Vulnerability Analyst

Booz Allen Hamilton•Washington, DC

4d•$99,000 - $225,000•Remote

About The Position

The Opportunity: As a vulnerability analyst, you’re in the middle of the action, responding to and mitigating threats in real time. You’re the first line of cyber defense for your organization, and they look to you for guidance on best practices and security measures. We need a vulnerability analyst like you to help us secure critical infrastructure from the constant onslaught of cyber attacks for a government agency. As a vulnerability analyst on our team, you’ll improve monitoring strategies and analyze threats, using state-of-the-art tools. You’ll use your cyber security skills to: Lead the enterprise vulnerability management process in support of continuous monitoring and RMF requirements. Conduct regular vulnerability, compliance, and discovery scans using tools such as Tenable and Qualys, and interpret scan results. Validate and prioritize discovered vulnerabilities based on exploitability, threat intelligence, and business risk. Coordinate with system owners and administrators to track and measure remediation efforts and verify closure. Provide technical recommendations to mitigate risks identified through assessments. Create and maintain dashboards, metrics, key performance indicators, and executive-level reports on vulnerability status and trends. You’ll work with the team to understand, mitigate, and respond to threats quickly, restoring operations and limiting the impact. You’ll guide efforts to figure out just how many systems are affected and assist recovery efforts. You’ll combine threat intelligence, event data, and assessments from recent events, and identify patterns to understand attackers’ goals to stop them from succeeding. This is a great opportunity to hone your cyber security skills with hands-on experience in threat assessment and incident response. Work with us as we secure government clients from malicious actors. We are seeking an experienced Senior Vulnerability Analyst to join our Security Operations Center (SOC) team. This role is critical in helping identify, assess, prioritize, and coordinate remediation of vulnerabilities across enterprise systems. The ideal candidate will bring deep technical expertise, advanced understanding of threat and vulnerability management, and the ability to work collaboratively with IT and cyber teams to reduce cyber risk. Join us. The world can’t wait.

Requirements

8+ years of experience in vulnerability management and analysis
Experience working in an environment with SOC operations and cybersecurity engineers
Experience with enterprise vulnerability scanning tools, such as Tenable.sc, Nessus, or Qualys
Experience generating reports to measure progress in meeting vulnerability remediation targets
Experience monitoring compliance with BOD 22-01, including tracking vulnerabilities against Known Exploited Vulnerabilities (KEV) Catalog, and BOD 23-01, including asset discovery and vulnerability enumeration
Knowledge of CVSS, CWE, NVD, and threat intelligence sources
Ability to evaluate the risk of all identified vulnerabilities and prepare remediation instructions for system administrators
Ability to obtain and maintain a Public Trust or Suitability/Fitness determination based on client requirements
Bachelor’s degree

Nice To Haves

Knowledge of NIST 800-53 and other federal cybersecurity frameworks
CEH, CySA+, CASP+, CISSP, or Tenable Certification

Responsibilities

Lead the enterprise vulnerability management process in support of continuous monitoring and RMF requirements.
Conduct regular vulnerability, compliance, and discovery scans using tools such as Tenable and Qualys, and interpret scan results.
Validate and prioritize discovered vulnerabilities based on exploitability, threat intelligence, and business risk.
Coordinate with system owners and administrators to track and measure remediation efforts and verify closure.
Provide technical recommendations to mitigate risks identified through assessments.
Create and maintain dashboards, metrics, key performance indicators, and executive-level reports on vulnerability status and trends.
Understand, mitigate, and respond to threats quickly, restoring operations and limiting the impact.
Guide efforts to figure out just how many systems are affected and assist recovery efforts.
Combine threat intelligence, event data, and assessments from recent events, and identify patterns to understand attackers’ goals to stop them from succeeding.