Sign up to access all features of our service.
  • Job search
  • Favorites
  • Create a CV
    New
  • Salaries
  • Subscriptions

Cybersecurity Analyst (Vulnerability Management & Continuous Monitoring)

NJVC

Req ID: 40432 Summary Cybersecurity Analyst (Vulnerability Management & Continuous Monitoring) Oakton, VA Are you ready to enhance your skills and build your career in a rapidly evolving business climate? Are you looking for a career where professional development is embedded in your employer's core culture? If so, Chenega Military, Intelligence & Operations Support (MIOS) could be the place for you! Join our team of professionals who support large-scale government operations by leveraging cutting‑edge technology and take your career to the next level! SecuriGence delivers essential technology services supporting critical national security missions. We are seeking a Cybersecurity Analyst (Vulnerability Management & Continuous Monitoring) to support Department of Defense (DoD) cybersecurity operations by executing vulnerability management, security compliance, and Continuous Monitoring (ConMon) activities in accordance with the Risk Management Framework (RMF). This role is responsible for identifying, assessing, prioritizing, and tracking vulnerabilities using enterprise tools, ensuring compliance with Security Technical Implementation Guides (STIGs), and responding to Information Assurance Vulnerability Alerts (IAVAs). Responsibilities Vulnerability Management Perform vulnerability scanning using Assured Compliance Assessment Solution (ACAS) (e.g., Tenable.sc / Nessus). Enforcing the ACAS best practice guide requirements when performing vulnerability scans in ACAS Analyze scan results to identify vulnerabilities, misconfigurations, and compliance gaps. Validate findings against the latest released DISA STIGs and applicable security baselines. Review of provided checklists and working with system admins in identifying gaps for POA&M creation. Assess and track vulnerabilities in accordance with DoD timelines and risk severity. Correlate vulnerabilities with IAVA/IAVM notices and ensure timely remediation or mitigation. Develop and maintain Plan of Action and Milestones (POA&M) documentation. Maintenance of Risk Acceptance (RA) POA&M items within SOR (System of Record) and coordinating with System administrators to validate that RA is required instead of a POA&M. STIG Compliance & Hardening Apply and validate Security Technical Implementation Guides (STIGs) across operating systems, applications, and network devices. Conduct manual and automated STIG compliance checks using tools such as ACAS Audit checks, STIG Viewer, SCAP Compliance Checker (SCC), and Evaluate-STIG. Document compliance status and provide remediation guidance to system administrators. Support system hardening efforts aligned with DoD baseline configurations. Ensure that golden images are maintained for Servers (RHEL and Windows) and Workstations following STIG guidance. IAVA/IAVM Management Monitor and assess Information Assurance Vulnerability Alerts (IAVAs) and Bulletins (IAVBs). Determine system applicability and operational impact. Coordinate remediation actions and track compliance deadlines. Maintain IAVA compliance reporting and documentation for audits. Continuous Monitoring (ConMon) Execute Continuous Monitoring activities in accordance with RMF Step 6. Monitor security controls for effectiveness and ongoing compliance. Conduct control assessments and assist with periodic security reviews. Support automated and manual data collection for ConMon dashboards and reporting. Identify trends, recurring issues, and systemic risks across systems. RMF & Compliance Support Support RMF activities across all six steps, with emphasis on control implementation validation, security control assessment support, ongoing authorization (ATO sustainment), update and maintain RMF artifacts including the System Security Plan (SSP), Security Assessment Report (SAR), Plan of Action and Milestones (POA&M), and Security Assessment Plan (SAP), and map vulnerabilities and findings to NIST SP 800-53 controls. Reporting & Documentation Generate vulnerability and compliance reports for leadership and Authorizing Officials (AOs). Provide risk‑based recommendations and remediation strategies. Maintain audit‑ready documentation in accordance with DoD and agency requirements Other duties as assigned Qualifications High school diploma or GED equivalent 5+ years of experience in DoD cybersecurity or RMF-based environments Hands‑on experience with ACAS (Nessus / Tenable.sc), STIG implementation and validation, IAVA/IAVM processes, and vulnerability assessment, risk analysis, and remediation tracking DoD 8570/8140 Compliance: Must meet IAT Level II requirements (e.g., Security+) Active DoD Top Secret clearance with SCI eligibility Knowledge, Skills, and Abilities Strong understanding of DoD RMF (DoDI 8510.01) and NIST SP 800-53 security controls; ability to manage multiple systems and priorities in a regulated environment; strong analytical and problem‑solving skills; attention to detail and compliance rigor; ability to translate technical risk into mission impact; effective communication with technical and non‑technical stakeholders Relevant certifications: Certified Information Systems Security Professional (CISSP), Certified Ethical Hacker (CEH) or equivalent, DISA ACAS Training Certificate Experience with ACAS, SCAP Compliance Checker (SCC) / Evaluate-STIG, STIG Viewer, eMASS, Xacta, Trellix, MDE, Splunk, Elastic, familiarity with scripting (e.g., PowerShell, Python) for automation, and enterprise‑level ConMon programs or NOSC/SOC environments Benefits At Chenega MIOS, we know that great people make a great organization. We value our team members and offer them a broad range of benefits. Learn more about what working at Chenega MIOS can mean for you. Chenega Corporation and family of companies is an EOE. Equal Opportunity Employer/Veterans/Disabled Native preference under PL 93-638. We participate in the E‑Verify Employment Verification Program #J-18808-Ljbffr NJVC

Vacancy posted 1 day ago
Similar jobs that could be interesting for youBased on the Cybersecurity Analyst (Vulnerability Management & Continuous Monitoring) in Oakton, VA vacancy
  • Njvc LLC is looking for a Cybersecurity Analyst (Vulnerability Management & Continuous Monitoring) in Oakton, VA. This role supports DoD cybersecurity operations, focusing on vulnerability management and compliance activities. Candidates must have 5+ years of experience... 
    Suggested

    NJVC

    Oakton, VA
    3 days ago
  • Everforth ECS is seeking a Junior Vulnerability Management Analyst to work in the National Capital...  ...environments, contributing directly to continuous monitoring, POA&M tracking, and remediation...  ...owners, administrators, and cybersecurity teams to collect remediation evidence... 
    Suggested
    Contract work
    For contractors
    Internship
    Local area

    ECS

    Fairfax, VA
    5 days ago
  • $103.54k - $147.92k

     ...(in days) to receive an alert: Vulnerability Management Analyst (Structured Threat Analyst 3) ADVANA...  ...threats. Our capabilities in cybersecurity, network architecture, reverse engineering...  ..., ServiceNow workflows, and continuous monitoring dashboards to maintain current... 
    Suggested
    Full time
    Contract work
    For contractors
    Work at office
    Local area
    Remote work
    Worldwide

    Huntington Ingalls Industries

    Fairfax, VA
    4 days ago
  • $103.54k - $147.92k

     ...Responsibilities Supports enterprise vulnerability management operations for Department...  ...workflows, and continuous monitoring dashboards to maintain...  ...owners, administrators, and cybersecurity teams to collect...  ...under guidance of senior analysts. Maintains detailed records... 
    Suggested
    Full time
    For contractors
    Work at office
    Local area

    Mission Technologies, a division of HII

    Fairfax, VA
    1 day ago
  •  ...support in the areas of Cyber Security and Management to improve the Information Assurance...  ...Assessment and Authorization (A&A), Vulnerability Management, and Cyber Defense support...  ...Support the Information Security Continuous Monitoring (ISCM) Program Lead in maturing the customer... 
    Suggested

    RDR Inc

    Chantilly, Loudoun County, VA
    23 days ago
  •  ...Description: Job Title: ACAS Cybersecurity Analyst Location: Oakton, VA...  ...Security Services Reports To: Management FLSA Status: Full Time/...  ...mission by executing advanced vulnerability management, compliance, and Continuous Monitoring (ConMon) within complex,... 
    Full time
    Work at office
    Local area

    Apavo Corporation

    Oakton, VA
    12 days ago
  • Cybersecurity Vulnerability Analyst (Incident Manager III) Description Supporting our prime contractor and their U.S. Government customer to provide cybersecurity vulnerability analysis support to reduce the prevalence and impact of vulnerabilities and exploitable conditions... 
    For contractors

    kozmetickesluzby.vecnakraska.sk - Jobboard

    Arlington, VA
    5 days ago
  •  ...an Operational Technology Cybersecurity Analyst - Journeyman to support...  ...Cybersecurity Operations Support by monitoring and analyzing security...  ...and helps maintain continuous cyber defense operations...  ...monitoring, threat detection, vulnerability management, and Defensive Cyberspace... 
    Contract work
    Local area

    ECS

    Fairfax, VA
    3 days ago
  • $229.9k - $262.4k

     ...Senior Manager, Information Security Office (AI) Consultant...  ...role: As an Expert Cybersecurity ISO, you will have a...  ...for AI security testing, monitoring and stress validation...  ...considerations Drive continuous improvement through vulnerability assessments, risk remediation... 
    Full time
    Part time
    H1b
    Work at office
    Local area

    Capital One

    McLean, VA
    3 days ago
  •  ...Entrusted by companies with challenging Cybersecurity and IT data management recruiting needs, Flex Staffing Resources identifies...  ...(SSP), plans and procedures), and ongoing continuous monitoring activities. Analysis of vulnerability scans Identify and assess Cloud System... 
    Remote work
    Flexible hours
    1 day per week

    FSR Inc

    Herndon, VA
    1 day ago
  • $102.17k

     ...water resources are managed and protected....  ...Cyber Security Analyst, where you will...  ...intersection of cybersecurity and DevSecOps to...  ...controls, identifying vulnerabilities, and ensuring...  ...security monitoring, analyzing complex...  ...innovation and continuous improvement in cybersecurity... 
    H1b

    CDM Smith

    Fairfax, VA
    3 days ago
  • $103.54k - $147.92k

    A leading defense contractor in Virginia is seeking a Vulnerability Management Analyst to support the DoD/DoW Advana War Data Platform. The role involves managing cyber vulnerabilities, validating scan results, and collaborating with teams on remediation efforts. Candidates... 
    For contractors

    Huntington Ingalls Industries

    Fairfax, VA
    3 days ago
  •  ...DecisionPoint is seeking an experienced Monitoring Incident and Event Management Advisory Specialist to join our...  ...of Homeland Security (DHS) Cybersecurity and Infrastructure Security Agency...  ...incident reviews and contribute to continuous improvement initiatives. Maintain... 
    For contractors
    Work experience placement
    Local area
    Afternoon shift

    DecisionPoint Corporation

    Arlington, VA
    4 days ago
  •  ...Cyber Incident Response Analyst to join our team in McLean...  ...Lead the detection and continuous monitoring of potential security incidents...  ...threat intelligence and vulnerability management data to proactively...  ...months of hire. Knowledge of cybersecurity principles, incident... 
    Shift work
    Night shift
    Day shift
    Afternoon shift

    MANTECH

    Mc Lean, VA
    16 days ago
  •  ...Description Position Summary: ECS is seeking a Cybersecurity Analyst (CDAP) - Senior to support the Army...  ...Analyst (CDAP) performs monitoring and analysis of security telemetry within...  ...Cyber Center and DISA DCDC to strengthen continuous monitoring, threat detection, and... 
    Contract work
    Local area

    ECS

    Fairfax, VA
    4 days ago
  • Job Description ECS is seeking a Cybersecurity Analyst (CDAP) - Journeyman to support the...  ...Security Information & Event Management (USIEM) analytics ecosystem, integrated...  ..., Zeek metadata, Sysmon‑informed monitoring, EDR, SOAR, and continuous monitoring processes to improve... 
    Contract work
    Local area

    ECS

    Fairfax, VA
    5 days ago
  • $60k - $73k

     ...teamwork? At Ntiva, we’re more than a Managed Services Provider; we’re a...  ...lines of a fast‑paced industry, facing cybersecurity threats and rapid technology changes...  ...role. How You’ll Make An Impact As a Vulnerability Management Analyst, you support Security Engineers by... 
    Contract work
    Temporary work
    Remote work
    Monday to Friday

    Ntiva

    McLean, VA
    4 days ago
  •  ...and operational analysts. Responsibilities...  ..., evidence management, and SOC1 readiness...  ...contributes to a continuous audit-readiness...  ...Plan, Continuous Monitoring, Incident Management...  ...&M Policy, and Vulnerability Management....  ...program management, cybersecurity, quality... 
    Contract work
    Local area

    ECS

    Fairfax, VA
    1 day ago
  •  ...Technologies, a division of HII, is looking for a skilled professional in vulnerability management in Fairfax, Virginia. The successful candidate will support Department of Defense cybersecurity efforts, ensure accuracy in vulnerability assessments, and maintain compliance... 

    Mission Technologies, a division of HII

    Fairfax, VA
    5 days ago
  •  ...Specialist II to operate and manage all aspects of...  ...networks. Implements and monitors security measures for...  ...incidents; develops Continuity of Operation (COOP)/Disaster...  ...tickets from other Cybersecurity Operations Services...  ...sufficient to reconstruct the analyst’s analysis, to include... 
    Full time

    William-C-Brown-Inc-

    Springfield, VA
    2 days ago
  • $100k - $145k

     ...Description Dark Wolf is seeking Cybersecurity Analysts to join a collaborative team to develop, manage, and maintain the security...  ...and Authorization (A&A), continuous monitoring and compliance with NIST &...  ...of controls, audits, vulnerability scans, and penetration test... 
    Full time
    For contractors
    Work at office
    Local area

    Dark Wolf Solutions

    Herndon, VA
    3 days ago
  •  ...Computer Network Defense Analyst uses information...  ...variety of sources to monitor network activity and analyze...  ...cyber defense tools for continual monitoring and analysis...  ...enclave Notify designated managers, cyber incident responders, and cybersecurity service provider team... 
    Local area
    Immediate start
    Flexible hours

    Business Computers Management Consulting Group

    Arlington, VA
    5 days ago
  •  ...Information Systems Security Manager (ISSM) Location: Arlington...  ...evolve a comprehensive cybersecurity strategy that aligns with...  ...disruptions. Establish a robust vulnerability management program that...  ...operations, including continuous monitoring of networks, systems, and... 
    Contract work
    For contractors

    NJVC

    Arlington, VA
    1 day ago
  •  ...Secure IT Service Management, a division of Paragone...  ...and maintain vulnerability scanning on networks...  ...when necessary. Continuously improve risk models;...  ...security frameworks and monitoring tools. Experience...  ...who must comply with Cybersecurity Maturity Model Certification... 
    Permanent employment
    Temporary work
    For contractors
    Work at office
    Remote work

    Paragone Solutions, Inc.

    McLean, VA
    9 days ago
  •  ...will leverage your background managing RMF controls, system documentation, and continuous monitoring activities to deliver...  ...assessments. This role is ideal for cybersecurity professionals who have...  ...and ensure timely closure of vulnerabilities. Analyze system changes, configuration... 
    Work experience placement

    General Dynamics Information Technology

    Falls Church, VA
    5 days ago
  • $79.6k - $194k

     ...in Fairfax, Virginia as a CARE Alert Monitoring Analyst. This permanent full-time position requires...  ...and entails analyzing alerts and managing incident responses. You'll work on-site...  ...assisting federal government clients with cybersecurity solutions. The role follows a Panama... 
    Permanent employment
    Full time
    Night shift
    Day shift
    3 days per week

    CGI Njoyn

    Fairfax, VA
    2 days ago
  •  ...on coaching teams, improving workflows, monitoring quality, and driving performance. You...  ...scheduling workflows, call volumes, queue management, and service levels to ensure efficient...  ..., customer service excellence, and continuous improvement. Develop & Support Team... 
    Full time
    Remote work
    Work from home
    Home office
    Monday to Friday

    Fairfax Radiology Centers, LLC

    Fairfax, VA
    1 day ago
  • ECS is looking for a Junior Vulnerability Management Analyst based in the National Capital Region. This role involves supporting enterprise vulnerability...  .... Candidates should have foundational experience in cybersecurity operations, and an IAM Level I certification is... 

    ECS

    Fairfax, VA
    2 days ago
  •  ...MANTECH seeks a motivated, career and customer-oriented Cybersecurity Analyst - Nights to join our team in Tysons, VA The Cybersecurity Analyst will monitor Air Gapped Security Fabrics through managed SECOPs Tools. Responsibilities Monitoring Operations Center IT an infrastructure... 
    Work at office
    Local area
    Shift work
    Night shift

    ManTech

    Falls Church, VA
    1 day ago
  •  ...Missions is seeking a Senior Cybersecurity Analyst to support the customer’s...  ...briefings to Customers, Program Managers, and other Stakeholders Uses security and other monitoring tools to review the...  ...cost of certifications and continuing education, empowering you to... 

    Emmertmissions

    Springfield, VA
    1 day ago

Do you want to receive more vacancies?

Subscribe and receive similar vacancies to Cybersecurity Analyst (Vulnerability Management & Continuous Monitoring). Be the first to apply!