Vulnerability Analyst

Position: Vulnerability Analyst
Location: Washington, DC ( Hybrid)
Duration: 3 years
Start Date: April 2024

Job Duties:

• Scrutinizing disclosed vulnerabilities from external security researchers, verifying their legitimacy, assessing severity, exploitation complexity, and potential impact.
• Collaborating with pertinent government agencies and technical teams to apprise, notify, and aid in mitigating identified vulnerabilities.
• Overseeing incident response tickets related to disclosed vulnerabilities, encompassing ticket development, updates, and closure, focusing exclusively on security incidents reported in our Enterprise Application.
• Generating and maintaining comprehensive records and reports of all disclosed incidents, vulnerabilities, actions taken, and outcomes, including trend analysis, response efficacy, and program maturation recommendations.
• Demonstrating extensive proficiency in current and emerging cybersecurity threats and incident response, staying abreast of evolving threats, security trends, and industry best practices to accurately validate, categorize submissions, and offer program enhancement suggestions.
• Contributing to the development and upkeep of security documentation to uphold our system's authorization.

Required Skills:

• A Bachelor's degree in Computer Science, Information Security, or a related field, or equivalent professional experience.
• Minimum of 3 years of hands-on experience in vulnerability analysis, incident response, or a comparable position.
• Familiarity with Bugcrowd or analogous vulnerability disclosure platforms.
• Proficiency in various public-facing systems and technologies, such as web applications, databases, and networks.
• Competence with security tools and frameworks like NIST, OWASP, Metasploit, etc.
• Exceptional written and verbal communication skills, coupled with strong interpersonal abilities.
• Capacity to work autonomously and collaboratively within a diverse stakeholder environment.
• Capability to acquire and maintain a security clearance.

Job Type: Contract

Salary: $100,000.00 - $105,000.00 per year

Schedule:

• 8 hour shift

Experience:

• Vulnerability management: 5 years (Preferred)
• Cybersecurity: 5 years (Preferred)
• Information security: 4 years (Preferred)
• Bugcrowd: 3 years (Required)

Security clearance:

• Top Secret (Required)

Ability to Commute:

• Washington, DC 20001 (Required)

Work Location: In person