Logo
ClearanceJobs

Vulnerability Analyst

ClearanceJobs, Washington, District of Columbia, us, 20022

Save Job
Vulnerability Analyst

PRISM is seeking a Vulnerability Analyst to join our cybersecurity team. This role offers an exciting opportunity to lead and contribute to vulnerability management activities, risk assessments, and security compliance initiatives across hybrid environments. The analyst will play a key role in identifying, analyzing, and tracking vulnerabilities using industry-standard tools and processes. The ideal candidate will have a strong understanding of cybersecurity principles and hands-on experience with vulnerability scanning tools such as Nessus, Tenable Security Center, Tenable.IO, Qualys WAS, or NMAP. This role involves executing complex scans, correlating and analyzing results, coordinating remediation efforts, and supporting compliance reporting. The analyst will work closely with stakeholders across IT, security engineering, and compliance teams to improve our client's security posture. Key Responsibilities: Plan and perform vulnerability scans and assessments across on-premises, hybrid, and cloud environments. Lead scanning activities for servers, endpoints, applications, and cloud infrastructure using a variety of industry-standard tools. Analyze and validate scan results, correlate findings, and determine severity and risk impact to prioritize remediation efforts. Collaborate with remediation teams, system owners, and senior security staff to track and resolve identified vulnerabilities. Maintain and update vulnerability tracking systems, dashboards, and compliance reports. Develop reports, briefs, and metrics to communicate vulnerability status, remediation progress, and compliance standing to leadership. Stay up to date on emerging vulnerabilities, CVEs, threat intelligence, and best practices. Qualifications & Experience: Bachelor's degree in Cybersecurity, Information Technology, or a related field. 3-5 years of experience in cybersecurity, vulnerability management, or security operations. Hands-on experience with vulnerability scanning tools (e.g., Tenable products, Qualys, or NMAP) and interpreting technical scan results. Familiarity with vulnerability remediation and risk prioritization frameworks (e.g., CVSS, CISA KEV). Demonstrated experience supporting vulnerability lifecycle tracking and reporting using standard platforms. Preferred Qualifications: Experience with vulnerability management in cloud environments (Azure, AWS, GCP). Proficiency in scripting or automation using Python, PowerShell, or SQL. Familiarity with SIEMs and security tool integration. Certifications such as CompTIA Security+, CySA+, or equivalent cybersecurity certifications. Strong communication and reporting skills, including experience presenting technical findings to non-technical audiences.