Senior Security Vulnerability Analyst - ITAJS

Job Title: Senior Vulnerability Analyst
Location: Washington, DC
Type: Contract

Job Description:
Seeking an experienced Senior Vulnerability Analyst to support a dynamic cybersecurity program. This role involves conducting regular vulnerability assessments, managing remediation workflows, and ensuring alignment with federal cybersecurity directives.

Responsibilities:

• Plan and execute daily and weekly credentialed and non-credentialed vulnerability scans across enterprise endpoints, servers, and network devices.

• Evaluate risk levels of identified vulnerabilities and develop clear remediation guidance for system administrators.

• Generate and deliver reports to track progress toward vulnerability remediation goals.

• Ensure compliance with cybersecurity directives such as BOD 22-01 and track known exploited vulnerabilities per CISA guidance.

• Administer and optimize vulnerability management tools and platforms.

• Perform security gap analyses across systems and networks to uncover and assess potential risks.

• Collaborate with cross-functional teams to prioritize remediation efforts and develop actionable plans.

Qualifications:

• Minimum of 5 years of experience in vulnerability assessment and cybersecurity analysis.

• Proficiency with vulnerability scanning tools (e.g., Tenable, Qualys, Rapid7) and SIEM platforms.

• In-depth knowledge of industry cybersecurity standards and regulatory frameworks.

• Strong experience in risk analysis, mitigation strategy development, and vulnerability reporting.

• Proven ability to conduct and interpret security gap assessments.

• Excellent stakeholder engagement and collaboration skills.

Preferred Certifications:

• CISSP – Certified Information Systems Security Professional

• GEVA – GIAC Enterprise Vulnerability Assessor

• Equivalent cybersecurity certifications are also acceptable.