Senior Threat and Vulnerability Analyst

The Department for Business and Trade (DBT) has a clear mission - to grow the economy. Our role is to help businesses invest, grow and export to create jobs and opportunities right across the country. We do this in three ways.

Firstly, we help to build a strong, competitive business environment, where consumers are protected and companies rewarded for treating their employees properly.

Secondly, we open international markets and ensure resilient supply chains. This can be through Free Trade Agreements, trade facilitation and multilateral agreements.

Finally, we work in partnership with businesses every day, providing advance, finance and deal-making support to those looking to start up, invest, export and grow.

The Digital, Data and Technology (DDaT) directorate develops and operates tools and services to support us in this mission. The team have been nominated four times in a row for Best Public Sector Employer at the Women in Tech awards and won the award in 2025!

About the role

You will be helping to protect DBT and the wider UK government from cyber threats in a fast paced and exciting role. Reporting to, acting as the main support to and operating under the strategic direction the Principle Cyber Threat and Vulnerability Manager, The Senior Threat and Vulnerability Analyst is responsible for leading day‑to‑day operational delivery and continuous improvement of the efficiency, quality and effectiveness of TVM operational processes, tooling and workflows.

You will work closely with other members of the SOC, architecture, delivery and GRC teams to ensure vulnerabilities and threats are identified, assessed, prioritised and remediated in line with DBTs risk‑based approach. You will provide operational leadership, technical direction and assurance, ensuring TVM processes are effective, well‑understood and continuously improved. A healthy curiosity is essential: you will proactively identify emerging threats and vulnerabilities, ensure appropriate investigation and response, and support the organisation in understanding and managing cyber risk.

We offer a range of training and upskilling opportunities to help you build your skills, broaden your experience, and support your ongoing professional development.

Your day-to-day role will involve the need to:

 Threat Intelligence and assessment

• Conduct structured Threat Hunting and deep-dive analysis on potential threats against DBT, proactively identifying and leveraging threat intelligence sources to inform strategic threat and vulnerability mitigation measures.   

Penetration Testing

• Coordinate the end-to-end execution of penetration testing and the tracking, remediation and verification of its outcomes to assess the robustness of DBTs systems, products and technologies.  

Vulnerability management

• Lead prioritisation of vulnerability remediation across DBTs platforms and multi-cloud environments through a risk-based approach to reduce the number of vulnerabilities and highest risk issues on the estate.

• Recommend remediation strategies and provide advice on complex configuration changes in support of vulnerability remediation.  

• Collaborate extensively with different business units and service teams to ensure effective vulnerability and misconfiguration mitigation in accordance with DBT vulnerability management policies.

Cyber Operations

• Develop the effectiveness and efficiency of the operational TVM service, identifying and implementing improvements to process, tooling and ways of working.

• Use metrics and insight to drive continuous improvement and demonstrate risk reduction over time and communicate effectively with senior colleagues regarding the status of remediation.

You should be able to demonstrate essential skills and experience of:

• Substantive experience in a Threat and Vulnerability Management or related Cyber Operations role.

• Demonstrable experience and knowledge in end-to-end vulnerability management, application security testing tools and penetration testing management within cloud environments.

• Excellent communication skills, including ability to relay technical vulnerabilities and articulating risk clearly and effectively to both technical and non-technical audiences, for example through briefings, written reports, or stakeholder engagement.

• Ability to influence senior stakeholders to drive the prioritisation and continuous improvement of Threat and Vulnerability Management related processes.

• Experience in assessing the Cyber threat landscape, threat actors techniques, tactics, and procedures.

• Experience threat hunting in a cloud-based environment such as interpreting device and application logs from various sources and monitoring for emerging threat patterns and vulnerabilities.

It is desirable that you have:

• Hands on experience in penetration testing.

• Working knowledge of the software development lifecycle