Job Requirements
Remote Arlington, VA Washington, DC
Secret Polygraph not specified
Early Career (2+ yrs experience)
$70,000 - $80,000
Job Description
Vulnerability Management Analyst
Location: Arlington, VA (Hybrid – 1 day/week onsite & as needed, may become 2 days/week)
Salary: $70,000 – $80,000
Clearance Required: Active DoD Secret Clearance or higher
Overview
Seeking a junior-level Vulnerability Management Analyst (1–3 years of experience) to support vulnerability tracking, remediation coordination, and security metrics reporting within a federal technology environment. This role will work hands-on with Tenable/Nessus, iPost, Power BI, Excel, and ticketing systems to ensure vulnerability data is accurate, actionable, and reportable.
Responsibilities
• Run authorized Tenable/Nessus scans and review exports to identify CVEs, plugin findings, KEV status, EOL/EOS software risks, and affected assets
• Validate findings as true or false positives and track vulnerability aging metrics
• Support the full vulnerability lifecycle including triage, remediation tracking, rescans, and closure validation
• Monitor KEV and Critical/High findings against federal remediation timelines
• Build and maintain Power BI dashboards and Excel reports for vulnerability posture and compliance tracking
• Reconcile vulnerability data across Tenable/Nessus, iPost, ServiceNow, Jira, SharePoint, and other tracking tools
• Coordinate with security, infrastructure, development, cloud, and ISSO teams to drive remediation efforts
Requirements
• 1–3 years of experience in cybersecurity operations, vulnerability management, SOC, cyber GRC, IT operations, or application security support
• Hands-on experience with Tenable/Nessus vulnerability scanning and reporting
• Experience with CVE, CVSS, KEV, false positives, POA&M tracking, and vulnerability aging
• Intermediate Power BI experience including Power Query, DAX, slicers, and dashboard creation
• Strong Excel skills including pivot tables, VLOOKUP/XLOOKUP, conditional formatting, and reporting
• Experience with iPost, ServiceNow, Jira, SharePoint, or similar ticketing/remediation tracking tools
• Bachelor’s degree in Computer Science or equivalent experience
• Active DoD Secret Clearance or higher required
Preferred
• Familiarity with NIST SP 800-53, RMF, A&A, ATO, FedRAMP, and CISA BOD 22-01
• Exposure to DevSecOps or application security tooling
• Basic understanding of Windows Server patching, SQL Server, .NET, Java JRE, and SIEM tools such as Splunk
• Security certifications such as Security+, CySA+, or CEH preferred
Location: Arlington, VA (Hybrid – 1 day/week onsite & as needed, may become 2 days/week)
Salary: $70,000 – $80,000
Clearance Required: Active DoD Secret Clearance or higher
Overview
Seeking a junior-level Vulnerability Management Analyst (1–3 years of experience) to support vulnerability tracking, remediation coordination, and security metrics reporting within a federal technology environment. This role will work hands-on with Tenable/Nessus, iPost, Power BI, Excel, and ticketing systems to ensure vulnerability data is accurate, actionable, and reportable.
Responsibilities
• Run authorized Tenable/Nessus scans and review exports to identify CVEs, plugin findings, KEV status, EOL/EOS software risks, and affected assets
• Validate findings as true or false positives and track vulnerability aging metrics
• Support the full vulnerability lifecycle including triage, remediation tracking, rescans, and closure validation
• Monitor KEV and Critical/High findings against federal remediation timelines
• Build and maintain Power BI dashboards and Excel reports for vulnerability posture and compliance tracking
• Reconcile vulnerability data across Tenable/Nessus, iPost, ServiceNow, Jira, SharePoint, and other tracking tools
• Coordinate with security, infrastructure, development, cloud, and ISSO teams to drive remediation efforts
Requirements
• 1–3 years of experience in cybersecurity operations, vulnerability management, SOC, cyber GRC, IT operations, or application security support
• Hands-on experience with Tenable/Nessus vulnerability scanning and reporting
• Experience with CVE, CVSS, KEV, false positives, POA&M tracking, and vulnerability aging
• Intermediate Power BI experience including Power Query, DAX, slicers, and dashboard creation
• Strong Excel skills including pivot tables, VLOOKUP/XLOOKUP, conditional formatting, and reporting
• Experience with iPost, ServiceNow, Jira, SharePoint, or similar ticketing/remediation tracking tools
• Bachelor’s degree in Computer Science or equivalent experience
• Active DoD Secret Clearance or higher required
Preferred
• Familiarity with NIST SP 800-53, RMF, A&A, ATO, FedRAMP, and CISA BOD 22-01
• Exposure to DevSecOps or application security tooling
• Basic understanding of Windows Server patching, SQL Server, .NET, Java JRE, and SIEM tools such as Splunk
• Security certifications such as Security+, CySA+, or CEH preferred
group id: 10529568