Today
Secret
Early Career (2+ yrs experience)
$70,000 - $80,000
IT - Security
Hanscom AFB, MA (On-Site/Office)
Position Summary
The Vulnerability Management Analyst will identify, analyze, and remediate vulnerabilities across enterprise systems. This position requires strong technical and communication skills, with a focus on proactive collaboration and automation-driven patch management. The analyst will leverage ACAS, ARAD (Tanium), and PowerShell scripting to maintain system compliance and reduce risk exposure.
Key Responsibilities:
• Perform vulnerability scanning, assessment, and remediation tracking using ACAS (Nessus/Security Center), ARAD (Tanium), or similar tools.
• Analyze scan data and coordinate patching activities with system administrators and functional owners.
• Develop and maintain PowerShell scripts to automate configuration management and patch deployment tasks.
• Work in Active Directory and Windows Server environments to implement secure baselines and GPO configurations.
• Coordinate vulnerability closure through ServiceNow or equivalent ticketing systems, ensuring timely and accurate updates.
• Prepare tracking and status reports on vulnerability status, patch compliance, and risk posture for leadership and compliance reviews.
• Collaborate with Cybersecurity, IT Operations, and Compliance teams to support RMF and STIG compliance requirements.
• Proactively communicate findings, remediation guidance, tracking insights, and risk impacts to both technical and non-technical stakeholders.
• Support HBSS/MECM and related endpoint management tools as required to deploy patches or security updates.
Required Skills and Qualifications
• Strong understanding of Windows OS (Windows 10/11) and Windows Server environments.
• Experience with vulnerability management tools (e.g., ACAS, Tenable, Nessus, Tanium, Qualys).
• Demonstrated experience with patch management and configuration management processes.
• Intermediate to advanced PowerShell scripting for automation and remediation workflows.
• Working knowledge of Active Directory, Group Policy, and system hardening techniques.
• Familiarity with enterprise ITSM platforms (ServiceNow preferred).
• Excellent written and verbal communication skills, including the ability to convey technical details clearly.
• Proven ability to manage competing priorities in a mission-focused environment.
Education and Certifications
• Active DoD Secret clearance required.
• CompTIA Security+ CE
• Associate’s degree in Information Technology or related field; additional experience may substitute for education.
• 2+ years of experience in vulnerability management, patch management, or system administration within a DoD or enterprise environment.
Preferred Qualifications
• Experience supporting DoD cybersecurity programs and compliance frameworks (RMF, STIGs, DISA, NIST 800-53).
• Familiarity with automation/orchestration platforms for patch and configuration management.
• Excel expertise.
• Experience creating dashboards and reports for leadership visibility using tools such as Power BI, Tanium, and ServiceNow Performance Analytics.
The Vulnerability Management Analyst will identify, analyze, and remediate vulnerabilities across enterprise systems. This position requires strong technical and communication skills, with a focus on proactive collaboration and automation-driven patch management. The analyst will leverage ACAS, ARAD (Tanium), and PowerShell scripting to maintain system compliance and reduce risk exposure.
Key Responsibilities:
• Perform vulnerability scanning, assessment, and remediation tracking using ACAS (Nessus/Security Center), ARAD (Tanium), or similar tools.
• Analyze scan data and coordinate patching activities with system administrators and functional owners.
• Develop and maintain PowerShell scripts to automate configuration management and patch deployment tasks.
• Work in Active Directory and Windows Server environments to implement secure baselines and GPO configurations.
• Coordinate vulnerability closure through ServiceNow or equivalent ticketing systems, ensuring timely and accurate updates.
• Prepare tracking and status reports on vulnerability status, patch compliance, and risk posture for leadership and compliance reviews.
• Collaborate with Cybersecurity, IT Operations, and Compliance teams to support RMF and STIG compliance requirements.
• Proactively communicate findings, remediation guidance, tracking insights, and risk impacts to both technical and non-technical stakeholders.
• Support HBSS/MECM and related endpoint management tools as required to deploy patches or security updates.
Required Skills and Qualifications
• Strong understanding of Windows OS (Windows 10/11) and Windows Server environments.
• Experience with vulnerability management tools (e.g., ACAS, Tenable, Nessus, Tanium, Qualys).
• Demonstrated experience with patch management and configuration management processes.
• Intermediate to advanced PowerShell scripting for automation and remediation workflows.
• Working knowledge of Active Directory, Group Policy, and system hardening techniques.
• Familiarity with enterprise ITSM platforms (ServiceNow preferred).
• Excellent written and verbal communication skills, including the ability to convey technical details clearly.
• Proven ability to manage competing priorities in a mission-focused environment.
Education and Certifications
• Active DoD Secret clearance required.
• CompTIA Security+ CE
• Associate’s degree in Information Technology or related field; additional experience may substitute for education.
• 2+ years of experience in vulnerability management, patch management, or system administration within a DoD or enterprise environment.
Preferred Qualifications
• Experience supporting DoD cybersecurity programs and compliance frameworks (RMF, STIGs, DISA, NIST 800-53).
• Familiarity with automation/orchestration platforms for patch and configuration management.
• Excel expertise.
• Experience creating dashboards and reports for leadership visibility using tools such as Power BI, Tanium, and ServiceNow Performance Analytics.
group id: 10508920
