Vulnerability Management Analyst (R-00145)

True Zero Technologies•Baltimore MD, VA

About The Position

True Zero Technologies, a veteran-owned small business, was founded on the principle that the purposeful enablement of people and technology in an organization directly ties to the quality of its outcomes. True Zero recognizes that those outcomes begin and end with our people, and that is what we have built a community of like-minded, driven, and passionate individuals and innovators who are aligned in a common goal of delivering top-tier services to our customers. Our culture and commitment have been recognized through numerous accolades, including being named one of the Best Places to Work in 2023 in two categories (“Prosperous and Thriving” ($5MM–$50MM in gross revenue) and “Mid-Atlantic Region” (DC, DE, MD, NC, VA, WV)), and again in 2025 as a Best Places to Work honoree. In addition, True Zero earned coveted spots on the Inc. 5000 list of fastest-growing companies in America in 2022, 2023, and 2025 , a testament to our sustained growth driven by our people-first approach and unwavering dedication to excellence. This candidate will support vulnerability management activities by identifying, analyzing, and prioritizing vulnerabilities across client systems, applications, and networks. Additionally, this role will translate scan results and cyber hygiene findings into actionable remediation guidance, coordinate with stakeholders to track resolution efforts, and help strengthen the organization’s overall security posture. This position calls for strong analytical ability, technical communication skills, and the ability to support risk-informed remediation in a federal cybersecurity environment.

Requirements

Experience using vulnerability scanning tools such as Tenable/Nessus or comparable platforms
Familiarity with enterprise operating systems, networks, cloud platforms, and applications
Working knowledge of CVE, CVSS, NVD, and CISA KEV
Experience analyzing findings and translating technical results into prioritized remediation actions
Experience coordinating with technical stakeholders to track and validate remediation
Ability to produce clear written reporting and communicate technical risk effectively
Familiarity with federal cybersecurity, compliance, or risk-based security operations environments preferred
Bachelor’s degree in Cybersecurity, Information Technology, Computer Science, or related field; or equivalent experience
3+ years of experience in vulnerability management, security operations, system security, or related work
Clearance Required Public Trust or ability to obtain and maintain required DHS suitability/access

Nice To Haves

CASP, GSEC, GSLC, CISSP, CEH, CISM, CISA, PMI-ACP, SAFe Agilist, CSM, or comparable certifications

Responsibilities

Initiate or coordinate vulnerability scans using approved tools
Review and analyze scan results to identify weaknesses and security gaps
Assess risk and prioritize remediation activities based on severity, impact, and likelihood
Track remediation progress and support reporting to leadership and stakeholders
Review cyber hygiene findings and develop actionable recommendations
Coordinate with system owners, engineers, and administrators to support remediation efforts
Monitor emerging vulnerabilities, threat activity, and high-risk exposures that may affect client systems
Support security review of new technologies, applications, and software introduced into the environment
Help maintain vulnerability metrics, dashboards, and reporting outputs
Support process improvement and automation efforts related to vulnerability identification and tracking
Assist with documentation, status reporting, and stakeholder communications as needed

Benefits

Competitive salary, paid twice per month
Best in class medical coverage
100% of medical premiums covered by True Zero
Company wide new business incentive programs
Contribution Incentives (i.e. white papers, blog posts, internal webinars, etc.)
3 weeks of PTO starting + 11 Paid Holidays Annually
401k Program with 100% company match on the first 4%
Monthly reimbursement of Cell Phone and Home Internet costs
Paternity/Maternity Leave
Investment in training and certifications to broaden and deepen your technical skills