Associate, Vulnerability Assessment

About The Position

Requirements

• Less than 2 years of vulnerability assessment experience.
• Past experience with a leading vulnerability scan tool (Tenable, Qualys, Nexpose, Prisma Cloud, Burp, etc.).
• Bachelor’s degree in related Cybersecurity, Information Technology, Computer Science, or equivalent combination of education and experience.
• Understanding of policies, procedures, development, and implementation of vulnerability identification, scanning, analysis, remediation tactics, and reporting within an organization.
• In depth knowledge and experience of industry best practices for vulnerability management.
• Certification in Security+, CCSK, AWS Cloud Practitioner or something comparable.
• Expertise in Security Frameworks (ISO, NIST, COBIT, HIPAA/HITECH, etc.) and regulatory requirements.

Nice To Haves

• Familiarity with 3 or more frameworks such as FedRAMP, FISMA, SOC, ISO, HIPAA, HITRUST, etc.
• Experience creating system inventories, boundary diagrams, and/or plans of actions and milestones (POA&M).
• Familiarity with Cloud services such as AWS, GCP, & Azure.
• Familiarity with configuration baseline standards such as CIS & STIG.
• Experience with scripting such as Python, Bash, PowerShell.

Responsibilities

• Operate, review, or assess implementations of vulnerability scanning tools (Tenable, Qualys, Nexpose, Prisma Cloud, Burp, etc.).
• Provide recommendations on remediating host-based and web application vulnerabilities.
• Conduct manual validation to confirm vulnerability closure.
• Analyze raw scan data to provide reports detailing credential success, inventory validation, and open vulnerabilities.
• Perform analysis to validate justifications provided by clients for vendor dependencies, false positives, operational requirements, and risk adjustments.
• Collaborate with other Coalfire personnel to drive customer satisfaction and ensure timely delivery of vulnerability scan findings, analysis results, and validated justifications.

Benefits

• Flexible work model that empowers you to choose when and where you’ll work most effectively – whether you’re at home or an office.
• Company that prioritizes connection and wellbeing.
• Opportunities to join employee resource groups, participate in in-person and virtual events, and more.
• Competitive perks and benefits to support you and your family.
• Paid parental leave.
• Flexible time off.
• Certification and training reimbursement.
• Digital mental health and wellbeing support membership.
• Comprehensive insurance options.