Job Description

We're a business with a global reach that empowers local teams, and we undertake hugely exciting work that is genuinely changing the world. Our advanced portfolio of consulting, applications, business process, cloud, and infrastructure services will allow you to achieve great things by working with brilliant colleagues, and clients, on exciting projects.


Our inclusive work environment prioritises mutual respect, accountability, and continuous learning for all our people. This approach fosters collaboration, well-being, growth, and agility, leading to a more diverse, innovative, and competitive organisation. We are also proud to share that we have a range of Inclusion Networks such as: the Women's Business Network, Cultural and Ethnicity Network, LGBTQ+ & Allies Network, Neurodiversity Network and the Parent Network.


For more information on Diversity, Equity and Inclusion please click here: Creating Inclusion Together at NTT DATA UK | NTT DATA


Key Responsibilities


Vulnerability Assessment and Analysis


Conduct vulnerability assessments using tools like Nessus, Qualys, Rapid7, and OpenVAS. Perform manual validation of automated scan results to eliminate false positives. Analyze vulnerabilities to assess exploitability and business impact. Create detailed reports with actionable remediation guidance.

Risk Evaluation and Prioritization


Evaluate vulnerabilities using CVSS scoring and business context. Prioritize remediation efforts based on risk exposure and asset criticality. Collaborate with threat intelligence teams to incorporate emerging threat data.

Remediation Support and Tracking


Work with IT teams to develop and implement remediation strategies. Provide technical guidance on mitigation techniques and validate fixes. Maintain up-to-date vulnerability databases and track remediation progress.

Compliance and Reporting


Support compliance initiatives, including PCI and regulatory audits. Prepare executive and technical reports on vulnerability posture. Maintain metrics on vulnerability discovery, remediation rates, and overall security improvements.

Research and Continuous Improvement


Stay informed about emerging vulnerabilities and attack techniques. Evaluate and recommend new vulnerability assessment tools and methodologies. Contribute to knowledge sharing and best practices within the team.

Required Qualifications


Technical Skills


Proficiency with vulnerability scanning tools (e.g., Nessus, Qualys, Rapid7, OpenVAS). Strong understanding of common vulnerabilities (e.g., OWASP Top 10, SANS Top 25). Knowledge of network protocols, operating systems, and application security. Experience with scripting languages (Python, PowerShell, Bash) for automation. Familiarity with CVSS scoring and risk assessment frameworks.





Professional Skills


Strong analytical and problem-solving abilities. Excellent written and verbal communication skills. Must meet UK SC Clearance eligibility guidelines. Attention to detail and accuracy in technical analysis. Ability to manage multiple assessments independently. Direct experience working in government, military, or intelligence organizations advantageous.

Certifications (Preferred)


CREST Practitioner Security Analyst (CPSA), CEH, GCIH, Security+, or equivalent. Vendor-specific certifications (e.g., Nessus, Qualys).

Education and Experience


Bachelor's degree in Cybersecurity, Computer Science, IT, or related field (or equivalent experience). 1-3 years of experience in cybersecurity or IT security roles.

Success Metrics (6-12 Months)


Complete a minimum of 10 vulnerability assessments per month. Achieve 95% accuracy in false positive identification. Ensure 90% of critical vulnerabilities are remediated within SLA timelines. Deliver monthly vulnerability posture reports with actionable insights. Maintain a client satisfaction score of 4.5/5 or higher for vulnerability services.

We offer a range of tailored benefits that support your physical, emotional, and financial wellbeing. Our Learning and Development team ensure that there are continuous growth and development opportunities for our people. We also offer the opportunity to have flexible work options.


You can find more information about NTT DATA UK & Ireland here: https://uk.nttdata.com/


We are an equal opportunities employer. We believe in the fair treatment of all our employees and commit to promoting equity and diversity in our employment practices. We are also a proud Disability Confident Committed Employer - we are committed to creating a diverse and inclusive workforce. We actively collaborate with individuals who have disabilities and long-term health conditions which have an effect on their ability to do normal daily activities, ensuring that barriers are eliminated when it comes to employment opportunities. In line with our commitment, we guarantee an interview to applicants who declare to us, during the application process, that they have a disability and meet the minimum requirements for the role. If you require any reasonable adjustments during the recruitment process, please let us know. Join us in building a truly diverse and empowered team.


Flexible remote working


As a Vulnerability Analyst at NTT DATA UK, you will play a critical role in identifying, assessing, and mitigating security vulnerabilities across diverse IT infrastructures, applications, and systems. Leveraging industry-standard tools and methodologies, you will help clients strengthen their security posture while ensuring compliance with regulatory and organizational requirements. This role offers opportunities to work with cutting-edge technologies and grow within a global cybersecurity practice.