SecOps Engineer - Vulnerability Management

Role: SecOps Engineer - Vulnerability Management Transformation

Location: UK remote with occasional site travel

Contract: Competitive market rate

Contract length: 6 months with strong chance of extension

Enablis are working with a leading financial services provider whop are looking for a hands-on SecOps Engineer to help drive their day-to-day T vulnerability management operations. This role is perfect for someone who thrives on technical problem-solving and wants to work closely with engineering teams to build security into the development life-cycle.

The Opportunity:

You'll be the operational backbone of a vulnerability management transformation, working alongside a Lead SecOps Consultant to implement and run processes that protect a critical banking platform. This is a chance to work across diverse technology stacks (platform, mobile, web, backend) while solving complex security challenges in a fast-paced environment.

What you'll do:

• Run Vulnerability Operations: Execute vulnerability scanning, triage findings, and coordinate remediation efforts across multiple engineering teams
• Engineering Collaboration: Partner directly with platform, mobile, web, and backend teams to implement fixes, focusing on dependency updates and secure coding practices
• Tool Operations: Manage and optimise vulnerability scanning tools (Tenable and others), ensuring comprehensive coverage and accurate results
• Rapid Response: Meet aggressive client SLAs for vulnerability resolution while maintaining quality and thoroughness
• Evidence & Reporting: Generate audit-ready reports and maintain evidence trails for PCI-DSS, 3DS, SOC2, and ISO compliance
• Continuous Improvement: Identify patterns in vulnerabilities and work with teams to implement preventive measures

What you'll bring:

• Technical Foundation: 3-5+ years in security engineering or DevSecOps with strong vulnerability management experience
• Hands-On Skills: Practical experience with vulnerability scanning tools, security testing, and remediation techniques
• Engineering Background: Understanding of modern development practices, CI/CD pipelines, and ability to read/understand code across multiple languages
• Problem Solver: Ability to dig deep into complex vulnerabilities and work with engineers to find practical solutions
• Financial Services Knowledge: Experience with PCI-DSS authenticated scanning and financial services security requirements (preferred)
• Collaborative Approach: Excellent interpersonal skills to work effectively with diverse engineering teams

Technical Environment:

• Current Tools: Tenable, internal SAST solutions
• Technologies: Modern banking platform stack including mobile, web services, and backend systems
• Compliance: PCI-DSS, 3DS, SOC2, ISO frameworks
• Methodology: Transitioning from reactive to proactive security approach

Key deliverables:

• Operational excellence in vulnerability management across the entire platform
• Reduced mean time to resolution for critical vulnerabilities
• Strong relationships with engineering teams built on trust and technical credibility
• Demonstrable improvements in security posture through metrics and KPIs
• Enhanced automation and efficiency in vulnerability workflows

This role offers hands-on experience with enterprise-scale vulnerability management while working on technology that powers multiple banking services. If you're passionate about security engineering and want to make a real difference in financial services security, we want to hear from you.

We're an equal opportunity employer and we value diversity at our company. We do not discriminate on the basis of race, religion, national origin, gender, sexual orientation, age, marital status, or disability status.