Cloud Vulnerability Specialist

1. Conduct cloud vulnerability scanning, analysis, and triage across AWS and GCP
2. Lead vulnerability hunting, research, and risk-based prioritisation activities
3. Own and optimise vulnerability management tooling, including Rapid7 CloudSec
4. Drive remediation by working directly with Cloud, SOC, and Engineering teams
5. Identify gaps across process, tooling, and results and actively close them
6. Automate repetitive tasks using scripting to improve efficiency and accuracy
7. Define and report actionable vulnerability metrics for senior stakeholders
8. Track vulnerability trends and support predictive risk analysis
9. Support security incidents with vulnerability-focused analysis and insight

We are seeking an experienced Cloud Vulnerability Specialist to lead and mature end-to-end vulnerability management for a complex, cloud-first environment. This role is accountable for identifying, prioritising, and reducing material risk across AWS and GCP, with a strong focus on execution rather than reporting., 1. Strong hands-on experience in vulnerability management within cloud environments

2. Proven knowledge of AWS and GCP security and vulnerability models
3. Experience with Rapid7, Nessus, Qualys, or similar tooling
4. Ability to prioritise vulnerabilities based on business impact and risk
5. Scripting experience using Python and or PowerShell
6. Experience collaborating with SOC, Cloud, and Engineering teams
7. Working knowledge of ISO27001, NIST, and CIS frameworks
8. Strong communication skills and stakeholder management capability

Nice to Have Experience in regulated or large-scale enterprise environments Exposure to vulnerability analytics or trend forecasting

This is not a passive scanning role. You will be expected to influence outcomes, challenge poor remediation practices, and materially reduce cloud risk.