Vulnerability Management Operations Lead

LSEG is seeking a Vulnerability Management Operations Lead to drive the execution, coordination, and continuous improvement of our global vulnerability management program. This is a hands-on technical leadership role blending operational oversight with deep analytical and engineering engagement. You'll provide direction across specialized vulnerability management domains, ensuring alignment, consistency, and measurable risk reduction. As a key operational partner, you'll connect teams, translate intelligence into action, define metrics, and represent vulnerability management in critical business contexts.

Must Have

• Provide matrix leadership and coordination across domain-aligned vulnerability management engineers.
• Oversee daily and strategic vulnerability management operations, ensuring consistent execution, quality, and prioritization across all domains.
• Coordinate activities across VM engineers to identify systemic weaknesses, unknown exposures, and emerging risks.
• Act as the key representative of the vulnerability management function during major incidents, providing expert analysis and coordinated response leadership.
• Assess and triage Cyber Threat Intelligence input, determining impact and required actions across the environment.
• Drive targeted response campaigns and validation efforts in collaboration with domain engineers.
• Translate external threat intelligence into actionable technical outcomes and measurable risk mitigation.
• Serve as a key contributor to the overarching VM process, framework, and standards, ensuring technical rigor and operational efficiency.
• Define, track, and evolve key performance and risk metrics (e.g., vulnerability MTTR, backlog trends, exploit exposure, patch SLAs, coverage rates).
• Collaborate with the VM Governance team to ensure alignment of reporting, dashboards, and audit readiness.
• Champion data-driven decision-making and measurable accountability across all VM activities.
• Provide technical oversight to vulnerability management engineers, ensuring analytical depth, accuracy, and consistency in findings and remediation guidance.
• Partner with engineering, infrastructure, and DevSecOps teams to improve vulnerability lifecycle management, from identification and triage to remediation and validation.
• Contribute to root cause and trend analysis of recurring vulnerabilities to inform long-term preventative measures.
• Drive the ongoing enhancement of vulnerability management processes, leveraging lessons learned and industry developments.
• Identify and implement automation opportunities to streamline operations and improve response times.
• Foster a culture of continuous improvement within the team and across the wider security function.
• Proven experience in vulnerability management, security operations, or a related information security domain.
• Strong understanding of vulnerability identification methodologies (e.g. infrastructure scanning, SAST, SCA, penetration testing) and remediation processes.
• Demonstrated ability to lead technical teams and manage operational workflows.
• Solid grasp of threat intelligence, risk assessment, and security best practices.
• Excellent analytical, problem-solving, and decision-making skills.
• Effective communication skills, capable of engaging both technical and non-technical stakeholders.

Perks & Benefits

• Healthcare
• Retirement planning
• Paid volunteering days
• Wellbeing initiatives

LSEG is seeking a Vulnerability Management Operations Lead to drive the execution, coordination, and continuous improvement of our global vulnerability management program. This is a hands-on technical leadership role that blends operational oversight with deep analytical and engineering engagement. You’ll provide direction and coordination across specialized vulnerability management domains, including infrastructure and application level, ensuring alignment, consistency, and measurable risk reduction. As the key operational partner to the Head of Vulnerability Management, you’ll serve as the connective tissue across the program, enabling technical teams, translating intelligence into action, defining performance metrics, and representing vulnerability management in critical business and incident contexts.

Who you are

You’re a technical leader and analytical thinker who thrives at the intersection of engineering, data, and security operations. You combine a hands-on understanding of vulnerabilities and exploits with the ability to orchestrate complex operational programs. You are data-driven, curious, and relentless in pursuit of improvement, always looking for better ways to measure, prioritize, and reduce risk. You excel under pressure, lead with credibility, and elevate those around you through mentorship, clarity, and technical insight.

Key Responsibilities

Operational Leadership

• Provide matrix leadership and coordination across domain-aligned vulnerability management engineers.
• Oversee daily and strategic vulnerability management operations, ensuring consistent execution, quality, and prioritization across all domains.
• Coordinate activities across VM engineers to identify systemic weaknesses, unknown exposures, and emerging risks.
• Act as the key representative of the vulnerability management function during major incidents, providing expert analysis and coordinated response leadership.

Threat and Intelligence Integration

• Assess and triage Cyber Threat Intelligence input, determining impact and required actions across the environment.
• Drive targeted response campaigns and validation efforts in collaboration with domain engineers.
• Translate external threat intelligence into actionable technical outcomes and measurable risk mitigation.

Process and Governance

• Serve as a key contributor to the overarching VM process, framework, and standards, ensuring technical rigor and operational efficiency.
• Define, track, and evolve key performance and risk metrics (e.g., vulnerability MTTR, backlog trends, exploit exposure, patch SLAs, coverage rates).
• Collaborate with the VM Governance team to ensure alignment of reporting, dashboards, and audit readiness.
• Champion data-driven decision-making and measurable accountability across all VM activities.

Technical Oversight

• Provide technical oversight to vulnerability management engineers, ensuring analytical depth, accuracy, and consistency in findings and remediation guidance.
• Partner with engineering, infrastructure, and DevSecOps teams to improve vulnerability lifecycle management, from identification and triage to remediation and validation.
• Contribute to root cause and trend analysis of recurring vulnerabilities to inform long-term preventative measures.

Continuous Improvement

• Drive the ongoing enhancement of vulnerability management processes, leveraging lessons learned and industry developments.
• Identify and implement automation opportunities to streamline operations and improve response times.
• Foster a culture of continuous improvement within the team and across the wider security function.

Required Skills and Experience

• Proven experience in vulnerability management, security operations, or a related information security domain.
• Strong understanding of vulnerability identification methodologies (e.g. infrastructure scanning, SAST, SCA, penetration testing) and remediation processes.
• Demonstrated ability to lead technical teams and manage operational workflows.
• Solid grasp of threat intelligence, risk assessment, and security best practices.
• Excellent analytical, problem-solving, and decision-making skills.
• Effective communication skills, capable of engaging both technical and non-technical stakeholders.

Join us and be part of a team that values innovation, quality, and continuous improvement. If you're ready to take your career to the next level and make a significant impact, we'd love to hear from you.

LSEG is a leading global financial markets infrastructure and data provider. Our purpose is driving financial stability, empowering economies and enabling customers to create sustainable growth.

Our purpose is the foundation on which our culture is built. Our values of Integrity, Partnership, Excellence and Change underpin our purpose and set the standard for everything we do, every day. They go to the heart of who we are and guide our decision making and everyday actions.

Working with us means that you will be part of a dynamic organisation of 25,000 people across 65 countries. However, we will value your individuality and enable you to bring your true self to work so you can help enrich our diverse workforce.

We are proud to be an equal opportunities employer. This means that we do not discriminate on the basis of anyone’s race, religion, colour, national origin, gender, sexual orientation, gender identity, gender expression, age, marital status, veteran status, pregnancy or disability, or any other basis protected under applicable law. Conforming with applicable law, we can reasonably accommodate applicants' and employees' religious practices and beliefs, as well as mental health or physical disability needs.

You will be part of a collaborative and creative culture where we encourage new ideas. We are committed to sustainability across our global business and we are proud to partner with our customers to help them meet their sustainability objectives. Our charity, the LSEG Foundation provides charitable grants to community groups that help people access economic opportunities and build a secure future with financial independence. Colleagues can get involved through fundraising and volunteering.

LSEG offers a range of tailored benefits and support, including healthcare, retirement planning, paid volunteering days and wellbeing initiatives.