Vulnerability Manager

  • Anywhere
  • Anywhere


Aviva have an excellent opportunity for a Vulnerability Management Lead based flexibly from any of our locations.

The role involves developing and managing key relationships with Service Owners, Commercial teams, and suppliers to ensure IT services are patched in line with challenging SLAs and patching backlogs are constantly challenged and risk assessed for remediation.

Significant influence and interaction with IT senior leadership is required within this role to effectively influence the delivery of VM SLA and to remediate threats at pace. To achieve this well-presented MI and data analysis is a core team capability.

The Vulnerability Management processes extends across multiple functions. To prevent gaps in control ownership this role encompasses the ownership of all GIOs vulnerability management control obligations, where necessary taking control ownership across multiple areas to ensure no gaps in coverage.

Key features of the role include:

  • Leading the end to end vulnerability management across all IT function utilising GIO hosted services to ensure patching SLAs are met and the vulnerability backlog is under management.
  • To transform and re-shape supplier oversight and vulnerability management to drive simplification, cost efficiency and automation
  • Establish best practice vulnerability management procedures and working practices across all GIO OSP suppliers and application teams to deliver stretching VM SLAs
  • Own GIOs VM risk position and own all GIO VM related controls
  • Accountable for patching of SOE, Cloud, Hosting and Network services within GIO, working closely with responsible technical towers to achieve outcomes.
  • Automation and simplification of Vulnerability MI
  • Act as Service Integrator in relation to GIO OSP patch delivery
  • Manage GIO OSP suppliers performance as it relates to Vulnerability Management, defining and embedding Vulnerability Management requirements and holding them to account for the delivery of their contractual obligations
  • Own the Tanium end point tooling, ensure global deployment to all end points and be able to support cyber incident management 24×7 operation. Encourage the further exploitation of the tool, supporting training, provision on MI and ongoing contract management.
  • Driving Vulnerability remediation to meet or exceed SLA
  • Holding suppliers, CIOs and IT leadership to their delivery of Vulnerability Management responsibilities
  • Manage GIO OSP suppliers contractual performance as it relates to Vulnerability Management
  • Tanium Product development and deployment to 45000 end points globally

Technical Knowledge

  • Experienced IT project manager with a background in Hosting infrastructure and networking change
  • Should have a background and significant demonstrable experience in security or Vulnerability management with working within an ITIL framework.
  • Qualifications in ITIL and or a security qualification would be an advantage
  • Strong technical background and senior management experience up to and including board level

Ideally the role will be held by an individual with an IT engineering background in an enterprise hosting technology area (e.g. Data Centre) and with experience of working within a Service Integrator role or having previous Data Centre operational experience

What you will get

  • Salary in excess of £43,200 depending on location, skills, experience and qualifications
  • Generous defined contribution pension scheme
  • Annual performance related bonus and pay review
  • Holiday allowance of 29 days plus bank holidays and the option to buy/sell up to 5 additional days
  • Up to 40% discount for some Aviva products through “My Aviva Extras” plus discounts for Friends and Family. (Some exclusions apply)
  • Excellent range of flexible benefits to include a matching share save scheme

Working at Aviva
At Aviva, we’re people with a purpose. To be with you today, for a better tomorrow!

We bring this to life by ensuring managing risk is at the heart of the way we all work. We love people who do the right thing for our customers, and our colleagues. We want people who speak up, who take responsibility, and who make good decisions.

The way we do this is important too. We’re all about our people – that’s you – so we can be pretty flexible. If you want to work from home some of the time or change your hours so you can pick up your kids or care for someone in your family, we’re very open to that. In fact, we don’t advertise roles as either part or full time, because we know each person has different needs, just as each business area has different needs. So, it’s up to you to discuss working hours during your interview.

We care deeply about being inclusive and that means we encourage applications from people with diverse backgrounds and experiences. We want our employees to bring their whole self to work and that starts with you.

We interview every disabled applicant* that meets the minimum criteria for the job. Once you’ve applied,   please send us a separate email   stating that you have a   disclosed   disability, and we’ll make sure we interview you.

We’d love it if you could   submit your application online. If you require an   alternative method   of applying, please give Ben Parker a call on 07833 239394 or send an email to   [email protected]

*As defined in The   Equality Act 2010*. By ‘minimum criteria’   we mean you should provide us with evidence which demonstrates that you generally meet the level of competence required and have the qualifications, skills or experience defined as essential to perform the role.

To apply for this job please visit

To apply for this job please visit

Contact us


Related Jobs