Rodeo
ResourcesPartnersSign in

Jobgether

Vulnerability Operation Center Lead

United Kingdom
Posted about 20 hours ago
Sign up to applySee more jobs like this

How your CV stacks up

1Upload CV
2Analyse CV
3Improve CV

Upload your CV to see how well it fits this job role

?%

This position is listed on behalf of a partner company, who manages all applications and next steps. Our partner is looking for a Vulnerability Operation Center Lead based in United Kingdom.

Join a forward-thinking technology organization at the forefront of AI infrastructure, where you'll establish and lead a Vulnerability Operations Center responsible for protecting large-scale cloud, infrastructure, and hardware environments. This highly strategic and hands-on role combines technical leadership, security operations, automation, and cross-functional collaboration to strengthen organizational resilience against emerging threats. You will define vulnerability management processes, implement scalable tooling, and partner closely with engineering teams to drive effective remediation across critical systems. This opportunity is ideal for an experienced cybersecurity professional who enjoys building security programs from the ground up while working with cutting-edge technologies in a fast-paced international environment.

Accountabilities

  • Build and lead the Vulnerability Operations Center, defining processes, governance, and best practices for the complete vulnerability management lifecycle.
  • Manage vulnerability detection, validation, triage, remediation tracking, and reporting across cloud infrastructure, products, and hardware environments.
  • Improve automated vulnerability triage capabilities through data enrichment, AI-assisted workflows, contextual risk scoring, and vulnerability correlation techniques.
  • Perform hands-on validation and prioritization of critical and zero-day vulnerabilities to support rapid response efforts.
  • Collaborate closely with engineering, security, compliance, and operations teams to ensure timely remediation and continuous risk reduction.
  • Drive improvements in patch management processes and oversee remediation initiatives across multiple engineering teams.
  • Manage vulnerability intake from scanners, penetration testing, bug bounty programs, and threat intelligence sources.
  • Prioritize findings using industry-standard risk frameworks, including CVSS, EPSS, SSVC, exploitability, asset criticality, and business impact.
  • Contribute to the development and automation of internal vulnerability management and security orchestration platforms.
  • Define key vulnerability management metrics, monitor trends, and present actionable insights and KPIs to security leadership.
  • Coordinate organizational responses to critical security events and maintain integrations across the broader security ecosystem.

Reasons to use Rodeo

I’m in my final year doing Economics and I don’t know whether to apply for grad schemes now or do a masters first. What do you think?

Honest answer — it depends on where you want to end up. A lot of top grad schemes (Big 4, civil service, banking) don’t need a masters. Let’s look at the ones you’d be competitive for now, and we can decide if a masters actually adds anything.

Also worth knowing: most autumn 2026 applications are open now. Timing matters more than you think.

Start with a chat, not a search bar

Grad scheme, placement, apprenticeship? Not sure what you want yet — that's fine. Your agent talks it through with you and turns "I have no idea" into a shortlist.

P

Graduate Consultant — 2026 Scheme

PwC·London, UK
£35,000/yr

Why you're a good match

Strong

Your economics background and your summer at a regional bank line up with what PwC looks for on the consulting scheme. Applications close in four weeks.

See breakdown
Save jobNot relevant
View details

It searches the market for you

Every day your agent scans the market matching roles against what actually matters to you, not just keywords on a CV.

Why you're a good match

You’ve got the grades and the economics background, and your bank internship is exactly the experience this scheme looks for. Apply soon — deadlines close within the month.

See breakdown
Strong

Experience fit

Your summer at the bank plus your econometrics coursework map directly to the day-one responsibilities on this scheme — client modelling, market briefings, and deal support.

See breakdown
Strong

Only hits

No noise. No "maybe this fits." Just roles with a clear explanation of why they're right — and where to focus when applying.

Requirements

  • 5-8 years of experience in information security, including at least 3 years focused on vulnerability management or security operations.
  • Strong expertise in vulnerability management processes across cloud-native and enterprise infrastructure environments.
  • Deep knowledge of vulnerability assessment methodologies, including CVE, NVD, CVSS, EPSS, SSVC, and risk-based prioritization frameworks.
  • Experience working with cloud platforms such as AWS, Google Cloud, Azure, or private cloud infrastructure.
  • Solid understanding of vulnerability scanning technologies, their capabilities, and their limitations in modern cloud environments.
  • Ability to write and review code, with experience or willingness to develop automation using Golang or similar programming languages.
  • Strong understanding of software and infrastructure vulnerability classes, exploitability analysis, and remediation validation.
  • Experience collaborating with engineering teams to drive remediation while balancing technical risk and operational priorities.
  • Excellent analytical, communication, and stakeholder management skills, with the ability to translate complex technical risks into business-focused recommendations.
  • Experience with Kubernetes security, container security, software supply chain security, SBOMs, dependency scanning, or bug bounty programs is considered an advantage.
  • Previous experience building or scaling a vulnerability management program from the ground up is highly desirable.

Benefits

  • Competitive compensation package, including equity participation opportunities.
  • Flexible remote-first working environment.
  • Opportunity to build and lead a strategic cybersecurity function from its inception.
  • High level of ownership and influence over security strategy, tooling, and operational processes.
  • Career growth, continuous learning, and professional development opportunities.
  • Collaborative, engineering-driven culture focused on innovation and technical excellence.
  • Opportunity to contribute to AI-powered security technologies and next-generation cloud infrastructure.
  • International work environment with highly experienced engineering and security professionals.
  • Fast-paced organization offering meaningful technical challenges and significant business impact.

Get help with your application

Your very own career expert that helps elevate your application to the next level.

Get help applying for this job

How Jobgether Works

We use an AI-powered matching process to ensure your application is reviewed quickly, objectively, and fairly against the role's core requirements. Our system identifies the top-fitting candidates, and this shortlist is then shared directly with the hiring company. The final decision and next steps (interviews, assessments) are managed by their internal team.

We appreciate your interest and wish you the best!

Why Apply Through Jobgether?

Data Privacy Notice: By submitting your application, you acknowledge that Jobgether will process your personal data to evaluate your candidacy and share relevant information with the hiring employer. This processing is based on legitimate interest and pre-contractual measures under applicable data protection laws (including GDPR). You may exercise your rights (access, rectification, erasure, objection) at any time.

We may use artificial intelligence (AI) tools to support parts of the hiring process, such as reviewing applications, analyzing resumes, or assessing responses and identifying potential inconsistencies or verification signals in application materials based on available information. These tools assist our recruitment team but do not replace human judgment. Final hiring decisions are ultimately made by humans. If you would like more information about how your data is processed, please contact us.

Trusted by 25,000+ job seekers

“It took my CV and asked me questions relevant to understanding what kind of jobs to suggest for me. Suggestions were almost perfect. Jobs were exactly what I’ve been looking for.”

Jessica, London

Get help applying for this job

Skills

Vulnerability Management
Cybersecurity
Cloud Platforms
Automation
Risk Assessment
Collaboration
Analytical Skills
Communication Skills
Stakeholder Management
Kubernetes Security
Container Security
Software Supply Chain Security
Bug Bounty Programs
Vulnerability Scanning
Programming
Data Enrichment

Location

United Kingdom

Sign up to applySee more jobs like this