continue to scale up, we want like-minded humans to join us on this exciting journey. Are you ready? 

Your Mission:

We are seeking a skilled and motivated Information Security Analyst to join our team, reporting into the CISO. You will play a crucial role in safeguarding our organisations digital assets and infrastructure from cyber threats. You will be responsible for analysing security measures, identifying vulnerabilities, and help implement effective solutions to mitigate risks.

This role has a requirement for the jobholder to be part of an out of hours call-out rota, which will usually be 1 in 4 or 5 weeks, in addition to being available for short-term assignments in the US to support our North American business.

The role will require at least 2 days onsite in our London office.

The ideal candidate will have a strong understanding of information security principles, excellent analytical skills, and the ability to adapt to evolving threats in the cybersecurity landscape.

Your Responsibilities:

Governance: Risk / Compliance / Assurance:

• Monitor security systems including intrusion detection, firewalls, and SIEM. Collaborate with our external SOC to detect and respond to security incidents in a timely manner.
• Participate in incident response activities, including incident triage, containment, eradication, and recovery efforts.
• Conduct thorough investigations of security incidents and provide detailed reports on findings and recommendations for remediation.

• Help contribute to regular security assessments and audits to identify vulnerabilities and weaknesses in systems, networks, devices, and applications.
• Serve as a subject matter expert on security-related matters, providing guidance and support to other teams and departments as needed, and as reported through the help desk system.
• Collaborate with IT teams and other stakeholders, contributing to the design and implementation of security controls and measures to protect against cyber threats.
• Stay up to date with the latest security trends, technologies, and best practices, and provide recommendations for continuous improvement.
• Assist with the management of security awareness training and workshops for employees to educate them about security risks and best practices for maintaining a secure work environment.
• Participate in the development and maintenance of disaster recovery plans to ensure the organisation's ability to respond to and recover from security incidents.
• Collaborate with internal teams during due diligence exercises to ensure that key security controls are documented as part of each submission.

Requirements

• Certifications such as CISSP, CISM, or CompTIA Security+, certifications are highly desirable.

• Proven experience working in information security, with a good understanding of security principles, protocols, and technologies.
• Experience with information security standards including ISO 27001, NIST and Cyber Essentials.
• Experience with security assessment tools and techniques, including vulnerability scanning and penetration testing.
• Good understanding of Microsoft Azure, Office 365 and Microsoft E5 security tooling.
• Strong analytical and problem-solving skills, with the ability to analyse complex systems and identify security risks and vulnerabilities.
• Excellent communication and interpersonal skills, with the ability to effectively convey technical information to non-technical stakeholders.
• Ability to work independently and collaboratively in a fast-paced environment, with a strong sense of accountability and attention to detail.
• Sound judgment and decision-making abilities, especially in high-pressure situations requiring quick and accurate assessments.
• High ethical standards and a commitment to maintaining confidentiality.

Benefits

• 25 days Holiday per year (increasing by 1 day per years' service, up to 30 days) + Bank Holidays  
• Hybrid working arrangements – minimum 2 days in the office, Tuesday - Thursday 
• Contributory pension scheme  
• Enhanced Parental leave   
• Cycle to Work Scheme  
• Private Medical Insurance with AXA 
• Unlimited access to therapy sessions through our partner, Oliva   
• Discounted Gym membership through Gympass 
• Financial Coaching with Octopus Wealth  
• 2 days of volunteering leave per year  
• Sabbatical after 5 years’ service   
• Life Assurance - MetLife (UK employees only)
• Ongoing Learning and Development to support you reach your career goals  

We are Vitesse – the payment provider of choice for the insurance and treasury industry.  

Formed in 2014 by a team of proven FinTech entrepreneurs, we are an FCA regulated payments business that is driven to be the payment partner of choice for the insurance market, by providing global payment services and treasury optimisation.  Operating one of the largest domestic banking and payment settlement networks in the world, we give our customers direct access to more than 170 countries and territories, covering over 110 currencies. Through a single integration, insurers can use this network to pay claims in as fast as 45 seconds, delivering a better customer experience to their claimants.  Our market-leading treasury optimisation service brings complete control and transparency to insurers and allows them to have their money in the right place, at the right time, to make that all important payment - fast, and when their customers need it most.   

With now over 160 employees across Europe and our London headquarters, $26m series B funding in 2022 in the bag and approaching £8bn in processed transactions, we are only just getting started.     

We are collaborative, customer centric and work with integrity, whilst partnering with some of the biggest insurance leaders including Lloyd’s of London and Many Pets. We take huge pride in our company culture, ensuring that everyone has a part to play, an opportunity to be heard, be involved, and the ability to make a real difference.   

As we continue to scale up, we want like-minded humans to join us on this exciting journey.  Are you ready?  

Vitesse at our best – our values 

The Vitesse values are a true reflection of what it takes to thrive in our business, so it’s important to us that any employee who joins our business is aligned with these 3 attributes 

Confident Humility 

We don’t do ego and we know that unless we all win, none of us win. We admit when we’re wrong, ask for help and always think about the wider business before ourselves.

Driven to Succeed 

We see the opportunity ahead of us and we won’t stop until we fulfil the potential we know we have. We hold ourselves to high standards and deliver high quality outcomes for Vitesse and our customers.  

Tenacious Responsibility 

We take ownership for our actions and decisions, and face into the challenges that come our way. We are committed to seeing things through to completion, even in the face of adversity. 

We are an Equal Opportunity Employer   We are committed to creating an inclusive environment that enables everyone to perform at their best, where we recognise the rights of all individuals to mutual respect and where there is an unbiased acceptance of others. Our policies and practices aim to promote an environment that is free from all forms of Unfair discrimination and values the diversity of all people. At the heart of our policy, we seek to treat people fairly and with dignity and respect.  

Description

Amazon Web Services (AWS) is the leading cloud provider, providing virtualized infrastructure, storage, networking, messaging, and many other services to customers all over the world. AWS runs a globally distributed environment, operating at massive levels of scale. Businesses, from start-ups to enterprises, run their operations and applications on AWSu2019 multi-tenant infrastructure



About Amazon Security



Diverse Experiences

Amazon Security values diverse experiences. Even if you do not meet all of the preferred qualifications and skills listed in the job description, we encourage candidates to apply. If your career is just starting, hasnu2019t followed a traditional path, or includes alternative experiences, donu2019t let it stop you from applying.



Why Amazon Security?

At Amazon, security is central to maintaining customer trust and delivering delightful customer experiences. Our organization is responsible for creating and maintaining a high bar for security across all of Amazonu2019s products and services. We offer talented security professionals the chance to accelerate their careers with opportunities to build experience in a wide variety of areas including cloud, devices, retail, entertainment, healthcare, operations, and physical stores.



Inclusive Team Culture

AWS values curiosity and connection. Our employee-led and company-sponsored affinity groups promote inclusion and empower our people to take pride in what makes us unique. Our inclusion events foster stronger, more collaborative teams. Our continual innovation is fueled by the bold ideas, fresh perspectives, and passionate voices our teams bring to everything we do.



Training & Career Growth

Weu2019re continuously raising our performance bar as we strive to become Earthu2019s Best Employer. Thatu2019s why youu2019ll find endless knowledge-sharing, training, and other career-advancing resources here to help you develop into a better-rounded professional.



Work/Life Balance

We value work-life harmony. Achieving success at work should never come at the expense of sacrifices at home, which is why we strive for flexibility as part of our working culture. When we feel supported in the workplace and at home, thereu2019s nothing we canu2019t achieve.



Key job responsibilities

As a Security Engineer, youu2019ll help to build and manage services that detect and automate the mitigation of cybersecurity threats across Amazonu2019s infrastructure. Youu2019ll work with data scientists, software development engineers, and other security engineers across multiple teams to develop innovative security solutions. Our services protect the AWS cloud for all customers and preserves our customersu2019 trust in us. Youu2019ll get to use the full power and breadth of AWS technologies to build services that proactively protect AWS customers, both internally and externally, from security threats.



You will be working in a team of industry-leading security experts working with UK customers to operate and continuously improve industry-leading security programs and processes. This team manages the underlying security programs and processes for personnel security, physical and logical accreditations, education, awareness and training, assurance, and cyber security.



Basic Qualifications

Degree or Equivalent experience in a technical field. Experience of working in a Security Operations Centre (SOC) performing security investigations, penetration testing and/or incident response in the context of large organisations

* Understanding of security threats, hands-on experience detecting and defending from

cyber-attacks, and experience using big data analytics and orchestration to address security challenges

* Ability to develop code with at least one modern language such as Java, Go, TypeScript, Python, Rust and security code review

Preferred Qualifications

* Understanding of the Mitre ATT&CK framework and knowledge of host and network telemetry data (e.g., process lists, application logs, NetFlow)

* Have awareness and understanding of current cyber security threats, actors and their techniques

* Experience with data science, big data analytics technology stack, analytic development for endpoint and network security, and streaming technologies (e.g., Kafka, Spark Streaming, and Kinesis)



Amazon is an equal opportunities employer. We believe passionately that employing a diverse workforce is central to our success. We make recruiting decisions based on your experience and skills. We value your passion to discover, invent, simplify and build. Protecting your privacy and the security of your data is a longstanding top priority for Amazon. Please consult our Privacy Notice ( ) to know more about how we collect, use and transfer the personal data of our candidates.



Amazon is an equal opportunity employer and does not discriminate on the basis of protected veteran status, disability, or other legally protected status.



Our inclusive culture empowers Amazonians to deliver the best results for our customers. If you have a disability and need a workplace accommodation or adjustment during the application and hiring process, including support for the interview or onboarding process, please visit for more information. If the country/region youu2019re applying in isnu2019t listed, please contact your Recruiting Partner.

Description

Amazon Web Services (AWS) is the leading cloud provider, providing virtualized infrastructure, storage, networking, messaging, and many other services to customers all over the world. AWS runs a globally distributed environment, operating at massive levels of scale. Businesses, from start-ups to enterprises, run their operations and applications on AWSu2019 multi-tenant infrastructure



About Amazon Security



Diverse Experiences

Amazon Security values diverse experiences. Even if you do not meet all of the preferred qualifications and skills listed in the job description, we encourage candidates to apply. If your career is just starting, hasnu2019t followed a traditional path, or includes alternative experiences, donu2019t let it stop you from applying.



Why Amazon Security?

At Amazon, security is central to maintaining customer trust and delivering delightful customer experiences. Our organization is responsible for creating and maintaining a high bar for security across all of Amazonu2019s products and services. We offer talented security professionals the chance to accelerate their careers with opportunities to build experience in a wide variety of areas including cloud, devices, retail, entertainment, healthcare, operations, and physical stores.



Inclusive Team Culture

AWS values curiosity and connection. Our employee-led and company-sponsored affinity groups promote inclusion and empower our people to take pride in what makes us unique. Our inclusion events foster stronger, more collaborative teams. Our continual innovation is fueled by the bold ideas, fresh perspectives, and passionate voices our teams bring to everything we do.



Training & Career Growth

Weu2019re continuously raising our performance bar as we strive to become Earthu2019s Best Employer. Thatu2019s why youu2019ll find endless knowledge-sharing, training, and other career-advancing resources here to help you develop into a better-rounded professional.



Work/Life Balance

We value work-life harmony. Achieving success at work should never come at the expense of sacrifices at home, which is why we strive for flexibility as part of our working culture. When we feel supported in the workplace and at home, thereu2019s nothing we canu2019t achieve.



Key job responsibilities

As a Security Engineer, youu2019ll help to build and manage services that detect and automate the mitigation of cybersecurity threats across Amazonu2019s infrastructure. Youu2019ll work with data scientists, software development engineers, and other security engineers across multiple teams to develop innovative security solutions. Our services protect the AWS cloud for all customers and preserves our customersu2019 trust in us. Youu2019ll get to use the full power and breadth of AWS technologies to build services that proactively protect AWS customers, both internally and externally, from security threats.



You will be working in a team of industry-leading security experts working with UK customers to operate and continuously improve industry-leading security programs and processes. This team manages the underlying security programs and processes for personnel security, physical and logical accreditations, education, awareness and training, assurance, and cyber security.



Basic Qualifications

Degree or Equivalent experience in a technical field. Experience of working in a Security Operations Centre (SOC) performing security investigations, penetration testing and/or incident response in the context of large organisations

* Understanding of security threats, hands-on experience detecting and defending from

cyber-attacks, and experience using big data analytics and orchestration to address security challenges

* Ability to develop code with at least one modern language such as Java, Go, TypeScript, Python, Rust and security code review

Preferred Qualifications

* Understanding of the Mitre ATT&CK framework and knowledge of host and network telemetry data (e.g., process lists, application logs, NetFlow)

* Have awareness and understanding of current cyber security threats, actors and their techniques

* Experience with data science, big data analytics technology stack, analytic development for endpoint and network security, and streaming technologies (e.g., Kafka, Spark Streaming, and Kinesis)



Amazon is an equal opportunities employer. We believe passionately that employing a diverse workforce is central to our success. We make recruiting decisions based on your experience and skills. We value your passion to discover, invent, simplify and build. Protecting your privacy and the security of your data is a longstanding top priority for Amazon. Please consult our Privacy Notice ( ) to know more about how we collect, use and transfer the personal data of our candidates.



Amazon is an equal opportunity employer and does not discriminate on the basis of protected veteran status, disability, or other legally protected status.



Our inclusive culture empowers Amazonians to deliver the best results for our customers. If you have a disability and need a workplace accommodation or adjustment during the application and hiring process, including support for the interview or onboarding process, please visit for more information. If the country/region youu2019re applying in isnu2019t listed, please contact your Recruiting Partner.