Vulnerability Analyst

About The Position

Requirements

• Proficiency in Microsoft Word, Excel, and Windows-based applications.
• Strong written and verbal communication skills with the ability to explain technical issues to non-technical stakeholders.
• Demonstrated ability to prioritize workload, manage multiple concurrent tasks, and meet deadlines in a fast-paced environment.
• Solid understanding of vulnerability management concepts, including CVEs, CVSS, KEV, and patch management.
• Experience with vulnerability management tools and platforms (e.g., Tanium, Defender, Nessus, Qualys, or similar).
• Understanding of operating systems (Windows server/desktop; Linux preferred), networks, and common enterprise applications.
• Familiarity with security frameworks and regulatory requirements such as HITRUST, HIPAA, PCI DSS, CIS Controls, and NIST.
• Strong analytical and problem-solving skills, with the ability to interpret complex data and recommend practical solutions.
• Ability to work collaboratively with IT, security, compliance, and business stakeholders to drive remediation.
• Bachelor’s degree in computer science, Information Systems, Cybersecurity, or related field; OR 1–3 years of experience in vulnerability management, security operations, IT or a similar role.

Nice To Haves

• At least one relevant certification is preferred, such as: CompTIA Security+ CompTIA CySA+ ISC2 Certified in Cybersecurity GSEC, GFACT, or GISF Cisco Certified CyberOps Associate Other equivalent security certification

Responsibilities

• Vulnerability Identification and Analysis
• Vulnerability Prioritization and Remediation Coordination
• Reporting, Metrics, and Communication
• Tool and System Management
• Cybersecurity Program Support and Improvement
• Incident and Risk Support
• Vendor and Third-Party Management