Cybersecurity Vulnerability Analyst
Peraton
Qualifications Bachelor’s degree and 8+ years of experience; OR Master’s Degree and 6+ years of experience; OR 3 years with PhD. Bachelor's or Master's degree must be one of the following fields: Information Technology, Cybersecurity, Computer Science, Information Systems, Data Science, or Software Engineering. In lieu of a degree in one of these fields, an additional 4 years of relevant experience or specialized training may be considered. In-depth understanding of information security principles and practices, Utilize MITRE ATT&CK, CVSS, and NIST frameworks to assess vulnerability severity and risk impact. In-depth understanding of web exploitation concepts and techniques. Knowledge and understanding of the Open Web Application Security Project (OWASP) top 10. Experience operating in a professional IT or cybersecurity environment. Experience investigating security events, threats and/or vulnerabilities. Understand information security principles, technologies and practices. Excellent customer service skills. Active Security+ certification. Active Secret security clearance required. Preferred Additional Skills CEH, CCNA-Security, CySA+, OSCP (or equivalent), PenTest+ or similar certification a plus. Possess DoD 8570.01-M Information Assurance Technician (IAT) Level II Baseline Certification Completed multiple Hack-The-Box penetration testing labs and challenges, developing hands‑on expertise in vulnerability enumeration, exploitation, privilege escalation, and post‑exploitation techniques within realistic, adversarial environments. Must possess an in-depth understanding of penetration testing methodology, including recon, exploit, persistence, etc. Must have a solid understanding of networking protocols, their uses, and their potential misuses Programming experience in one or more languages, experience in HTLM/CSS or SQL Experience with one or more scripting languages such as PowerShell, Bash, Python or Perl This Cybersecurity Vulnerability Analyst supports a Vulnerability Disclosure Program (VDP) within the federal government and is responsible for reviewing and vetting security vulnerability reports submitted to the DoD VDP from outside hackers. The Analyst will evaluate the reports to ensure the vulnerability is reproducible and therefore valuable to the customer. They will assess each vulnerability for severity and assign an associated risk statement. The HackerOne Triage console tool will be utilized to assist in assigning and prioritizing reports. It will also assist the Analyst in helping identify duplicate submissions. Valid reports will be written in a DoD approved format and sent to the Vulnerability Management Analyst team for system owner coordination and mitigation. The Vulnerability Analyst will be a VDP liaison with the hacker community. The Vulnerability Analyst will also: Utilize offensive toolsets such as Kali Linux to safely analyze production networks and systems, documenting steps and procedures to produce usable vulnerability assessments for the customer. Identify and investigate vulnerabilities, asses exploit potential, and document findings and remedies for presentation to facilitate mitigations on customer systems. Conduct web application vulnerability assessment testing using both automated tools and manual web exploitation techniques, using tools such as Burp Suite and open-source toolsets. Utilize a variety of industry standard security tools to conduct automated scans against systems and applications. Develop and execute proof-of-concept exploits to demonstrate the real-world impact of identified vulnerabilities, utilizing various web exploitation methods. *This position requires full-time, onsite attendance Monday through Friday in the Baltimore metropolitan area. #J-18808-Ljbffr Peraton
$50k - $290k
...networks in Annapolis Junction, MD. Candidates must evaluate vulnerabilities, recommend countermeasures, and support security solutions.... ...The role demands strong analytical skills and experience in cybersecurity. The company offers extensive benefits and a salary range from...Suggested$134.1k - $241.4k
...Job Description Parsons is looking for a Cyber Vulnerability Analyst with a background in Red Team/Penetration Testing to join our team.... ...environments, and adversaries. Experience working with IC mission cybersecurity analysts on understanding the adversary and developing...SuggestedFlexible hours$90k - $230k
A cybersecurity solutions company based in Maryland is seeking cleared professionals for roles such as Network Analysts, Vulnerability Analysts, and Penetration Testers. Candidates should hold a degree in a relevant field and possess certifications like Security+. The...Suggested- Senior Network Vulnerability Analyst - Full‑time, requires an active Secret clearance. Based in Fort Meade, MD, this role supports cybersecurity management in a U.S. DoD environment. Education Requirement Pursuing a bachelor's degree or equivalent work experience. Experience...SuggestedFull timeWork experience placementCasual workWork at office
- Altus Engineering seeks an Information Systems Security Analyst at Aberdeen Proving Ground, MD. This role involves providing cybersecurity and DevSecOps support to the JTCG/ME Program Office while ensuring compliance with necessary security requirements. The successful...SuggestedWork at office
- A cybersecurity company is seeking a Cybersecurity Vulnerability Analyst to support a Vulnerability Disclosure Program for the federal government. The role requires a Bachelor’s degree and extensive experience in IT or cybersecurity, along with an active Security+ certification...
$100k - $200k
...bring together some of the most curious minds in networking and cybersecurity. ANS was founded to disrupt the status quo. For over 20 years,... ...today is safe and tomorrow is smarter. As an Intrusion Analyst on our team, you will: be trusted to analyze target digital network...Temporary workLocal areaFlexible hours- Job Title: Senior Database Vulnerability Analyst Location: Fort Meade, MD 20755 Clearance Level: Active Secret Clearance Job Type: Full... ...of relevant experience with Oracle, SQL, MySQL, or DB2 and cybersecurity. Certifications Current 8570/8140 requirement...Full timeWork experience placementCasual work
- Job Title: Senior Unix and Linux Vulnerability Analyst Location: Fort Meade, MD 20755 Clearance Level: Active Secret Clearance Job Type... ...driven Senior Unix and Linux Vulnerability Analyst to provide Cybersecurity Management support in a U.S. government (DoD) environment....Full timeTemporary workWork experience placementCasual workWork at office
- PD Inc is looking for a Senior Unix and Linux Vulnerability Analyst to support cybersecurity in a U.S. government environment. The position requires expertise in UNIX and Linux systems, as well as a strong background in cybersecurity management. The ideal candidate should...
- Overview BigBear.ai is seeking a Cybersecurity Compliance Analyst to Enter manage the overall compliance posture of systems implementing an ATO... ...updates using the ATO Automation Platform’s automated vulnerability tracking and remediation status features What you need...Contract workWork at office
$112k - $179k
Specialized Cybersecurity Reviewer job at Peraton. Maryland. Program Overview About The Role Peraton seeks Specialized Cybersecurity Reviewer... ...MS/MA; Minimum of 3 years with PhD Familiarity with network vulnerability scans, virtual infrastructure, cloud, and other related...Internship$80k - $121k
...Cyber Security Analyst job at KBR. Maryland. Title: Cyber Security Analyst KBR's Mission... ...ensuring compliance with DoD and Navy cybersecurity requirements. The analyst will perform... ...Perform risk assessments to identify vulnerabilities, threats, and system weaknesses....Contract workTemporary workLocal areaRelocation packageFlexible hours- ...applications and REST APIs by applying deep knowledge of OWASP Top10 and SANS25 to identify, mitigate, and remediate security vulnerabilities. Responsibilities Perform thorough security assessments of third‑party libraries and analyze dependencies. Conduct automated and...Contract workWork at office
$56.24k - $101.25k
Are you an internal caregiver, student, or contingent worker/agency worker at UMass Memorial Health? CLICK HERE to apply through your Workday account. Exemption Status: Exempt Hiring Range: $56,243.20 - $101,254.40 Please note that the final offer may vary within this ...Work experience placementImmediate startRelocation packageMonday to FridayShift workDay shift- PD Inc is seeking a Senior Database Vulnerability Analyst in Fort Meade, MD to support cybersecurity services and manage vulnerabilities for key database applications. Candidates need a Bachelor's degree and five years of relevant experience with Oracle, SQL, MySQL, or...
$82.7k - $173.9k
.../IP, virtualization, containerization, and web services In-depth understanding of OWASP Top 10, DoD, NSA, or industry-standard Vulnerability and Penetration Testing Standards Expertise in exploitation techniques including buffer overflows, fuzzing, SQL injection, Man-...Full timeContract workWork experience placementImmediate startFlexible hours- ...qualified candidate for a key TDNA role involved in critical infrastructure protection. You will analyze adversary tactics and network vulnerabilities, synthesizing intelligence reports, and participating in Cyber Tabletop Exercises. The ideal candidate has at least 3 years of...
- Sentar is seeking a Digital Network Exploitation Analyst in Ft. Meade, Maryland. The ideal candidate will evaluate target networks and... ...detailed exploitation plans while analyzing SIGINT and cybersecurity data. A Bachelor's in Computer Science and relevant experience...
- Set Of X in Annapolis, Maryland, is seeking skilled individuals for roles focused on Offensive Cyber efforts. Join a mission-driven team where you'll conduct malware analysis and reverse engineering, contributing to key national security objectives. This position offers...
$61.9k - $141k
Booz Allen Hamilton in Maryland is looking for a Mid Cyber Security Code Analyst. In this role, you will be responsible for maintaining applications and troubleshooting issues. You will need experience in programming languages like Java, C/C++, or Python, and hold a Bachelor...$10k
...operationsfor information systems, managing daily security aspects, evaluating security solutions for classified processing, and conducting vulnerability and risk analysis/assessments for system authorization. Managing configuration and system integrityby administering...Hourly payFull timeContract workTemporary workWork experience placementSummer workImmediate start- ...Information Systems, NIST SP 800-53A: Guide for Assessing the Security Controls in Federal Information Systems, AFPD 17-1 and AFI 17-130, Cybersecurity Program Management. Ability writing security policies and procedures, CSS, SSP, SSPP, and assess all ATO package artifacts....Full timeMonday to FridayShift work
- ...Strong working knowledge of NIST SP 800-53 controls and how they map to technical implementations and procedures Experience with vulnerability and configuration compliance workflows Familiarity with Linux-based enterprise environments and common hardening concepts...Full timeFor subcontractor
$107.9k - $195.05k
...for information systems, managing daily security aspects, evaluating security solutions for classified processing, and conducting vulnerability and risk assessments. Managing configuration and system integrity by administering configuration management for security...Contract workRelocation packageFlexible hours$2,500 per month
...professionals to develop and implement strategies that detect and mitigate threats, protect critical data, and assess system and network vulnerabilities. The ISSO is responsible for implementing and enforcing information systems security policies, standards, and methodologies to...Immediate start- ...get to resolution faster, and leave a stronger foundation for the next person to take on the role. Key Responsibilities Hands on cybersecurity support for implementing and enforcing Information systems security policies, standards, and methodologies Assist with...Full timeContract workWork at officeLocal area
- ...leading systems through the Risk Management Framework (RMF) lifecycle. The ideal candidate will ensure compliance with federal cybersecurity policies, manage security controls, and prepare ATO packages for mission-critical systems. Competitive benefits and a full-time...Full time
$150k - $190k
...RMC is hiring an Information Security Analyst for the role of Information Security Systems... ...mitigation steps Managing day-to-day cybersecurity activities for the team, including the... ...exercises. Performing asset and vulnerability management via VRAM reporting. Performing...Full timeContract workRelocation packageMonday to FridayShift workDay shift$92.3k - $166.85k
Fairygodboss is seeking a professional for a Cyber Training role focused on supporting a cutting-edge Cyber program. This position involves operational planning, support for exercises, and guidance in cyber range training events. Candidates must have a Bachelor's degree...
Do you want to receive more vacancies?
Subscribe and receive similar vacancies to Cybersecurity Vulnerability Analyst. Be the first to apply!
- vulnerability analyst Annapolis, MD
- penetration tester Annapolis, MD
- ethical hacker Annapolis, MD
- cyber security sales Annapolis, MD
- cyber security lead Annapolis, MD
- cyber security part time Annapolis, MD
- work from home cyber security Annapolis, MD
- IT cyber security Annapolis, MD
- cyber security architect Annapolis, MD
- junior cyber security Annapolis, MD

