Be an early applicantLess than 25 applicants

Company

Peraton · 1 day ago

Vulnerability Analyst

United States

Full-time

Remote

Mid, Senior Level

$80K/yr - $128K/yr

5+ years exp

Maximize your interview chances

Information TechnologyRobotics

Actively Hiring

No H1B

U.S. Citizen Only

Security Clearance Required

Insider Connection @Peraton

Discover valuable connections within the company who might provide insights and potential referrals.
Get 3x more responses when you reach out via email instead of LinkedIn.

Responsibilities

Conduct regular vulnerability assessments, including comprehensive scans for vulnerabilities and compliance issues within a large, multi-tenant enterprise data center environment.

Utilize Tenable Security Center and Tenable I.O. to configure, execute, and analyze vulnerability scans across both internal and external systems.

Interpret scan results, prioritize vulnerabilities based on severity and risk, and engage with the operations team to develop effective remediation strategies.

Lead the setup, implementation, and management of a continuous vulnerability monitoring program.

Work closely with the DHS CDM team to ensure that relevant data feeds are being captured and accurately reported to the CDM dashboard.

Collaborate with the team to enhance the visibility of vulnerabilities and compliance posture through effective use of automated monitoring and alerting tools.

Act as the subject matter expert in vulnerability remediation processes, providing guidance to the operations and IT teams for mitigating identified vulnerabilities.

Facilitate and track vulnerability remediation efforts, ensuring adherence to established timelines and risk management protocols.

Monitor progress of remediation actions and provide status updates to management, stakeholders, and compliance teams.

Work with cross-functional teams, including infrastructure, operations, and compliance teams, to ensure vulnerabilities are remediated and mitigated in a timely and efficient manner.

Provide detailed, actionable reporting and analysis of vulnerability trends, risk assessments, and remediation status to senior management and stakeholders.

Participate in vulnerability triage meetings, providing technical expertise and guidance to team members and other departments.

Continuously evaluate and improve vulnerability management tools, processes, and techniques.

Provide feedback on improvements to the Tenable Security Center and Tenable I.O. configurations and workflows, ensuring the tools are optimized for the organization's needs.

Stay updated on emerging threats and vulnerabilities, proactively recommending strategies to address new and evolving risks.

Maintain thorough documentation of vulnerability management processes, remediation steps, and compliance activities.

Ensure that vulnerability management processes align with industry best practices and compliance requirements, including DHS CDM, PCI-DSS, HIPAA, and others.

Qualification

Find out how your skills align with this job's requirements. If anything seems off, you can easily click on the tags to select or unselect skills to reflect your actual expertise.

Vulnerability ManagementTenable Security CenterTenable I.O.Continuous MonitoringDHS CDMNetworking TechnologiesOperating SystemsVulnerability Scanning ToolsCISSPCISACEHCompTIA Security+Cloud Security

Required

Bachelor's degree in a STEM field (Science, Technology, Engineering, or Mathematics) or a related discipline

Minimum 5 to 7 years experience in vulnerability management

Strong background in providing vulnerability assessment services within a large, multi-tenant enterprise data center

Hands-on experience with Tenable Security Center and Tenable I.O.

Proficiency in networking technologies (TCP/IP, DNS, DHCP, HTTP/HTTPS, etc.)

Strong working knowledge of operating systems (Linux, Windows, Unix) and their associated vulnerabilities

Expertise in using vulnerability scanning tools (preferably Tenable products)

Knowledge of DHS CDM and experience working with security monitoring and compliance platforms

Ability to analyze complex vulnerability data, prioritize remediation efforts, and translate findings into actionable insights for both technical and non-technical stakeholders

U.S. Citizenship required; Must have the ability to obtain and maintain a Public Trust clearance

Preferred

Certifications (one or more of the following is a plus): CISSP (Certified Information Systems Security Professional), CISA (Certified Information Systems Auditor), CEH (Certified Ethical Hacker), CompTIA Security+ or other relevant certifications in security, networking, or vulnerability management

Familiarity with additional vulnerability management platforms (e.g., Qualys, Rapid7 Nexpose) or SIEM tools (e.g., Splunk, IBM QRadar)

Experience working with cloud security and vulnerabilities in cloud platforms (e.g., AWS, Azure, Google Cloud)

Strong written and verbal communication skills, including experience creating reports, presentations, and detailed documentation

Demonstrated ability to work cross-functionally with teams from various disciplines (security, operations, infrastructure, etc.) to achieve common goals and resolve complex issues

Strong problem-solving skills, with the ability to manage multiple tasks, prioritize effectively, and work under pressure in a fast-paced environment