Vulnerability Analyst (Remote)

Oxley Enterprises®, Inc.Stafford, VA
$90,897 - $118,016Remote

About The Position

Defend the security posture of a mission-critical Department of Veterans Affairs (VA) cloud platform. As a Vulnerability Analyst, you will conduct continuous vulnerability scanning across hundreds of applications and drive remediation within defined timelines on Amazon Web Services (AWS) GovCloud. The Vulnerability Analyst conducts ad-hoc, prescribed, and recurring vulnerability scans across infrastructure, containers, applications, and code repositories, coordinating remediation with Operations and Engineering teams.

Requirements

  • 5 years of experience in vulnerability management or security scanning
  • Expert experience conducting ad-hoc, prescribed, and recurring vulnerability scans using Nessus or equivalent scanning tools
  • Expert ability to document and report scan findings in accordance with established processes
  • Excellent experience supporting routine vulnerability scanning of infrastructure, containers, applications, and code repositories
  • Excellent ability to track, report, and ensure remediation of vulnerabilities
  • Excellent knowledge of Continuous Monitoring system security reporting tools
  • Above average ability to support penetration testing, red team activities, and independent security assessments
  • Above average experience validating security control effectiveness through automated testing and configuration validation
  • Experience supporting a federal agency
  • Excellent verbal and written communication skills
  • Active Federal Civilian Public Trust clearance
  • U.S. Citizenship or Permanent Resident that has lived in the United States for at least 3 years

Nice To Haves

  • CompTIA Security+ or Global Information Assurance Certification (GIAC) Enterprise Vulnerability Assessor (GEVA)

Responsibilities

  • Conducts ad-hoc, prescribed, and recurring vulnerability scans for platform and all hosted applications
  • Reports scan results to Operations and Engineering team members
  • Conducts patch management, configuration changes, corrective actions, or Plan of Action and Milestones (POA&M) creation
  • Documents and reports scan findings in accordance with VA RMF and POA&M processes including uploading scan results to the appropriate scan repository
  • Performs upkeep of the Continuous Monitoring system security reporting tool and provides high-level reporting to portfolio Information System Owners
  • Ensures routine vulnerability scanning of infrastructure, containers, applications, and code repositories across production, staging, and sandbox environments
  • Tracks, reports, and ensures remediation of vulnerabilities within defined timelines coordinating with Operations and Engineering teams
  • Supports penetration testing, red team activities, and independent security assessments as required
  • Validates security control effectiveness through automated testing, configuration validation, and periodic assessments
  • Contributes vulnerability remediation status summaries to the monthly RMF, security, and Authorization to Operate (ATO) status report

Benefits

  • Medical, dental, vision and prescription drug coverage for you and your family.
  • Life Insurance, short-term disability and long-term disability paid for by the Company.
  • Supplemental coverages including Accident, Critical Illness, and Hospital.
  • Additional Life insurance coverage for you and your dependents.
  • 401k plan with various options to select based on your retirement goals.
© 2026 Teal Labs, Inc
Privacy PolicyTerms of Service