Vulnerability Analyst

Booz Allen Hamilton

Actively hiring Posted this week
Washington, District of Columbia Posted 6 days ago $99,000$225,000 / year
View original post Log in to save

At a glance

AI generated

TL;DR

As a Senior Vulnerability Analyst on our Security Operations Center (SOC) team, you will play a critical role in identifying and mitigating cyber threats by leading the enterprise vulnerability management process. Your daily tasks include conducting regular scans with tools like Tenable and Qualys, validating vulnerabilities based on exploitability and business risk, coordinating remediation efforts, and generating detailed reports for executive-level stakeholders. You must possess deep technical expertise in threat and vulnerability management, experience with SOC operations, and proficiency in CVSS, CWE, NVD, and other key frameworks. This role demands strong collaboration skills to work closely with IT and cyber teams to secure government clients from malicious actors, ensuring compliance with federal cybersecurity standards such as BOD 22-01 and BOD 23-01.

Skills

Tenable Qualys CVSS CWE NVD CI/CD Kubernetes AWS Python PostgreSQL Git Docker Prometheus Grafana NIST 800-53 CEH CySA+ CASP+ CISSP

What you'll do

  • Lead enterprise vulnerability management to support continuous monitoring and RMF requirements.
  • Conduct regular vulnerability scans using tools like Tenable and Qualys, interpreting scan results accurately.
  • Validate and prioritize vulnerabilities based on exploitability, threat intelligence, and business risk factors.
  • Coordinate with system owners to track remediation efforts and ensure closure of identified issues.
  • Provide technical recommendations for mitigating risks discovered through assessments and audits.

What we're looking for

  • 8+ years of experience in vulnerability management and analysis.
  • Deep technical expertise in threat and vulnerability management.
  • Experience with enterprise vulnerability scanning tools like Tenable.sc, Nessus, or Qualys.
  • Ability to generate reports on progress towards meeting remediation targets.
  • Knowledge of CVSS, CWE, NVD, and threat intelligence sources.
  • Bachelor’s degree required; certifications such as CEH, CySA+, CASP+, CISSP preferred.

Employer

About Booz Allen Hamilton

Booz Allen Hamilton is a management and technology consulting firm that provides analytics, digital, engineering, and cybersecurity solutions primarily to U.S. government agencies and commercial clients. Industry: Management & Technology Consulting

Booz Allen Hamilton currently has 641 open roles on FindRole.

Listed pay typically runs $86,800–$198,000 across 628 roles with salary data.

Most-posted roles

View all roles at Booz Allen Hamilton