Risk and Vulnerability Analyst II
Revolutional, LLC
Job Description
Job Description
Revolutional delivers advanced technology solutions and mission support to federal agencies across civilian, health, and national security environments. We apply modern capabilities, including AI/ML, cloud, cybersecurity, and IT modernization to solve complex challenges, enable faster and more secure operations, and drive measurable mission outcomes.
We are redefining how federal technology gets built and delivered by operating with a product mindset, prioritizing speed, ownership, and execution over bureaucracy.
Title: Risk and Vulnerability Analyst II
Location: Washington, DC or Chandler, AZ
Terms: Full-time
Clearance: Secret eligibility required
Travel: 10-20%
Position DescriptionAs a Risk and Vulnerability Analyst II at Revolutional, you own the scanning and vulnerability identification pipeline across a large-scale federal enterprise. You run ad hoc and automated scans across operating systems, databases, web applications, cloud environments, and APIs — and you do it with the precision and consistency that compliance-driven federal programs demand.
You are technically skilled and operationally reliable. You troubleshoot scanning issues before they become coverage gaps, automate what can be automated, and produce findings that give security teams and leadership an accurate picture of enterprise risk. You are organized, customer-focused, and understand that vulnerability management is a service function as much as a technical one.
Responsibilities- Execute ad hoc and automated vulnerability scans across operating systems, databases, and web applications using industry-accepted scanning tools for approximately 200 systems of varying size, scope, and complexity against recurring schedules in accordance with DHS 4300 policy
- Conduct cloud compliance scans across federal and commercial cloud environments; troubleshoot scanning configuration issues and ensure continuous coverage
- Perform on-site scanning operations as required, coordinating with system owners and network teams to maintain scan fidelity and minimize operational impact
- Execute Information Security Vulnerability Management (ISVM) scans and ensure results align with compliance requirements and program reporting standards
- Conduct API discovery and scanning to identify undocumented or unsecured API endpoints across the enterprise environment
- Develop and maintain scanning automation to improve coverage, consistency, and efficiency across the vulnerability management program
- Track high-visibility vulnerability findings through the remediation lifecycle in coordination with the SOC and system personnel
- Produce clear, accurate scan results and compliance dashboards/reports for technical teams and program leadership
- Maintain scanning tool configurations, credentials, and schedules; ensure tooling remains current and aligned with the evolving enterprise asset inventory
- Support
- vulnerability findings through the remediation lifecycle; coordinate with system owners and security teams to ensure timely closure
- Produce clear, accurate vulnerability reports and compliance dashboards for technical teams and program leadership
- Maintain scanning tool configurations, credentials, and schedules; ensure tooling remains current and aligned with the evolving enterprise asset inventory
- Support continuous monitoring requirements and contribute to FISMA compliance reporting as it relates to vulnerability management
- Bachelor's degree in Computer Science, Information Security, or related field (or equivalent experience)
- 3 to 5 years of security-related experience with a focus on vulnerability management and scanning operations
- Secret eligibility required
- Hands-on experience with industry-accepted vulnerability scanning tools (e.g., Tenable Nessus, Qualys, Rapid7, or equivalent) for OS, database, and web application scanning
- Experience conducting cloud compliance scans across commercial or GovCloud environments
- Experience with on-site scanning operations and troubleshooting scanning-related issues including authentication, network access, and tool configuration
- Experience with ISVM scans and federal vulnerability management compliance requirements
- Experience with API discovery and scanning methodologies and tools
- Demonstrated ability to automate scanning workflows using scripting, scheduling tools, or platform-native automation capabilities
- Familiarity with vulnerability scoring frameworks (CVSS) and risk-based prioritization of findings
- Understanding of federal security compliance requirements including FISMA and NIST RMF as they apply to vulnerability management
- Highly organized: you manage multiple scan schedules, asset inventories, and remediation tracks simultaneously without dropping coverage
- Customer-service oriented — you work collaboratively with system owners and technical teams, not around them
- Detail-oriented with strong documentation habits; your scan configurations and findings are reproducible and audit-ready
- Problem-solver who troubleshoots scanning issues independently and doesn't wait for perfect conditions to maintain coverage
- Vulnerability management certifications: Tenable Certified Security Associate, Qualys Certified Specialist, or equivalent platform certification
- Security certifications: CompTIA Security+, CySA+, or equivalent
- Experience with vulnerability management in a federal civilian or defense environment
- Familiarity with SCAP (Security Content Automation Protocol) and STIG compliance scanning
- Experience integrating vulnerability scan data into SIEM platforms or risk dashboards
- Background in API security testing or web application vulnerability assessment
- Active Secret clearance
#DICE #LinkedIn
___________________________________________________________________________________________________________
Here at Revolutional we are pleased to have been repeatedly recognized for our outstanding work culture, the innovative work we do, and the employees on our team who make a difference each day. Some of these recognitions include:
- Recognized as a Top 20 "Best Place to Work in Virginia"
- Recipient of Department of Labor's HireVets Gold Medallion
- Great Place to Work Certification for five years running
- A Virginia Chamber of Commerce Fantastic 50 company
- A Northern Virginia Technology Council Tech 100 company
- Inc. 5000 list of fastest growing companies for eleven years
- Two-time SBA SBIR Tibbett's Award winner
- Virginia Values Veterans (V3) Certification
We recognize that every bit of our success is the result of our teams of hard-working, motivated, and innovative professionals who are proud to call themselves part of the Revolutional family! In addition to competitive compensation, a family-focused culture, and a dynamic, productive work environment, we offer all full-time employees a variety of benefits including, but not limited to
- Traditional and HSA- eligible medical insurance plans
- 100% employer-paid dental and vision insurance options
- 100% employer-sponsored STD, LTD, and life insurance
- 5% 401(k) company matching
- Flexible-schedules and teleworking options
- Paid holidays and PTO Accrual Plans
- Paid Parental Leave
- Professional development and career growth opportunities
- Team and company-wide events, recognition, and appreciation-- and so much more!
Check out our Revolutional | LinkedIn to find out a little more about who we are and if we are the right next step for your career!
Revolutional is an Equal Opportunity Employer providing equal employment opportunity to all employees and applicants for employment without regard to race, color, religion, national origin, age, gender, gender identity, sexual orientation, disability, or genetics. Revolutional does and will take affirmative action to employ and advance in employment individuals with disabilities and protected veterans. To perform the above job successfully, an individual must possess the knowledge, skills, and abilities listed; meet the education and work experience required; and must be able to perform each essential duty and responsibility satisfactorily. Other duties in addition to those listed may be assigned as necessary to meet business needs. Reasonable accommodation will be made to enable an applicant with a disability to successfully apply for and/or perform the essential duties of the job. If you are in need of an accommodation, please contact View email address on ziprecruiter.com.
$60k - $180k
...Penetration Tester II Chandler, AZ or Washington, DC - Secret clearance required M9 Solutions is dedicated to providing IT services and solutions to the Federal Government by mobilizing the right people, skills, clearance levels, and technologies to help organizations...SuggestedContract work$80k - $128k
Peraton is seeking a Risk and Vulnerability Analyst in Chandler, AZ. The successful candidate will support a 24x7 Security Operations Center by identifying and prioritizing vulnerabilities, ensuring compliance, and facilitating remediation efforts. This role targets a...Risk$40 - $44 per hour
PTR Global is looking for an Information Security Analyst 2 to support governance, risk management, and compliance initiatives within a large enterprise environment in Chandler, AZ. This contract role requires strong knowledge of cybersecurity governance and risk controls...RiskHourly payContract work- ...bureaucracy. Title: Cyber Intelligence Analyst II Location: Washington, DC or Chandler,... ...to assess exposure, prioritize risk, and recommend defensive actions Coordinate with SOC, incident response, vulnerability management, and threat hunting teams to ensure...RiskFull timeWork experience placementFlexible hours
- Business Analyst II, Customer Partner Trust Join to apply for the Business Analyst II, Customer Partner Trust role at Jobright.ai Business... ...field • 3+ year’s experience in business analytics, risk management, or related analytical fields • Knowledge of AWS services...RiskFull timeH1b
- ...solutions. For more information, please visit Title Project Scheduler II Department Program Management Revision Date 4/22/2026 FLSA Status... ...supports integrated master scheduling, baseline control, risk identification, and performance tracking across multiple medium‑complexity...Risk
- ...Investment Consultant II - Merrill Premium Chandler, Arizona To proceed with your application, you must be at least 18 years of... ...Client Management Policies, Procedures, and Guidelines Risk Management Trading Minimum Education Requirement: High School...RiskWork at officeFlexible hoursShift workDay shift
$98.4k - $147.6k
...seeking a Principal Classified Cybersecurity Analyst to support information systems lifecycle... ...control processes to ensure mitigation of risks and support the Assessment and... ...for a Cybersecurity Analyst - IAM level II (Examples: CAP/CGRC, CASP+ /SecurityX, HCISPP...RiskFull timeLocal areaRemote workRelocationFlexible hoursShift work- Senior Engineering Technician II, Field Service As a Senior Engineering Technician II, you are a key technical expert at the intersection... ...and environmental systems. Proactively identify safety risks related to chemical handling, gas delivery, and tool operations,...RiskShift workNight shift
- ...databases, including data feeds and ETL Desired Qualifications: Expert understanding of the most common application security risks (OWASP Top 10, SANS/CWE Top 25) Experience in developing applications in Java,.NET (preferred), C#, JavaScript, Python, or other...RiskContract workWork experience placement
$77.2k - $115.8k
...Grumman Space Systems is currently seeking a Electrical Engineer II in our Chandler, AZ facility. The Chandler group performs cradle... ...documentation and design meetings. Evaluate uncertainty and risks associated with requirements and designs. Participates in trade...RiskRelocationShift work- ...Software Engineer II If you enjoy learning about and working with breakthrough technologies, and are enthusiastic about working in... ...Follow existing Iridium processes for Change Control, Prioritization, Risk Management, Commercial off the Shelf (COTS) Management, Build,...RiskWork at office3 days per week
$44.8k
...operations, this role is for you. We’re seeking a Policy Development Analyst II to help shape and improve the policies, processes, and... ...or proposed policy changes. Recommend strategies to mitigate risks or leverage opportunities related to policy or regulatory changes...RiskMinimum wageFull timeContract workTemporary workWork experience placement$48 - $56 per hour
...Preferred) Minimum requirements are: · ARDMS registered in OB/GYN · Minimum 2-3 years experience in OB/GYN imaging · High risk OB imaging · GYN imaging · CPR certified · Experience with electronic medical records is helpful Education: · Attended an...RiskFull timeWork at officeRelocation packageMonday to Friday- Avnet is seeking a Cyber Incident Response Analyst in Chandler, Arizona. The role involves collaborating with a global team on incident response and utilizing the CrowdStrike platform for detection and investigation. Ideal candidates will have a background in cybersecurity...
- Avnet LLC in Chandler, Arizona, is seeking a Cyber Incident Response Analyst to enhance their global cybersecurity team. This role involves investigating incidents and collaborating across regions using leading-edge tools like CrowdStrike. The successful candidate will...Flexible hours
- ...holder) eligible to access Controlled Unclassified Information (CUI)Job Summary:We are seeking a hands-on Cyber Incident Response Analyst to join a steadily maturing incident response program. In this role, you will be part of a global team operating in a follow‑the‑sun...Permanent employmentTemporary workWork experience placementLive inFlexible hours
$85k - $120k
...Join Us as an FSP Clinical Research Associate (Level II or SR CRA I) Make an Impact at the Forefront of Innovation We have successfully... ...root cause analysis and problem solving Ability to manage Risk Based Monitoring concepts and processes Good oral and written...RiskTemporary workWork at officeRemote workHome officeFlexible hoursNight shift- ...Sonographer OR Reg Diag Cardiac Sonogrp Peds – required. Basic Life Support – required. Physical Requirements & Occupational Exposure/Risk Potential Feeling – constantly Fine Motor Skills – constantly Hearing – constantly Pushing/Pulling – frequently Reaching –...RiskFull timeWork at officeFlexible hoursWeekend work
$122k - $133.7k
...us! Enterprise Job Description: The Division Supervision Manager II is responsible for oversight of Supervision Principals/ Supervision... ...in ways that minimize regulatory, financial and reputational risks. Required Qualifications: Bachelor’s Degree or equivalent work experience...RiskFull timeWork experience placementWork at officeFlexible hoursShift workDay shift- ManpowerGroup Global, Inc. is seeking a Senior Information Security Analyst to support enterprise risk management and compliance initiatives. The ideal candidate will have over 5 years of experience in Information Security, strong analytical skills, and excellent collaboration...Risk
- loanDepot is hiring for an Enterprise Risk Management position located in Southfield, Michigan. This role is essential for executing fair lending risk management initiatives, including analytical reporting and compliance monitoring. The ideal candidate has over five years...Risk
- ## Data Analyst II, Loan ServicingApplylocations: 1720 W Rio Salado Pkwy Tempe, AZ 85281time type: Full timeposted on: Posted Todayjob requisition... ..., inputs, or requirements are unclear and escalating risks early to prevent rework.**So What Kind of Folks Are We Looking...Risk
- ...Risk Management Analyst The Risk Management Analyst is responsible for building, standardizing, and managing the company's risk management program, with a primary focus on workers' compensation, claims management, and insurance programs within a self-insured retention...RiskWork at officeRemote workMonday to FridayMonday to Thursday
- ...Position Summary We are seeking an experienced Cyber Security Analyst to join our cybersecurity team. In this critical role,... ...and vigilant professional dedicated to identifying vulnerabilities, mitigating risks, and leading incident response efforts. The ideal candidate...Risk
$70k - $135k
Cincinnati Insurance Company is seeking a risk management territory advisor based in Arizona to conduct inspections of high-value homes across the Southwestern United States. This role involves assessing risk, providing valuation reports, and offering actionable loss-prevention...RiskRemote job- ...will have over 15 years of experience in information security and IT leadership roles, with a strong background in cloud security and risk management. The position offers a unique opportunity to shape the security culture of the organization. #J-18808-Ljbffr Viavi...Risk
- ...experience driving the acquisition of profitable new business by accepting, modifying, or rejecting various commercial new business risk? Do you have experience reviewing underwriting guidelines and processes to ensure compliance with regulations and desired risk tolerance...RiskPermanent employmentFull timeWork at officeWork visa
$102.17k
...Security Team as a Senior Cyber Security Analyst, where you will operate at the... ...embedding security controls, identifying vulnerabilities, and ensuring that applications deployed... ...composition analysis (SCA), open‑source risk management, and vulnerability remediation...RiskH1b$95k
...warehouse departments are adequately staffed and have the proper tools, technology, and equipment to complete their jobs. Safety, Risk Management & Compliance Maintain a zero-accident culture by enforcing company policies, promptly correcting unsafe conditions,...RiskFull timeWork at officeMonday to FridayDay shift
Do you want to receive more vacancies?
Subscribe and receive similar vacancies to Risk and Vulnerability Analyst II. Be the first to apply!


