Are you an experienced ServiceNow Vulnerability Response Engineer looking for your next contract role?
Join a market-leading cyber security consultancy and play a vital role in enhancing enterprise security operations.
We are seeking a skilled ServiceNow Vulnerability Response Engineer to support a high-profile client in strengthening their vulnerability management processes. This is a 3-month contract (Outside IR35), offering the flexibility of a fully remote working arrangement.
Key Responsibilities:
* Setting up, customising, and fine-tuning the ServiceNow Vulnerability Response module to align with the organisation's security policies and best practices.
* Establishing and maintaining integrations between ServiceNow VR and leading vulnerability scanning tools, such as Qualys, Tenable, and Rapid7.
* You will develop rule-based ticketing and escalation mechanisms, ensuring that vulnerabilities are assigned to the appropriate teams based on severity, asset criticality, and risk exposure. The aim is to reduce manual effort and accelerate response times.
* Ensure that vulnerabilities are effectively prioritised based on business impact, exploitability, and risk assessment frameworks (eg, CVSS, EPSS, and MITRE ATT&CK).
What you will Ideally Bring:
* Extensive experience with ServiceNow Vulnerability Response (VR) and Security Operations (SecOps), including configuration, optimisation, and workflow automation.
* Strong knowledge of vulnerability management principles and best practices, with experience integrating ServiceNow VR with leading vulnerability scanning tools such as Qualys, Tenable, or Rapid7.
* Proficiency in automating remediation workflows, including rule-based ticketing, escalation processes, and SLA tracking to improve response times and efficiency.
* Excellent analytical and problem-solving skills, with the ability to assess, prioritise, and manage vulnerabilities based on risk assessment frameworks (eg, CVSS, EPSS, MITRE ATT&CK).
Contract Details:
* Duration: 3 months
* Location: 100% Remote