Vulnerability & Risk Analyst
Jobs via Dice
Role: Vulnerability Management Analyst Location: New York, NY 10016, Springfield MA 01111, Boston MA 02110 (Hybrid) Duration: 08+ months Job Description The Vulnerability Management and Configuration Assurance (VMCA) Analyst plays a critical role in identifying, assessing, and reducing cyber risk across the enterprise by delivering effective vulnerability management and configuration assurance capabilities. This role is responsible for driving visibility into vulnerabilities and misconfigurations, ensuring alignment with secure baseline standards, and enabling risk‑informed remediation across on‑premises, cloud, and hybrid environments. The analyst leverages enterprise security tools and data analytics to assess vulnerabilities, monitor configuration compliance, and provide actionable insights that strengthen the organization’s overall security posture. This includes analyzing scan results, prioritizing remediation efforts based on risk and exploitability, and implementing compensating controls where necessary. Working closely with cross‑functional teams—including Infrastructure, Cloud, Engineering, and Business Information Security Officers (BISOs)—the VMCA Analyst ensures that vulnerabilities are effectively remediated and configuration standards are consistently applied. The role also supports governance, audit readiness, and executive reporting by delivering clear, accurate, and actionable risk metrics and insights. Skills Vulnerability Management Tools: Hands‑on experience with enterprise scanning platforms (e.g., Qualys, Wiz, Tenable, Rapid7) to identify, assess, and track vulnerabilities across endpoints, servers, and cloud services. Risk‑Based Vulnerability Analysis: Strong understanding of CVSS scoring, exploitability, and threat context (e.g., MITRE ATT&CK) to prioritize vulnerabilities based on risk and business impact. Configuration Assurance & Compliance: Experience assessing and validating secure configurations using automated compliance tools and aligning controls to frameworks such as CIS, NIST, ISO, and PCI‑DSS. Data Analytics & Visualization: Ability to analyze large datasets to identify trends, anomalies, and risk concentrations, and to develop dashboards and reporting (e.g., Tableau) for technical and executive audiences. Cloud & Platform Security: Knowledge of cloud platforms (AWS, Azure, Google Cloud Platform), container environments, and hybrid infrastructure, including associated vulnerability and configuration risks. Security Tool Integration: Experience integrating vulnerability and configuration data into enterprise platforms such as SIEM, GRC, and ticketing systems to support governance and operational workflows. Core Strengths Risk‑Based Decision Making: Ability to evaluate vulnerabilities and misconfigurations based on risk, exploitability, and business impact, enabling effective prioritization and remediation strategies. Analytical Thinking & Problem Solving: Strong capability to analyze complex security data, identify trends and root causes, and translate findings into actionable insights. Attention to Detail & Audit Readiness: High level of accuracy in validating vulnerability data, configuration compliance, and exception handling, ensuring outputs are audit‑ready and defensible. Communication & Executive Reporting: Ability to clearly articulate technical risks and remediation status to both technical teams and senior leadership, supporting informed decision‑making. Collaboration & Influence: Proven ability to work across cross‑functional teams to drive remediation, enforce security standards, and improve overall security posture. Operational Ownership & Continuous Improvement: Proactive mindset focused on enhancing vulnerability management processes, reducing risk exposure, and improving control effectiveness across the enterprise. Required Skills Vulnerability Management Configuration Assurance Qualys Wiz
NESSUS
Additional Skills Rapid7 ServiceNow CMDB SecOps SIEM Python PowerShell Secure Configuration Baselines Continuous Compliance Validation Cloud Security AWS Azure Google Cloud Platform Hybrid Infrastructure Security Tool Defect Troubleshooting Root Cause Analysis Dashboard Development Metrics Development Risk Prioritization Regulatory Compliance (NIST, CIS, ISO, NY DFS) Mentoring Strategic Guidance Executive Communication Process Optimization Collaboration Operational Efficiency Data Accuracy Data Completeness Data Reliability Minimum Degree Required Bachelor’s Degree Mindlance is an Equal Opportunity Employer and does not discriminate in employment on the basis of Minority/Gender/Disability/Religion/LGBTQI/Age/Veterans. #J-18808-Ljbffr Jobs via Dice- A global consulting firm is seeking an IT Risk & Vulnerability Analyst to ensure software security and compliance for strategic clients. The role involves tracking software versions, collaborating with IT teams, and maintaining accurate reports. Candidates should have...Suggested
- Jobs via Dice is seeking a Vulnerability Management Analyst in New York to play a critical role in mitigating cyber risks across the enterprise. This position demands effective vulnerability management and configuration assurance capabilities while working collaboratively...Suggested
- ...resiliency by identifying and mitigating cyber risks and threats through risk-based... ...development teams are implemented through CSA analysts being embedded in the development squads... ...800-53. Experience in determining vulnerability risk impact on key objectives and...SuggestedFull timeTemporary workPart timeShift work
Federal Reserve Bank
New York, NYa month ago - ...Cybersecurity Senior Risk Analyst 1 Labor Category - Analyst 2 Work Location: Hybrid: Work location (15 MTC, 16th Floor) & Remote... ...guidelines; Initiating corrective actions to remediate vulnerabilities or weaknesses where necessary; Engage in communications with...SuggestedWork at officeRemote workMonday to Friday
DONNELLY & MOORE
Brooklyn, NY4 days ago - ...Cybersecurity Risk Analyst We are seeking a Cybersecurity Risk Analyst to join our Information Security Risk team. This role focuses on assessing risks across applications (on-prem and cloud), infrastructure, and third-party vendors through a formalized risk assessment...Suggested
Pipe Recruit
Jersey City, NJ4 days ago - ...Job Description: A Vulnerability Analyst II with a data focus is responsible for improving the quality, consistency, and usability of vulnerability... ...of vulnerability management tools, security concepts, and risk-based methodologies is required to ensure insights directly...
w3r Consulting
New York, NY1 day ago - ...Vulnerability Management Analyst (AI Training) About the Role We're partnering with the world's leading AI research labs to build smarter,... ...to help AI understand the difference between theoretical risk and what actually matters in production Who You Are...Hourly payOngoing contractContract workFreelanceRemote workFlexible hours
Alignerr
New York, NY5 days ago $45k - $65k
Blu Omega LLC is seeking a Junior Vulnerability Analyst to support NIH cybersecurity operations remotely. The role involves assessing and mitigating... ...include evaluating vulnerabilities, creating reports on risk assessments, and collaborating with teams to address issues....Remote job$100k - $145k
A consulting firm is seeking an Application Vulnerability & Obsolescence Analyst to manage software security for financial clients. The candidate must have at least 3 years of experience in vulnerability management, a Bachelor's degree in IT or Cybersecurity, and familiarity...- A premier health institution in New York is looking for a Sr. II Security Analyst specializing in vulnerabilities. This role involves conducting security assessments, analyzing security data, and coordinating remediation efforts. Candidates should have a Bachelor's degree...
- A technical staffing firm is seeking an IT Analyst for a remote contract position. The role involves reviewing Tenable Vulnerability Management systems, analyzing reports, prioritizing remediation efforts, and coordinating with technical teams. Ideal candidates should have...Remote jobContract work
- ...Senior Catastrophe Risk Analyst If you're looking for the stability of a profitable, growing company with the entrepreneurial spirit of a startup, we're hiring. SageSure, a leader in catastrophe-exposed property insurance, is seeking a Senior Catastrophe Risk Analyst...
SageSure
Jersey City, NJ3 days ago $84k - $90k
...Risk Appetite & Assessment Analyst People drive our success. Are you enthusiastic, highly motivated, and have a strong work ethic? If yes, come join our team! At Cathay Bank – we strive to provide a caring culture that supports your aspirations and success. We believe...Full timeWork at officeFlexible hoursCathay General Bancorp
New York, NY4 days ago- ...Fraud/Risk Analyst Fin is a next-generation payments platform built for high-value, global, and instant transactions. We are a Series A-stage company backed by Sequoia, Circle, and other notable investors. Powered by stablecoins, Fin enables users and businesses to...Worldwide
FinTech Collective
New York, NY4 days ago $90k - $125k
...Electronic and Algorithmic Trading Risk Analyst/Associate Job Code: 12644 Country: US City: New York Skill Category: Risk Description: The pay range for this position at commencement of employment is expected to be between $90,000 and $125,000 annually. Company overview...Nomura
New York, NY4 days ago$70k - $90k
...entrepreneurial people to join the Group has been and will continue to be key. DUAL North America, Inc. is seeking a Transactional Risk Analyst • Classification: Exempt/Full-time • Reports to: Senior Vice President, DUAL Transaction Solutions • Travel: 0-25% • •...Full timeWork experience placementInternshipWork at officeLocal areaHowden Group Holdings
New York, NY3 days ago$72.28k - $117.52k
...your recruiter who can provide you more specific details for this role. Line of Business: Risk Management Job Description: The Senior Group Risk Analyst provides a broad range of research, analysis, reporting, monitoring and/or operational process support...Local areaWork from homeFlexible hoursTD Bank Group
New York, NY2 days ago$70k - $100k
...Join Mizuho as a Risk Tech Analyst! In this role, you will be part of the NPE (New product Enablement) team whose purpose is to support Quants and Risk models validation efforts. The ideal candidate will specifically help generate and assess the calculated data quality...Work at officeLocal areaRemote workWorldwideMizuho Bank Ltd
New York, NY1 day ago$97k - $132k
...Third Party Risk Analyst At Anaplan, we are a team of innovators focused on optimizing business decision-making through our leading AI-infused scenario planning and analysis platform so our customers can outpace their competition and the market. What unites Anaplanners...Anaplan
New York, NY9 days ago$110k - $125k
...diversified set of businesses. We strive to generate attractive risk-adjusted returns for our clients across market cycles. Our strategies... ...investment opportunities. The team seeks an Investment Analyst for its fundamental equity team to support the fund's fundamentally...Local areaFlexible hoursBlackstone Restaurant
New York, NY5 days ago$75k - $90k
...seriously. With a 200-year legacy and a shared passion for what's next, this is the right place to build a fulfilling career. Risk Analyst - Operational Due Diligence At Brown Brothers Harriman, we believe no job is too big or small for any of us to handle if it...Odd jobWork at officeLocal areaBrown Brothers Harriman
New York, NY3 days ago$61.88k - $99.32k
...Governance & Control Job Description: The Governance & Control Analyst III provides specialized business governance and control... ...Overview: TD Bank is guided by the Three Lines of Defense (LOD) Risk Framework: Risk Ownership (1LOD), Risk Oversight (2LOD), and Internal...Local areaWork from homeFlexible hoursTD Bank
New York, NY1 day ago- ...We are working with a well-established financial services firm that is looking to bring on a Risk Analyst to their Enterprise Risk Management team. The role will primarily focus on their credit, market, and operational risk. Responsibilities : Design...
Snelling
New York, NY5 days ago - ...BA - Risk Analysts Title: BA - Risk Analysts Status: Open Location: New York City, NY, United States Number of Openings: 10 Permanent Task Expected, To Be Executed By The Candidate: a. Liaise with business team and IT team to understand business requirements document...Permanent employment
HSS SOFT
New York, NY4 days ago - ...Risk Analyst (Margin Models) As a Risk Analyst (Margin Models) in the Risk Surveillance Branch, you will: Draft documents describing margin methodologies used, or proposed, by registered central counterparty clearinghouses (CCPs) in both high-level overviews...
US Government Jobs - Other Agencies
New York, NY2 days ago $117.73k - $138.5k
...what you excel at-all from Day One. Job Description Market Risk Management operates within the second line of defense and reports... ...company's risk appetite. The Market Risk Governance & Volcker Analyst is a key contributor to the Market Risk Management team, supporting...Temporary workWork experience placementWork at officeLocal area3 days per weekU.S. Bank
New York, NY4 days ago$98.2k - $130.8k
...Overview Performs data and analytical services in support of optimizing risk adjusted revenue, maintaining compliance with CMS standards and modeling financial impacts of changes in risk adjustment data and methodologies. Collaborates regularly with internal departments...Work experience placementFlexible hoursVNS Health
New York, NY1 day ago$75k - $95k
Department Profile The cornerstone of Morgan Stanley's risk management philosophy is the execution of risk-adjusted returns through... .... Position Summary Morgan Stanley is seeking an Analyst for the Risk Capital group, based in New York. Risk Capital, which...Temporary workMorgan Stanley
New York, NY5 days ago- ...effort to coordinate analytics to enhance operational efficiencies and data accuracy. The Analyst will work with internal and external stakeholders in quantifying and analyzing risk results and practice patterns to explain and financial performance and key drivers....
MetroPlusHealth
New York, NY1 day ago $109.04k - $163.56k
...Sr Risk Analyst - KR07DE We're determined to make a difference and are proud to be an insurance company that goes well beyond coverages and policies. Working here means having every opportunity to achieve your goals – and to help others accomplish theirs, too. Join...Temporary workWork at office3 days per weekThe Hartford
New York, NY4 days ago
Do you want to receive more vacancies?
Subscribe and receive similar vacancies to Vulnerability & Risk Analyst. Be the first to apply!
- vulnerability analyst New York, NY
- penetration tester New York, NY
- ethical hacker New York, NY
- it risk analyst New York, NY
- risk officer New York, NY
- risk compliance officer New York, NY
- information risk analyst New York, NY
- third party risk analyst New York, NY
- market risk analyst New York, NY
- governance risk & compliance analyst New York, NY