Open app
Sign up to access all features of our service.
  • Job search
  • Favorites
  • Create a CV
    New
  • Salaries
  • Subscriptions

Cybersecurity Analyst (Vulnerability Management & Continuous Monitoring)

Chenega Corporation

Oakton, VA

Req ID: 40432

Summary

Cybersecurity Analyst (Vulnerability Management & Continuous Monitoring)

Oakton, VA

Are you ready to enhance your skills and build your career in a rapidly evolving business climate? Are you looking for a career where professional development is embedded in your employers core culture? If so, Chenega Military, Intelligence & Operations Support (MIOS) could be the place for you! Join our team of professionals who support large-scale government operations by leveraging cutting-edge technology and take your career to the next level!

SecuriGence delivers essential technology services supporting critical national security missions. We are seeking a Cybersecurity Analyst (Vulnerability Management & Continuous Monitoring) to support Department of Defense (DoD) cybersecurity operations by executing vulnerability management, security compliance, and Continuous Monitoring (ConMon) activities in accordance with the Risk Management Framework (RMF). This role is responsible for identifying, assessing, prioritizing, and tracking vulnerabilities using enterprise tools, ensuring compliance with Security Technical Implementation Guides (STIGs), and responding to Information Assurance Vulnerability Alerts (IAVAs).

Responsibilities

  • Vulnerability Management

  • Perform vulnerability scanning using Assured Compliance Assessment Solution (ACAS) (e.g., Tenable.sc / Nessus).

  • Enforcing the ACAS best practice guide requirements when performing vulnerability scans in ACAS

  • Analyze scan results to identify vulnerabilities, misconfigurations, and compliance gaps.

  • Validate findings against the latest released DISA STIGs and applicable security baselines.

  • Review of provided checklists and working with system admins in identifying gaps for POA&M creation.

  • Assess and track vulnerabilities in accordance with DoD timelines and risk severity.

  • Correlate vulnerabilities with IAVA/IAVM notices and ensure timely remediation or mitigation.

  • Develop and maintain Plan of Action and Milestones (POA&M) documentation.

  • Maintenance of Risk Acceptance (RA) POA&M items within SOR (System of Record) and coordinating with System administrators to validate that RA is required instead of a POA&M.

  • STIG Compliance & Hardening

  • Apply and validate Security Technical Implementation Guides (STIGs) across operating systems, applications, and network devices.

  • Conduct manual and automated STIG compliance checks using tools such as ACAS Audit checks, STIG Viewer, SCAP Compliance Checker (SCC), and Evaluate-STIG.

  • Document compliance status and provide remediation guidance to system administrators.

  • Support system hardening efforts aligned with DoD baseline configurations.

  • Ensure that golden images are maintained for Servers (RHEL and Windows) and Workstations following STIG guidance.

  • IAVA/IAVM Management

  • Monitor and assess Information Assurance Vulnerability Alerts (IAVAs) and Bulletins (IAVBs).

  • Determine system applicability and operational impact.

  • Coordinate remediation actions and track compliance deadlines.

  • Maintain IAVA compliance reporting and documentation for audits.

  • Continuous Monitoring (ConMon)

  • Execute Continuous Monitoring activities in accordance with RMF Step 6.

  • Monitor security controls for effectiveness and ongoing compliance.

  • Conduct control assessments and assist with periodic security reviews.

  • Support automated and manual data collection for ConMon dashboards and reporting.

  • Identify trends, recurring issues, and systemic risks across systems.

  • RMF & Compliance Support

  • Support RMF activities across all six steps, with emphasis on:

  • Control implementation validation

  • Security control assessment support

  • Ongoing authorization (ATO sustainment)

  • Update and maintain RMF artifacts, including:

  • System Security Plan (SSP)

  • Security Assessment Report (SAR)

  • Plan of Action and Milestones (POA&M)

  • Security Assessment Plan (SAP)

  • Map vulnerabilities and findings to NIST SP 800-53 controls.

  • Reporting & Documentation

  • Generate vulnerability and compliance reports for leadership and Authorizing Officials (AOs).

  • Provide risk-based recommendations and remediation strategies.

  • Maintain audit-ready documentation in accordance with DoD and agency requirements

  • Other duties as assigned

Qualifications

  • High school diploma or GED equivalent

  • 5+ years of experience in DoD cybersecurity or RMF-based environments

  • Hands-on experience with:

  • ACAS (Nessus / Tenable.sc)

  • STIG implementation and validation

  • IAVA/IAVM processes

  • Experience with vulnerability assessment, risk analysis, and remediation tracking.

  • DoD 8570/8140 Compliance: Must meet IAT Level II requirements (e.g., Security+)

  • Active DoD Top Secret clearance with SCI eligibility.

Knowledge, Skills, and Abilities:

  • Strong understanding of:

  • DoD RMF (DoDI 8510.01)

  • NIST SP 800-53 security controls

  • Ability to manage multiple systems and priorities in a regulated environment

  • Strong analytical and problem-solving skills

  • Attention to detail and compliance rigor

  • Ability to translate technical risk into mission impact

  • Effective communication with technical and non-technical stakeholders

  • Relevant certifications:

  • Certified Information Systems Security Professional (CISSP)

  • Certified Ethical Hacker (CEH) or equivalent

  • DISA ACAS Training Certificate

  • Experience with:

  • ACAS

  • SCAP Compliance Checker (SCC) / Evaluate-STIG

  • STIG Viewer

  • eMASS, Xacta

  • Trellix, MDE

  • Splunk, Elastic

  • Familiarity with scripting (e.g., PowerShell, Python) for automation.

  • Experience in enterprise-level ConMon programs or NOSC/SOC environments.

How youll grow

At Chenega MIOS, our professional development plan focuses on helping our team members at every level of their careers to identify and use their strengths to do their best work every day. From entry-level employees to senior leaders, we believe theres always room to learn.

We offer opportunities to help sharpen skills in addition to hands-on experience in the global, fast-changing business world. From on-the-job learning experiences to formal development programs, our professionals have a variety of opportunities to continue to grow throughout their careers.

Benefits

At Chenega MIOS, we know that great people make a great organization. We value our team members and offer them a broad range of benefits.

Learn more about what working at Chenega MIOS can mean for you.

Chenega MIOSs culture

Our positive and supportive culture encourages our team members to do their best work every day. We celebrate individuals by recognizing their uniqueness and offering them the flexibility to make daily choices that can help them be healthy, centered, confident, and aware. We offer well-being programs and continuously look for new ways to maintain a culture where we excel and lead healthy, happy lives.

Corporate citizenship

Chenega MIOS is led by a purpose to make an impact that matters. This purpose defines who we are and extends to relationships with our clients, our team members, and our communities. We believe that business has the power to inspire and transform. We focus on education, giving, skill-based volunteerism, and leadership to help drive positive social impact in our communities.

Learn more about Chenegas impact on the world.

Chenega MIOS News-

Tips from your Talent Acquisition Team

We want job seekers exploring opportunities at Chenega MIOS to feel prepared and confident. To help you with your research, we suggest you review the following links:

Chenega MIOS web site -

Glassdoor -

LinkedIn -

Facebook -

Chenega Corporation and family of companies is an EOE.

Equal Opportunity Employer/Veterans/Disabled

Native preference under PL 93-638.

We participate in the E-Verify Employment Verification Program

Apply
Vacancy posted 2 days ago
Similar jobs that could be interesting for youBased on the Cybersecurity Analyst (Vulnerability Management & Continuous Monitoring) in Oakton, VA vacancy
  • ConMon Cyber Systems Engineer (Continuous Monitoring)
     ...support in the areas of Cyber Security and Management to improve the Information Assurance...  ...Assessment and Authorization (A&A), Vulnerability Management, and Cyber Defense support...  ...Support the Information Security Continuous Monitoring (ISCM) Program Lead in maturing the customer... 
    Suggested
    Full time

    RDR

    Chantilly, Loudoun County, VA
    4 days ago
  • Cybersecurity Analyst: Vulnerability & ConMon
    Chenega MIOS SBU is seeking a Cybersecurity Analyst in Oakton, VA, to support DoD operations. Responsibilities include executing vulnerability management and Continuous Monitoring activities. The ideal candidate will have 5+ years in cybersecurity, active DoD Top Secret... 
    Suggested

    Chenega MIOS SBU

    Oakton, VA
    4 days ago
  • Vulnerability Management Analyst (Structured Threat Analyst 3) ADVANA

    $103.54k - $147.92k

     ...Responsibilities Supports enterprise vulnerability management operations for Department...  ...workflows, and continuous monitoring dashboards to maintain...  ...owners, administrators, and cybersecurity teams to collect...  ...under guidance of senior analysts. Maintains detailed records... 
    Suggested
    Full time
    For contractors
    Work at office
    Local area

    Mission Technologies, a division of HII

    Fairfax, VA
    17 hours ago
  • Technology Cybersecurity Managing Consultant

    $130k - $216k

     ...Cybersecurity Consultant This position will play a critical role...  ...(e.g., SIEM, EDR, vulnerability management). Assess current cybersecurity...  ...operations activities, including monitoring, incident response, vulnerability management, and continuous improvement initiatives.... 
    Suggested
    Temporary work
    Flexible hours

    Guidehouse

    McLean, VA
    56 minutes ago
  • [Contingent] Cybersecurity Risk & Compliance Analyst (SCA)
     ...application process. [Contingent] Cybersecurity Risk & Compliance Analyst (SCA) 7 days ago Requisition...  ...using SIEM platforms, vulnerability management tools, and compliance scanning...  ...assessment activities during continuous monitoring: assess the designated subset... 
    Suggested
    Full time
    Contract work
    Temporary work
    Immediate start
    Monday to Friday

    phia, LLC

    Fairfax, VA
    1 day ago
  • Enterprise Vulnerability Management Lead (Engineer Info Assurance 4)

    $128.89k - $184.12k

     ...capabilities in cybersecurity, network architecture...  ...Vulernatiblity Management Lead to work out...  ...coordinated vulnerability management operations...  ..., and continuous tracking of findings...  ...repositories, continuous monitoring dashboards, and...  ...• Guides junior analysts through... 
    Full time
    Contract work
    Work at office
    Local area
    Worldwide

    Huntington Ingalls Industries

    Fairfax, VA
    17 hours ago
  • [Contingent] Senior Cybersecurity Compliance Analyst (ATO SME)
     ...ISSO Support, Federal Cybersecurity OVERVIEW phia is...  ...Cybersecurity Compliance Analyst (ATO SME) to provide...  ...support for Risk Management Framework (RMF) and Authorization...  ...owners to maintain continuous compliance, and...  ...Support continuous monitoring activities: control assessment... 
    Full time
    Contract work
    Temporary work
    Monday to Friday

    Phia

    Fairfax, VA
    3 days ago
  • Cybersecurity Incident Response Analyst
     ...Cyber Incident Response Analyst to join our team in McLean...  ...Lead the detection and continuous monitoring of potential security incidents...  ...threat intelligence and vulnerability management data to proactively...  ...of hire. Knowledge of cybersecurity principles, incident detection... 
    Shift work
    Night shift
    Day shift
    Afternoon shift

    MANTECH

    McLean, VA
    17 hours ago
  • Continuity Manager
    The Continuity Manager leads the development, implementation, and ongoing enhancement of business...  ...Working closely with IT operations, cybersecurity, service and process owners, and...  ...management practices. Familiarity with monitoring, observability, automated testing,... 

    Dunhill Professional Search & Government Solutions

    Fairfax, VA
    4 days ago
  • Vulnerability Incident Manager II
     ...to inform the customer’s vulnerability management (VM) efforts. In support of...  ...Suitability BS Intelligence, Cybersecurity or related degree, or High...  ...with intelligence monitoring, collection, targeting and...  ...Plus (SEC+) Intelligence Analyst Certified (IAC) Certified... 

    NewGen Technologies

    Arlington, VA
    4 days ago
  • Vulnerability Remediation Manager, Security Testing Service

    $161.8k - $184.6k

    Vulnerability Remediation Manager, Security Testing Service Security is essential to...  ...helping teams incorporate cybersecurity best practices. You will...  ...certification Experience with monitoring, gathering, and assessing artifacts as part of continuous security monitoring (C&A,... 
    Full time
    Part time
    H1b
    Local area

    Capital One

    Mc Lean, VA
    17 hours ago
  • Cybersecurity Analyst Associate

    $64.23k - $80.5k

     ...technical assignments. Support enterprise Cybersecurity standards. In coordination with...  ...solving these problems. Supports vulnerability/risk analyses of computer systems...  ...support on cyber security, risk management, continuous monitoring, security Assessment and... 
    Temporary work
    Flexible hours

    General Dynamics Information Technology

    Fairfax, VA
    2 days ago
  • Security Operations Lead: Threat Monitoring & Response
     ...seeking an experienced Security Operations Manager to lead its enterprise information...  ...The role involves overseeing security monitoring, incident response, and compliance activities...  ..., and ensuring timely remediation of vulnerabilities. Candidates must have at least five... 

    CGI

    Fairfax, VA
    17 hours ago
  • Information Systems Security Manager (ISSM)
     ...Information Systems Security Manager (ISSM) Location:...  ...to oversee the cybersecurity of classified and...  ...Develop, implement, and monitor security controls to...  ...Risk Assessment & Vulnerability Management Conduct...  ...system accreditation. Continuous Monitoring & Incident... 

    JMark Services Inc.

    McLean, VA
    17 hours ago
  • Senior Information System Security Manager (ISSM)
     ...Information System Security Manager (ISSM) to work in our...  ...Manager (ISSM) to support cybersecurity for an IL5/IL6 hybrid enterprise...  ...defenses, rigorous Continuous Monitoring, and overall operational effectiveness...  ...(ATO). Spearhead vulnerability assessments and audits,... 
    For subcontractor
    Work at office
    Remote work

    ECS

    Fairfax, VA
    2 days ago
  • Secret Information Systems Security Manager (ISSM)
     ...Information System Security Manager (ISSM) to support U.S....  ...will serve as the primary cybersecurity authority for assigned systems...  ..., authorization, and continuous monitoring Develop, maintain, and...  ...security control assessments, vulnerability management, and mitigation... 

    Insight Global

    Fairfax, VA
    2 days ago
  • Information System Security Manager (ISSM) - Fairfax, Virginia

    $100k - $150k

     ...Information System Security Manager (ISSM) - Fairfax, Virginia...  ...network fundamentals and vulnerability management tools. This...  ...support system accreditation, continuous monitoring, and operational security...  ...external stakeholders, provide cybersecurity oversight, and drive... 
    Permanent employment
    Full time

    In-Depth Engineering

    Fairfax, VA
    3 days ago
  • Cyber Security Project Manager Level I
     ...(IT) infrastructure, cybersecurity, DevSecOps, data exploitation...  ...the Project Management plans and other contract...  ...installations. Monitors activities under the...  ...days when requested. Vulnerability & Configuration Management...  ...remediation are one continuous remediation workflow.... 
    Contract work
    Work at office
    Remote work

    Blackwatch International

    McLean, VA
    2 days ago
  • Cybersecurity Systems Analyst (FedRAMP)
     ...Entrusted by companies with challenging Cybersecurity and IT data management recruiting needs, Flex Staffing Resources...  ...SSP), plans and procedures), and ongoing continuous monitoring activities. Analysis of vulnerability scans Identify and assess Cloud System... 
    Remote work
    Flexible hours
    1 day per week

    FSR Inc

    Herndon, VA
    2 days ago
  • Cyber Defense Analyst: RMF Vulnerability & ConMon Specialist
    Chenega Corporation seeks a Cybersecurity Analyst (Vulnerability Management & Continuous Monitoring) in Oakton, VA. This role involves supporting DoD cybersecurity operations, including vulnerability management and compliance activities per the Risk Management Framework... 

    Chenega Corporation

    Oakton, VA
    3 days ago
  • Information Systems Security Manager
     ...Information Systems Security Manager - Oakton, VA Are you ready...  ...evolve a comprehensive cybersecurity strategy that aligns with...  ...disruptions. Establish a robust vulnerability management program that...  ...operations, including continuous monitoring of networks, systems, and... 
    Contract work
    For contractors

    Chenega Agile Real Time Solutions, LLC

    Oakton, VA
    8 hours ago
  • Vulnerability Analyst, Journeyman

    $80k - $128k

     ...Vulnerability Analyst, Journeyman Peraton is a next-generation national...  ...admins, engineers, and cybersecurity teams. Document analysis...  ...dashboards to support continuous monitoring and CCRI readiness. Identify...  ...vulnerability management with detection engineering... 
    Contract work
    Temporary work
    Shift work

    Navstar

    Herndon, VA
    2 days ago
  • Vulnerability Analyst, Senior

    $104k - $166k

     ...Vulnerability Analyst, Senior Job Locations US-...  ...enterprise vulnerability management strategy: scanning...  ...decisionmaking. Lead continuous improvement of VM...  ...enhance continuous monitoring efficacy. Support...  ...in Computer Science, Cybersecurity, Data Science,... 
    Contract work
    Shift work

    Peraton

    Herndon, VA
    2 days ago
  • Enterprise Ops Center Lead Monitoring & Incident Response
     ...provider is looking for an experienced Enterprise Operations Center Manager to lead a complex operations environment. The successful...  ...response, oversee an operations team, and implement enterprise monitoring tools like Splunk and SolarWinds. Requires at least five years... 
    Full time

    CGI Technologies and Solutions, Inc.

    Fairfax, VA
    1 day ago
  • Monitoring Incident and Event Management Advisory Specialist (Evening Shift)
     ...DecisionPoint is seeking an experienced Monitoring Incident and Event Management Advisory Specialist to join our...  ...of Homeland Security (DHS) Cybersecurity and Infrastructure Security Agency...  ...incident reviews and contribute to continuous improvement initiatives. Maintain... 
    For contractors
    Work experience placement
    Local area
    Afternoon shift

    DecisionPoint Corporation

    Arlington, VA
    3 days ago
  • Enterprise Architect - Endpoint Management

    $130k - $160k

     ...Enterprise Architect - Endpoint Management Alpha Omega is seeking a...  ...mission needs. Lead the continuous refinement of centrally...  ...compliance, and service monitoring for all DHA-managed endpoints...  ...in Information Technology, Cybersecurity, Data Science, Information... 
    Contract work
    Work experience placement
    Flexible hours

    Alpha Omega Services

    Vienna, VA
    2 days ago
  • Cloud Security Monitoring and Reporting Engineer (Journeyman)

    $66k - $106k

     ...Cloud Security Monitoring and Reporting Engineer (Journeyman)...  ...reporting activities to provide continuous situational awareness and compliance...  ...outputs. Performs vulnerability scanning and assessment using...  ...), GIAC Certified Intrusion Analyst (GCIA), or an equivalent intermediate... 
    Contract work
    Remote work
    Shift work

    Peraton

    Reston, VA
    3 days ago
  • Network Engineer, Lead
     ...fields as diverse as cybersecurity, healthcare,...  ...Security Network Management and Orchestration...  ...implementation, and monitoring—across networking and...  ...automation, metrics, and continual service improvement....  ..., identify threats, vulnerabilities, and control gaps, and... 
    Work experience placement
    Local area
    Relocation

    MITRE

    McLean, VA
    1 day ago
  • Network Engineer, Lead
     ...fields as diverse as cybersecurity, healthcare,...  ...Security Network Management and Orchestration...  ...implementation, and monitoring-across networking and...  ...automation, metrics, and continual service improvement....  ..., identify threats, vulnerabilities, and control gaps, and... 
    Work experience placement
    Local area
    Relocation

    The MITRE Corporation

    McLean, VA
    5 days ago
  • Cybersecurity Compliance Analyst
     ...Description SAIC is seeking a Cybersecurity Compliance analyst in Arlington, VA. The...  ...expertise of the Risk Management Framework with...  ...network operations and vulnerability management. This position...  ...classified and unclassified Continuous Monitoring Risk Scoring (CMRS)... 

    SAIC

    Arlington, VA
    1 hour ago

Do you want to receive more vacancies?

Subscribe and receive similar vacancies to Cybersecurity Analyst (Vulnerability Management & Continuous Monitoring). Be the first to apply!

Related searches