Sr. Vulnerability Assessment Analyst I (6397)
About The Position
As Sr. Vulnerability Assessment Analyst I, you’ll identify and assess security weaknesses across mission-critical systems and networks with the goal of making an impact across the federal government. Our Cybersecurity Team is responsible for evaluating enterprise risk posture and strengthening security resilience across federal environments, and you’ll provide actionable vulnerability insights and remediation priorities that drive secure, reliable operations and enable the organization’s continued mission growth. We know that you can’t have great technology services without amazing people. At MetroStar, we are obsessed with our people and have led a two-decade legacy of building the best and brightest teams. Because we know our future relies on our deep understanding and relentless focus on our people, we live by our mission: A passion for our people. Value for our customers. If you think you can see yourself delivering our mission and pursuing our goals with us, then check out the job description below!
Requirements
- Active Top Secret security clearance with SCI eligibility required.
- 5+ years of experience conducting vulnerability assessments across systems and networks in enterprise or enclave environments.
- Bachelor’s degree in Computer Science, Cybersecurity, Information Systems, or a related technical field is strongly preferred.
- Possess DoD 8140 certification aligned to the 541 Vulnerability Assessment Analyst work role, such as Security+ or GSEC or CEH, CySA+, PenTest+, GCED, GCIH, CISA, CISM, or GSNA.
- Demonstrated experience assessing system and network configurations against approved baselines, enclave policy, and local security policy.
- Hands-on experience analyzing vulnerability scan results, validating findings, prioritizing risk, and producing actionable remediation recommendations.
- Proven ability to evaluate the effectiveness of defense-in-depth architectures against known vulnerabilities and attack techniques.
- Operational experience documenting, reporting, and briefing vulnerability findings to technical teams and stakeholders.
- Hands-on experience with Nessus or Tenable vulnerability scanning tools and Splunk Enterprise for vulnerability correlation and analysis.
- Relevant experience may substitute for education requirements.
- Ability to contribute immediately with minimal ramp-up in a mission-critical operational environment.
- Required technical certifications include Security+ and PenTest+ or CEH.
Responsibilities
- Conduct automated vulnerability scans and manual technical assessments across systems and networks within assigned environments or enclaves
- Analyze scan results to identify deviations from approved configuration baselines, STIGs, enclave policy, and local security requirements
- Assess the effectiveness of defense-in-depth architecture against known vulnerabilities and threat scenarios
- Prioritize vulnerabilities based on mission impact, exploitability, and operational risk
- Produce clear, actionable technical reports, metrics, and briefings for cybersecurity and program leadership
- Coordinate remediation activities with engineering, operations, and cybersecurity teams
- Track vulnerability findings and remediation actions through closure
- Support audits, inspections, and continuous monitoring activities as required
Benefits
- Health, dental, and vision insurance
- 401(k) retirement plan with company match
- Paid time off (PTO) and holidays
- Parental Leave and dependent care
- Flexible work arrangements
- Professional development opportunities
- Employee assistance and wellness programs
Stand Out From the Crowd
Upload your resume and get instant feedback on how well it matches this job.
What This Job Offers
Job Type
Full-time
Career Level
Mid Level
