Principal Vulnerability Engineer

Description

Welcome to Moneycorp

We’re delighted you’re interested in being a part of Moneycorp.

In the last decade, Moneycorp has transformed from a largely domestic, consumer-focused provider of foreign exchange to an end-to-end global payments’ ecosystem.

With two banking licenses and operations across the entire value chain of the international payments and foreign exchange sectors, we enable businesses, institutions, and individuals to thrive beyond borders.

We help our clients realise their growth ambitions by providing them with worldwide reach, relentless regulatory excellence, and tailored, relevant solutions that resiliently optimise their financial operations.

We’re fervent about pursuing our goals, making substantial contributions to the payments industry, and consistently offering unwavering support to our clients at every stage of their journey.

Moneycorp is a place where energy, commitment to our shared success and collaboration are core to our DNA. We’re restless in our drive to surpass the expectations of our clients and unlock opportunities to support them at every stage of their journey.

The foundation of our success is our people, and nurturing a culture of belonging for all of our colleagues is central to our journey as a global business.

Find out more about Moneycorp’s offering, global footprint and capabilities here:

About Us | moneycorp

Your Next Challenge

We are seeking a Principal Vulnerability Engineer to lead the identification, assessment, and remediation of security vulnerabilities across our infrastructure, applications, and cloud environments. This senior technical role is critical to ensuring the security and resilience of our systems against evolving threats. You will work closely with engineering, DevOps, and compliance teams to drive vulnerability management strategy and execution.

Role Purpose:

Lead Threat & Vulnerability Management across Azure and IaaS: scanning, coverage, risk scoring and SLA-driven remediation. Provide regulatory-grade reporting for resilience and audits.

Key Responsibilities

Vulnerability Management & Analysis

• Continuously evaluate and improve vulnerability detection capabilities using tools such as Qualys, Tenable, Rapid7, or similar.
• Own scanning coverage for Windows, Linux, containers, images and services.
• Define SLAs by severity; track remediation and escalate breaches.
• Integrate TVM with SIEM/Defender; publish dashboards and coordinate pen-tests.
• Provide evidence for PCI/SWIFT/FFIEC; maintain zero-day response playbooks.
• Lead the design and implementation of vulnerability scanning, assessment, and reporting processes across cloud and on-prem environments.
• Analyze scan results, prioritize findings based on risk, and coordinate remediation efforts with relevant teams

Security Strategy & Leadership

• Define and evolve the vulnerability management program, aligning with industry standards and regulatory requirements.
• Serve as a subject matter expert on vulnerability risk, threat exposure, and mitigation strategies.
• Provide technical leadership and mentorship to junior security engineers.

Collaboration & Communication

• Partner with infrastructure, application, and DevOps teams to ensure vulnerabilities are addressed effectively and efficiently.
• Communicate risk and remediation plans to technical and non-technical stakeholders, including executive leadership.
• Collaborate with compliance and audit teams to support regulatory reporting and evidence collection.

Threat Intelligence & Automation

• Integrate threat intelligence feeds to contextualize vulnerabilities and prioritize based on exploitability.
• Develop automation scripts and workflows to streamline scanning, reporting, and remediation tracking.

Person Specification

Knowledge and Experience:

• Extensive experience in vulnerability management, penetration testing, or security engineering.
• Deep understanding of common vulnerabilities (e.g., OWASP Top 10, CVEs), exploit techniques, and mitigation strategies.
• Hands-on experience with vulnerability scanning tools (e.g., Qualys, Tenable, Rapid7) and SIEM platforms.
• Strong knowledge of cloud security (AWS, Azure, GCP), operating systems, and network protocols.
• Excellent analytical, communication, and stakeholder engagement skills.

Please note: This is a full-time, permanent position to work with our Tech team based in our Coventry office.

Interested?

If the role sounds like you, we invite you to upload a copy of your CV and can do this by clicking on the Apply Now button

Fostering a culture of belonging and inclusivity

We're committed to creating a workplace where every individual feels valued, respected, and included. As an Equal Opportunity Employer, we actively cultivate an inclusive culture where diversity thrives, and we empower our colleagues to drive meaningful change within our organisation through initiatives like our DE&I focus groups and value champion network.

Like many of our peers, we recognise that fostering inclusivity is an ongoing journey, and we remain steadfast in our commitment to progress. By measuring our efforts through regular assessments and listening to the feedback of our employees, we strive to ensure that our initiatives are impactful and responsive to the evolving needs of our workforce.

Together, we want to build a workplace where everyone can bring their authentic selves to work, as we believe this is the foundation of innovation, creativity, and collective success.