Plus
Включить Plus
Назад
Company hidden
1 день назад

Vulnerability Management Analyst (Cybersecurity)

Формат работы
hybrid
Тип работы
fulltime
Грейд
middle
Английский
b2
Страна
US
Вакансия из списка Hirify.GlobalВакансия из Hirify Global, списка международных tech-компаний
Для мэтча и отклика нужен Plus

Мэтч & Сопровод

Для мэтча с этой вакансией нужен Plus

Описание вакансии

Текст:
/

TL;DR

Vulnerability Management Analyst (Cybersecurity): Identifying, analyzing, and prioritizing vulnerabilities across client systems and networks with an accent on translating scan results into actionable remediation guidance. Focus on risk-informed remediation in federal cybersecurity environments, monitoring emerging threats, and strengthening overall security posture.

Location: Must be based in the US (Washington DC, Baltimore, Arlington, and other VA/MD areas) with telework flexibility.

Company

hirify.global is a veteran-owned small business dedicated to delivering top-tier cybersecurity services to federal customers.

What you will do

  • Coordinate and execute vulnerability scans using approved tools like Tenable/Nessus.
  • Analyze scan results to identify security gaps and prioritize remediation based on severity and impact.
  • Collaborate with system owners, engineers, and administrators to track and validate remediation efforts.
  • Monitor emerging vulnerabilities and threat activity that may affect client systems.
  • Develop actionable recommendations from cyber hygiene findings and security reviews of new technologies.
  • Maintain security metrics, dashboards, and reporting outputs for leadership and stakeholders.

Requirements

  • 3+ years of experience in vulnerability management, security operations, or system security.
  • Proficiency with vulnerability scanning tools such as Tenable/Nessus.
  • Working knowledge of CVE, CVSS, NVD, and CISA KEV.
  • Must possess or be able to obtain and maintain Public Trust or DHS suitability/access clearance.
  • Bachelor’s degree in Cybersecurity, IT, Computer Science, or equivalent professional experience.

Nice to have

  • Certifications: CISSP, CEH, CISM, CISA, CASP, GSEC, GSLC, or comparable.
  • Experience working within federal cybersecurity and compliance environments.

Culture & Benefits

  • 100% of medical premiums covered by the company.
  • 401k program with a 100% company match on the first 4%.
  • 3 weeks of PTO plus 11 paid holidays annually.
  • Monthly reimbursement for cell phone and home internet costs.
  • Direct investment in training and certifications to broaden technical skills.

Будьте осторожны: если работодатель просит войти в их систему, используя iCloud/Google, прислать код/пароль, запустить код/ПО, не делайте этого - это мошенники. Обязательно жмите "Пожаловаться" или пишите в поддержку. Подробнее в гайде →