Vulnerability Management Analyst - US Federal jobs in United States
cer-icon
Apply on Employer Site
company-logo

Workday · 2 days ago

Vulnerability Management Analyst - US Federal

positionMcLean, VA
timeFull-time
remoteHybrid
seniorityMid Level
money$112K/yr - $168K/yr

Workday is a Fortune 500 company and a leading AI platform for managing people, money, and agents. They are seeking a Vulnerability Management Analyst to support contracts with the U.S. Federal Government, focusing on remediating vulnerabilities and working closely with engineering teams.

Artificial Intelligence (AI)Cloud ComputingEnterprise SoftwareHuman ResourcesSaaSSoftware
check
Comp. & BenefitsbadNo H1BnoteU.S. Citizen Onlynote

Responsibilities

Analyze and organize scan results and prioritize vulnerabilities for remediation based on risk requirements
Establish strong relationships with engineering teams to track and report status and remediation timelines
Contribute to the Planning of Actions and Milestones (POAMs)
Support Continuous Monitoring (ConMon) and participate in audit activities related to vulnerability management
Report status to leadership teams

Qualification

Vulnerability managementFedRAMP complianceCommercial scanning toolsCloud computingData managementJira proficiencyStakeholder managementScripting (Python)Industry certificationsCommunication skillsOrganization skills

Required

Outstanding communication and organization skills
Self-driven, motivated professional with experience working with multiple stakeholders
Strong ability to understand and interpret results from commercial scanning tools and provide related guidance for remediation
Strong ability to manage complex datasets in spreadsheets
Previous experience in managing POAMs for FedRAMP authorized environments
Working knowledge of security standards like FedRAMP, DoD IL-4/5, NIST 800-171, NIST 800-53 and the Risk Management Framework (RMF)
Experience in cloud computing, preferably with a major hyperscaler like AWS, Google, etc
Proficiency in using tools like Jira for managing tickets and tasks

Preferred

Relevant industry certifications (e.g., Security+, CEH, CISSP)
Previous experience as an assessor, Information Systems Security Engineer (ISSE) with a 3PAO or Cloud Services Provider (CSP)
Previous experience with US Federal Government defense or civilian agencies
Ability to write simple scripts (e.g. Python) to improve productivity

Benefits

Workday Bonus Plan
Annual refresh stock grants

Company

Workday

twittertwittertwitter
Glassdoor4.2
company-logo
Workday provides SaaS-based enterprise solutions for a company's human resources and financial management activities.
dateFounded in 2005
location
Pleasanton, California, USA
people-size10001+ employees
web-link
http://www.workday.com

Funding

Current Stage
Public Company
Total Funding
$2.23B
Key Investors
Elliott Management Corp.New Enterprise AssociatesGreylock
2025-09-16Post Ipo Equity· $2B
2012-10-12IPO
2011-10-24Series F· $85M

Leadership Team

leader-logo
Aneel Bhusri
CEO and Co-Founder
linkedin
leader-logo
Peter Bailis
Chief Technology Officer
linkedin

Recent News

EIN Presswire
Top Contract Intelligence and Analytics Software According to the FeaturedCustomers Winter 2026 Customer Success Report
2026-01-06
MarketScreener
Tech Up on Volatile Trading - Tech Roundup
2026-01-03
Greylock
Greylock Portfolio - Workday
2025-12-31
Company data provided by crunchbase