416 vulnerability analyst jobs at 275 companies in United States

1w
Save
Mark Applied
Hide
Vulnerability Analyst
Alabama, United States
$55k-$75k/yr RemoteFull Time
Summit 7 Systems
Summit 7 Systems: Cybersecurity and compliance consulting for the defense industry.
2+ YOE2+ years vulnerability management or security assessment experience; Security+ required; experience with Qualys, VSA, Tanium, CVSS/CVE; scripting, patch management, reporting, and security framework familiarity.
Qualys, VSA, Tanium, CVSS, CVE, Azure Gov Cloud, Office 365 GCC/GCCH
1mo
Save
Mark Applied
Hide
Vulnerability Analyst
United States or United Kingdom or Chicago
$78k-$135k/yr RemoteFull Time
Coalfire
Coalfire: Provides cybersecurity advisory, assessment, and technical testing services.
3+ YOE3+ years vulnerability management or security operations experience; hands-on experience with OS, DB, network, container, web, and API scanning; cloud experience (AWS/Azure/GCP); FedRAMP/HITRUST/PCI familiarity; scripting (Python/PowerShell/Bash); US citizenship required.
Tenable, Nessus, Burp, Qualys, Rapid7, Wiz, Prisma, Microsoft Defender, Trivy, Anchore, Snyk, Python, PowerShell, Bash, FedRAMP, HITRUST, PCI, SCAP, SCC, CIS Benchmarks, STIG, CVSS, CMSS, NIST 800-53, SAST, DAST, SCA, CI/CD, Kubernetes, AWS, Azure, GCP
1d
Save
Mark Applied
Hide
Vulnerability Analyst (19322)
Oak Ridge, Tennessee, United States
OnsiteFull Time
Consolidated Nuclear Security
Consolidated Nuclear Security: Operates nuclear security facilities for the U.S. government.
8+ YOEPerform vulnerability analysis, scans, risk/impact assessments, intrusion detection, and recommend mitigations; bachelor's in engineering/science/IT or equivalent; ability to obtain DOE Q clearance.
Snort, Wireshark, tcpdump, nmap, TCP, IP, PL/SQL, Oauth, OpenID, SAML, SPML, ITIL, OWASP
2d
Save
Mark Applied
Hide
Vulnerability Analyst II
Washington, District of Columbia, United States
$110k-$137k/yr OnsiteFull Time
Koniag Government Services
Koniag Government Services: Providing technical and professional services to federal agencies.
3+ YOEBachelor's in CS/IT/Cybersecurity, 3+ years vulnerability management experience, public trust eligible, hands-on with Tenable/Qualys, CVSS, CIS/DISA baselines, strong communication and reporting skills.
Tenable Nessus, Tenable.io, Qualys, CVSS, CISA KEV, NVD, US-CERT, CIS Benchmarks, DISA STIGs, OWASP Top 10, Burp Suite, OWASP ZAP, Python, PowerShell, AWS, Azure, GCP, CDM
1w
Save
Mark Applied
Hide
Cybersecurity Vulnerability Analyst
Washington, District of Columbia, United States
RemoteFull Time
Covington & Burling
Covington & Burling: Global law firm providing legal and regulatory counseling services.
3+ YOE3+ years vulnerability analysis (or 5+ years infosec) with hands-on scanner experience, knowledge of CVEs and risk frameworks, strong analysis and communication skills, and US export-control eligibility.
CMDB, OCTAVE
3w
Save
Mark Applied
Hide
Sr. Vulnerability Analyst
Detroit, Michigan, United States
OnsiteFull Time
Henry Ford Health
Henry Ford Health: Integrated health care system providing medical services and insurance.
7+ YOEBachelor's degree required; 7+ years IT/security experience (including 5 years direct information security and 1 year offensive testing); strong vulnerability management and offensive testing skills; recommended security certifications; knowledge of security laws and healthcare environments.
1w
Save
Mark Applied
Hide
Software Vulnerability Analyst
Scottdale, Pennsylvania, United States
OnsiteFull Time
Tharros
Tharros: Provides specialized cybersecurity defense and vulnerability research services.
2+ YOEBachelor's in CS/cybersecurity, 2+ years vulnerability analysis experience, knowledge of vulnerability lifecycle and scoring frameworks, ability to analyze software dependencies, strong communication, proficiency with Microsoft Office/Teams.
CVE, CWE, CVSS, Microsoft Office Suite, Microsoft Teams, AI/LLM
1w
Save
Mark Applied
Hide
Vulnerability Assessment Analyst
Columbia, Maryland, United States
$143k-$171k/yr OnsiteFull Time
Accenture Federal Services
Accenture Federal ServicesNYSE: ACN: Provides technology and consulting services to U.S. federal agencies.
2+ YOE2+ years performing vulnerability scans, risk assessment, RMF support, eMASS/STIG/POA&M/ATO activities, security documentation, incident response familiarity, and reporting to leadership.
eMASS, Risk Management Framework (RMF), STIG
1mo
Save
Mark Applied
Hide
Cybersecurity Vulnerability Analyst
Linthicum, Maryland, United States
$104k-$166k/yr OnsiteFull Time
Peraton
Peraton: Provides advanced technology and mission support for government agencies.
0+ YOEBachelor’s degree + 5+ years, or Master’s + 3+ years, or PhD + 0+ years; active Secret clearance; IAT Level II certification; strong vulnerability assessment and penetration testing skills.
Kali Linux, Burp Suite, Open source tools, PowerShell, Python, SQL, HTML/CSS
1w
Save
Mark Applied
Hide
System Vulnerability Analyst
Annapolis Junction, Maryland, United States
$50k-$290k/yr OnsiteFull Time
The Swift Group: Providing engineering and cybersecurity services for national security missions.
2+ YOEPerform vulnerability assessments and security analysis of systems, networks, hardware and software; recommend mitigations. Requires OS/network knowledge, risk analysis skills, and active TS/SCI with Polygraph and U.S. citizenship.
3w
Save
Mark Applied
Hide
POA&M/Vulnerability Analyst
Arlington, Virginia, United States
OnsiteContract
Argo Cyber Systems
Argo Cyber Systems: Provides managed cybersecurity and incident response services to organizations.
2+ YOEU.S. citizenship and active TS/SCI (DHS EOD suitability) required. Minimum 2 years vulnerability/POA&M experience, familiarity with scanning tools (Tenable/Nessus/Qualys/Rapid7), eMASS, Splunk, scripting (Python/JavaScript), and strong reporting skills.
eMASS, Tenable, Nessus, ACAS, Qualys, Rapid7, Splunk, Databricks Intelligence Platform, Python, JavaScript, STIG, SCAP, Linux, Windows
1mo
Save
Mark Applied
Hide
Cybersecurity Vulnerability Analyst
Linthicum, Maryland, United States
$104k-$166k/yr OnsiteFull Time
Peraton
Peraton: National security and mission-critical government technology services provider.
5+ YOEBachelor’s or higher in IT/Cyber with 5+ years, or Master’s with 3+ years; active Secret clearance; IAT Level II; pentesting; web app and vulnerability assessment skills; familiarity with MITRE ATT&CK, CVSS, NIST; OWASP Top 10.
Kali Linux, Burp Suite, MITRE ATT&CK, CVSS, NIST, OWASP, PowerShell, Bash, Python, Perl
1mo
Save
Mark Applied
Hide
Mid-Senior System Vulnerability Analyst
Fort Meade, Maryland, United States
$135k-$240k/yr OnsiteFull Time
M2 Technology Group
M2 Technology Group: Providing specialized cybersecurity and engineering services for government agencies.
4+ YOESenior-level vulnerability analyst to perform assessments, threat/pen tests, forensic/system analysis, interface with mission partners, respond to RFIs; requires active security clearance with appropriate polygraph and advanced technical degree/experience.
1mo
Save
Mark Applied
Hide
System Vulnerability Analyst 3
Annapolis Junction, Maryland, United States
OnsiteFull Time
RealmOne
RealmOne: Provides advanced technology services for national security agencies.
4+ YOEIdentify and analyze system vulnerabilities and attacks, exploit captured media, conduct incident investigations, perform vulnerability analysis/penetration testing/forensics, and produce reports and briefings; active security clearance with polygraph required.
2w
Save
Mark Applied
Hide
Vulnerability Analyst (Remote)
United States or Alaska or California or Colorado or Connecticut or District of Columbia or Hawaii or Louisiana or Massachusetts or Minnesota or Missouri or Nebraska or Nevada or New Hampshire or New Jersey or New Mexico or New York or North Dakota or Oregon or Rhode Island or Vermont or Washington or Wyoming or Puerto Rico
RemoteFull Time
Oxley Enterprises
Oxley Enterprises: Provider of enterprise IT solutions and organizational management consulting.
Remote U.S. role; posting provides no specific skills or years required in the job text beyond generic instructions and benefits.
2mo
Save
Mark Applied
Hide
Sr Vulnerability Management Analyst
Malvern or North Carolina or Texas
HybridFull Time
Vanguard
Vanguard: Provides mutual funds, ETFs, and investment management services.
5+ YOEMinimum 5 years related experience; 2+ years managing vulnerabilities at scale; strong CVSS knowledge; cloud experience; automation experience.
Aqua, Palo Alto Prisma, Wiz, CrowdStrike, Tenable Nessus, Qualys, Claude Code/Codex
1w
Save
Mark Applied
Hide
Vulnerability Management Analyst 2
New York, New York, United States
$110k-$130k/yr RemoteFull Time
New York University
New York University: Private research university providing undergraduate and graduate degree programs.
3+ YOEBachelor's degree and 3+ years in cybersecurity with vulnerability management, hands-on scanning tools, scripting/automation, Splunk/SOAR experience, CompTIA Security+, strong communication and risk prioritization skills.
Splunk, Splunk Dashboard Studio, Splunk SPL, SOAR, Censys, Shodan, SIEM
2mo
Save
Mark Applied
Hide
Sr. System Vulnerability Analyst
Fort Meade, Maryland, United States
OnsiteFull Time
Themis Insight
Themis Insight: Provides technical consulting and data analytics for national security.
11+ YOETS/SCI with Polygraph; Bachelor’s degree in CS or related field plus 11 years experience, or Master’s plus 9 years, or Doctoral plus 7 years; relevant vulnerability analysis experience.
3w
Save
Mark Applied
Hide
Enterprise Cybersecurity Vulnerability Risk Analyst
McLean, Virginia, United States
$99k-$225k/yr HybridFull Time
Booz Allen Hamilton
Booz Allen HamiltonNYSE: BAH: Consulting and technology services for government and commercial clients
5+ YOE5+ years supporting cybersecurity operations or vulnerability management; experience managing vulnerability lifecycles, evaluating exceptions/deferrals, assessing mitigating controls, ServiceNow workflow use, HS diploma or GED.
ServiceNow, ServiceNow Vulnerability Response, Integrated Risk Management, ITSM, CMDB, AWS, Azure, Google Cloud Platform
3w
Save
Mark Applied
Hide
System Vulnerability Analyst 4
Maryland, United States
$154k-$169k/yr OnsiteFull Time
Gormat
Gormat: Provides cybersecurity and systems engineering services to government defense agencies
7+ YOERequires extensive vulnerability analysis, red/blue/purple team experience, ability to exploit captured media and investigate incidents, familiarity with MITRE ATT&CK and NIST/ISO 27001, OCONUS travel, TS/SCI with polygraph.
MITRE ATT&CK, NIST, ISO 27001, Python