Talent.com
Senior Vulnerability Management Analyst
Senior Vulnerability Management AnalystPeraton • Bethesda, Maryland, USA
Senior Vulnerability Management Analyst

Senior Vulnerability Management Analyst

Peraton • Bethesda, Maryland, USA
[job_card.variable_days_ago]
[job_preview.job_type]
  • [job_card.full_time]
[job_card.job_description]

Responsibilities

The Vulnerability Management Analyst will support the Federal Aviation Administration (FAA) under the BNATCS contract providing specialized cybersecurity and risk management services to help protect National Airspace System (NAS) systems enterprise infrastructure and critical mission applications. This role focuses on identifying analyzing tracking and mitigating vulnerabilities across FAA environments ensuring compliance with federal security requirements and contributing to a proactive cybersecurity posture.

Key Responsibilities may include-

Vulnerability Identification & Analysis

  • Perform regular vulnerability scanning of FAA networks systems and applications using FAA-approved toolsets (e.g. Tenable Nessus Qualys ACAS Rapid7).
  • Analyze scan results to identify threats misconfigurations and weaknesses across FAA environments.
  • Validate findings assess severity and risk impact and distinguish false positives from actionable vulnerabilities.

Risk Prioritization & Reporting

  • Prioritize vulnerabilities based on FAA risk models mission impact threat intelligence and criticality of affected assets.
  • Prepare detailed vulnerability and risk reports for FAA stakeholders ISSOs SOC teams and system owners.
  • Support creation of dashboards metrics and trend analyses to measure vulnerability remediation performance.

    • Remediation Coordination

  • Collaborate with FAA system owners network engineers developers and operations teams to drive timely remediation of findings.
  • Track remediation efforts document mitigation strategies and verify closure of vulnerabilities.
  • Provide technical recommendations to reduce exposure and strengthen system defenses.

    • Compliance & Governance

  • Support adherence to federal cybersecurity frameworks including NIST 800-53 NIST CSF FISMA TIC and FAA information security policies.
  • Assist with POA&M (Plan of Action & Milestones) documentation updates and lifecycle management.
  • Participate in ATO (Authorization to Operate) and continuous monitoring activities within the RMF process.

    • Continuous Improvement & Security Enhancement

  • Contribute to development and refinement of vulnerability management procedures SOPs and scanning schedules.
  • Stay current with emerging threats CVEs and security advisories relevant to aviation and federal agencies.
  • Support incident response teams by providing vulnerability insights that inform threat analysis and containment.
  • This offer is contingent upon Peratons award of the associated contract

    • Qualifications

    Required Qualifications

  • Minimum of a Bachelors degree and 8 years of experience a Masters degree and 6 years of relevent experience or a PhD and 3 years of experience in vulnerability management cybersecurity operations or IT security. Cybersecurity IT Computer Science or related degrees are preferred.
  • Working knowledge of vulnerability scanning tools (Tenable Qualys etc.) and security information platforms.
  • Understanding of NIST RMF FISMA and federal security policies.
  • Experience analyzing CVEs CVSS scoring and vulnerability exploitability.
  • Strong analytical communication and documentation skills.
  • Ability to obtain and maintain the required Public Trust clearance.
  • This is a remote capable position however candidates must reside in the Maryland / DC / NoVA local area.

    • Preferred Qualifications

  • Prior experience supporting FAA DOT or other federal cybersecurity programs.
  • Familiarity with National Airspace System (NAS) environments or aviation technology.
  • Certifications such as Security CySA CEH GSEC GCIH or similar.
  • Experience with POA&M management RMF packages or continuous monitoring activities.
  • Knowledge of configuration management and patch management processes.

    • Peraton Overview

    Peraton is a next-generation national security company that drives missions of consequence spanning the globe and extending to the farthest reaches of the galaxy. As the worlds leading mission capability integrator and transformative enterprise IT provider we deliver trusted highly differentiated solutions and technologies to protect our nation and allies. Peraton operates at the critical nexus between traditional and nontraditional threats across all domains : land sea space air and cyberspace. The company serves as a valued partner to essential government agencies and supports every branch of the U.S. armed forces. Each day our employees do the cant be done by solving the most daunting challenges facing our customers. Visit to learn how were keeping people around the world safe and secure.

    Target Salary Range

    $104000 - $166000. This represents the typical salary range for this position. Salary is determined by various factors including but not limited to the scope and responsibilities of the position the individuals experience education knowledge skills and competencies as well as geographic location and business and contract considerations. Depending on the position employees may be eligible for overtime shift differential and a discretionary bonus in addition to base pay.

    EEO

    EEO : Equal opportunity employer including disability and protected veterans or other characteristics protected by law.

    Required Experience :

    Senior IC

    Key Skills

    Active Directory,Customer Service,End user,Access Points,Deskside Support,Windows,SCCM,Troubleshoot,User Accounts,Desktop,PC,Backup,Setup,hardware,Technical Support

    Employment Type : Full-Time

    Experience : years

    Vacancy : 1

    Monthly Salary Salary : 104000 - 166000

    [job_alerts.create_a_job]

    Senior Management Analyst • Bethesda, Maryland, USA

    [internal_linking.similar_jobs]
    Senior Analyst

    Senior Analyst

    Nuclear Innovation Alliance • Washington, DC, United States
    [job_card.full_time]
    Be among the first 25 applicants.Get AI-powered advice on this job and more exclusive features.Direct message the job poster from Nuclear Innovation Alliance. Nuclear Energy Analyst, LEED Green Asso...[show_more]
    [last_updated.last_updated_variable_days] • [promoted]
    Cybersecurity Vulnerability Analyst (Incident Manager III)

    Cybersecurity Vulnerability Analyst (Incident Manager III)

    Solutions³ LLC • Arlington, VA, US
    [job_card.full_time]
    [filters_job_card.quick_apply]
    Cybersecurity Vulnerability Analyst (Incident Manager III ) Description : Solutions³ LLC is supporting our prime contractor and their U. Government customer to provide cybersecurity vulne...[show_more]
    [last_updated.last_updated_30]
    Senior Analyst - Full Dimension Protection (FDB)

    Senior Analyst - Full Dimension Protection (FDB)

    Sigmatech, Inc. • Southeast, DC, US
    [job_card.full_time]
    Sigmatech is a trusted provider of high-quality technical and professional services to government and commercial customers. With a strong focus on innovation, integrity, and excellence, we support o...[show_more]
    [last_updated.last_updated_30] • [promoted]
    Manpower Senior Analyst

    Manpower Senior Analyst

    Cortek Inc • Washington, DC, US
    [job_card.full_time]
    Job Title : Manpower Senior Analyst.Opportunity Overview : CORTEK seeks a highly skilled.Army's Equipping and Execution (EE) Program Evaluation Group (PEG). The ideal candidate will have strong an...[show_more]
    [last_updated.last_updated_30] • [promoted]
    Cybersecurity Vulnerability Analyst

    Cybersecurity Vulnerability Analyst

    Node.Digital • Arlington, VA, US
    [job_card.full_time]
    [filters_job_card.quick_apply]
    Cybersecurity Vulnerability Analyst.Must have an active Top Secret Security Clearance.Government customer to provide cybersecurity vulnerability analysis support to reduce the prevalence and impact...[show_more]
    [last_updated.last_updated_30]
    Senior Analyst - Threat Reduction

    Senior Analyst - Threat Reduction

    Dynamics ATS Organic • Washington, DC, US
    [job_card.full_time]
    Solutions Through Innovative Technologies, Inc.STI-TEC) specializes in the delivery of professional business and information management services. STI-TEC offers government and commercial clients a c...[show_more]
    [last_updated.last_updated_30] • [promoted]
    Senior Tenable Analyst - Vulnerability Mgmt & Risk Advisor

    Senior Tenable Analyst - Vulnerability Mgmt & Risk Advisor

    Edgewater Federal Solutions, Inc. • Bethesda, MD, United States
    [job_card.full_time]
    A government contracting firm is currently seeking a Sr.Tenable Analyst / SME to conduct compliance assessments and manage vulnerabilities. The ideal candidate has at least 8 years of experience in In...[show_more]
    [last_updated.last_updated_variable_days] • [promoted]
    Senior Analyst, Modular Mission Payloads & Systems

    Senior Analyst, Modular Mission Payloads & Systems

    Cape Henry Associates, Acquired by JANUS Research Group • Washington, DC, United States
    [job_card.full_time]
    A leading defense consulting firm is currently seeking a Modular Missions Payloads Senior Analyst in Washington, DC.This role involves managing loitering munitions and modular mission payload progr...[show_more]
    [last_updated.last_updated_variable_days] • [promoted]
    Technology Vulnerability Management Engineer

    Technology Vulnerability Management Engineer

    Cooley LLP • Washington, DC, United States
    [job_card.full_time]
    Technology Vulnerability Management Engineer.Cooley is seeking a Technology Vulnerability Management Engineer to join the Security team. Cooley Technology embraces a culture of customer service exce...[show_more]
    [last_updated.last_updated_variable_days] • [promoted]
    Vulnerability Remediation and Patching Support Lead

    Vulnerability Remediation and Patching Support Lead

    Link Solutions, Inc. • Adelphi, MD, US
    [job_card.full_time]
    Information Technology services to government clients in support of critical mission needs.Delivering a broad range of Infrastructure Operations, Application Development, Cybersecurity, Virtualizat...[show_more]
    [last_updated.last_updated_30] • [promoted]
    Senior Space Acquisition Program Element Monitor (PEM) Support Analyst

    Senior Space Acquisition Program Element Monitor (PEM) Support Analyst

    KBR • Arlington, VA, United States
    [job_card.full_time]
    Senior Space Acquisition Program Element Monitor (PEM) Support Analyst.KBR's National Security Solutions team provides high-end engineering and advanced technology solutions to our customers in the...[show_more]
    [last_updated.last_updated_variable_days] • [promoted]
    Senior Relativity Archiving Analyst

    Senior Relativity Archiving Analyst

    CGS Federal (Contact Government Services) • Washington, DC, United States
    [job_card.full_time]
    CGS Federal (Contact Government Services) is seeking a Senior Relativity Archiving Analyst responsible for vetting Relativity workspaces and file shares, archiving or purging them, and moving file ...[show_more]
    [last_updated.last_updated_variable_days] • [promoted]
    Senior Naval Lifecycle Management Analyst

    Senior Naval Lifecycle Management Analyst

    ORBIS • Washington, DC, United States
    [job_card.full_time]
    An established industry player is seeking experienced professionals to support the lifecycle management of U.This role involves analyzing data, making recommendations, and developing solutions to e...[show_more]
    [last_updated.last_updated_variable_days] • [promoted]
    VMDR Expert (Vulnerability Management, Detection & Response)

    VMDR Expert (Vulnerability Management, Detection & Response)

    Armis • Arlington, VA, US
    [job_card.full_time]
    [filters_job_card.quick_apply]
    Armis’ vulnerability management and detection capabilities.This role bridges traditional vulnerability management with real-time detection and response — turning raw scan data, exploit intelligence...[show_more]
    [last_updated.last_updated_variable_days]
    Manpower Senior Analyst

    Manpower Senior Analyst

    CORTEK Inc • Washington, DC, United States
    [job_card.full_time]
    Job Title : Manpower Senior Analyst.Opportunity Overview : CORTEK seeks a highly skilled.Army's Equipping and Execution (EE) Program Evaluation Group (PEG). The ideal candidate will have strong analyt...[show_more]
    [last_updated.last_updated_30] • [promoted]
    Senior Browser Vulnerability Researcher

    Senior Browser Vulnerability Researcher

    Interrupt Labs • Arlington, Virginia, US
    [job_card.full_time]
    [filters_job_card.quick_apply]
    We're here to provide world-leading vulnerability research and capabilities.Interrupt Labs is made up of amazing people with backgrounds ranging across the computer security landscape.This blend of...[show_more]
    [last_updated.last_updated_variable_days]
    Vulnerablitiy Management Specialist

    Vulnerablitiy Management Specialist

    Dunhill Professional Search & Government Solutions • Alexandria, VA, United States
    [job_card.full_time]
    Vulnerability Management Specialist will perform the following : .Defines, maintains, and enforces application security best practices. Conduct vulnerability assessment and manual / automated code revie...[show_more]
    [last_updated.last_updated_variable_days] • [promoted]
    Defense Research and Technology Protection Analyst, Senior

    Defense Research and Technology Protection Analyst, Senior

    Booz Allen Hamilton Inc. • Arlington, VA, United States
    [job_card.full_time] +1
    Defense Research and Technology Protection Analyst, Senior Key Role : Support strategic defense technology clients in the research and technology protection domain, providing security and analysis...[show_more]
    [last_updated.last_updated_variable_days] • [promoted]