Risk and Vulnerability Analyst II
True Zero Technologies, LLC
True Zero Vulnerability Management Position
True Zero Technologies, a veteran-owned small business, was founded on the principle that the purposeful enablement of people and technology in an organization directly ties to the quality of its outcomes. True Zero recognizes that those outcomes begin and end with our people, and that is what we have built a community of like-minded, driven, and passionate individuals and innovators who are aligned in a common goal of delivering top-tier services to our customers. Our culture and commitment have been recognized through numerous accolades, including being named one of the Best Places to Work in 2023 in two categories ("Prosperous and Thriving" ($5MM–$50MM in gross revenue) and "Mid-Atlantic Region" (DC, DE, MD, NC, VA, WV)), and again in 2025 as a Best Places to Work honoree. In addition, True Zero earned coveted spots on the Inc. 5000 list of fastest-growing companies in America in 2022, 2023, and 2025, a testament to our sustained growth driven by our people-first approach and unwavering dedication to excellence.
This candidate will execute vulnerability identification, scanning, analysis, and coordination to reduce system attack. Maintain disciplined vulnerability workflows from discovery through validation and closure. Additionally, will support compliance scanning and troubleshooting across environments, including cloud and on-site scanning while ensuring the reporting is timely, accurate, and usable by stakeholders.
Job Responsibilities
- Perform ad hoc and automated vulnerability scanning using accepted tools.
- Conduct cloud compliance scans and on-site scanning as required.
- Analyze findings, prioritize risk, and track remediation progress.
- Troubleshoot scanning issues and improve scan reliability/coverage.
- Produce vulnerability reports and support stakeholder coordination.
- Maintain a customer-service posture for program office and engineering partners.
Job Qualifications
- Bachelor's degree
- 3 years security-related experience.
- Experience with industry-accepted scanning tools and automated scanning approaches.
- Experience with cloud compliance scans and on-site scanning; skilled at troubleshooting.
- Must be highly organized and customer-service focused.
- Experience with ISVM scanning and compliance tracking
- Experience with API discovery and scanning
- Must be eligible for Secret clearance
We're actively searching for talented and experienced professionals who are ready to experience the True Zero difference. As a True Zero team member, you'll enjoy:
- Competitive salary, paid twice per month
- Best in class medical coverage
- 100% of medical premiums covered by True Zero
- Company wide new business incentive programs
- Contribution Incentives (i.e. white papers, blog posts, internal webinars, etc.)
- 3 weeks of PTO starting + 11 Paid Holidays Annually
- 401k Program with 100% company match on the first 4%
- Monthly reimbursement of Cell Phone and Home Internet costs
- Paternity/Maternity Leave
- Investment in training and certifications to broaden and deepen your technical skills
Vacancy posted 5 days ago
Similar jobs that could be interesting for youBased on the Risk and Vulnerability Analyst II in Washington DC vacancy
- ...Vulnerability Analyst II Position Title: Vulnerability Analyst II Program: SBA Enterprise Cybersecurity Services (ECS) Position Summary The Vulnerability Analyst II provides cybersecurity risk, vulnerability management, and compliance support services in alignment...Risk
cFocus Software Incorporated
Washington DC3 days ago - cFocus Software Incorporated is seeking a Vulnerability Analyst II in Washington, D.C. The role involves providing cybersecurity risk, vulnerability management, and compliance support, including vulnerability assessments and remediation recommendations. Candidates should...Risk
$140.5k - $210.5k
Sr. Cybersecurity Analyst II (Sr Vulnerability Analyst) - Information Technology Primary Location: DC‑Washington Employee Status: Regular Overtime... ...and compromises; author project plans, schedules, and risk assessments. Qualifications Minimum Education: Bachelor’s...RiskWork at officeRelocation$140.5k - $210k
...adequately protected. Able to characterize and manage complex risks to mitigate cyber threats. With limited guidance, proactively... ...containment, eradication, and remediation. Oversees implementation of vulnerability scans and ensures operational systems are adequately patched...RiskFull timeWork at office$159.3k - $202.4k
...Healthcare Security's (HealthSec) AI team is hiring a Security Engineer II to secure GenAI applications and enable secure AI adoption across... ...default Assess and drive mitigation of AI-specific security risks including prompt injection, model abuse, data exfiltration, and...RiskFlexible hoursAmazon
Arlington, VA5 days ago$97.24k - $118.56k
...MATTER EXPERTS specializing in security and risk management. We’re intimately familiar... ...Information Systems Security Officer II The ISSO is responsible for ensuring the... ...assessment plans Identify cyber security vulnerabilities and assist with the implementation of the...RiskHourly payContract workFor contractorsWork experience placementWork at officeLocal areaWatermark Risk Management International, LLC
Washington DC5 days ago- Watermark Risk Management International is looking for an Information Systems Security Officer II in Washington, DC. The role involves maintaining security for government programs, ensuring compliance, and managing documentation associated with security authorizations....Risk
$97.24k - $131.56k
...Required: None Job Family: Cyber and IT Risk Management Skills: Information... ...assessment plans. Identify cyber security vulnerabilities and assist with the implementation of the... ...years) Certifications: ~ IAT Level II or IAM Level II (Security+ CE, CCNA...RiskTemporary workWork at officeImmediate startWorldwideFlexible hoursGeneral Dynamics Information Technology
Washington DC8 days ago- ...Application Systems Analyst II (Contract Contingent) ProSidian is a Management and Operations Consulting Services Firm focusing on providing... ...practices. ProSidian services focus on the broad spectrum of Risk Management, Compliance, Business Process, IT Effectiveness,...RiskContract workWork at office
ProSidian Consulting
Arlington, VA5 days ago - ...Information System Security Manager (ISSM) II to oversee and manage the implementation... ...posture of information systems, managing risk, and maintaining compliance with... ...Monitor system security posture and respond to vulnerabilities, incidents, and threats Coordinate security...Risk
Provato HR
Washington DC29 days ago $18k
...Internal Review Security Engineer II (Contract Contingent) ProSidian is a Management... ...services focus on the broad spectrum of Risk Management, Compliance, Business Process,... ...network mapping software and system vulnerability scanners. Must be a Certified Information...RiskContract workFor contractorsWork at officeImmediate startProSidian Consulting
Arlington, VA5 days ago- ...The Cyber Security Specialist II/III supports cybersecurity engineering and compliance... ...monitor security posture, and remediate vulnerabilities across supported systems. This position is... ...security control implementation and risk reduction. - Active DoD Secret clearance...RiskWork at office
Warrant Technologies LLC
Washington DC3 days ago - ...Description MULTIPLE POSITIONS AVAILABLE Employer: AMAZON.COM SERVICES LLC Offered Position: Risk Manager II Job Location: Arlington, Virginia Job Number: AMZ9442240 Position Responsibilities: Identify, design, develop, implement and execute new and existing...Risk
Amazon
Arlington, VA1 day ago $97.24k - $118.56k
...MATTER EXPERTS specializing in security and risk management. We’re intimately familiar... ...Information Systems Security Officer II The ISSO is responsible for ensuring the... ...assessment plans Identify cyber security vulnerabilities and assist with the implementation of the...RiskHourly payContract workFor contractorsWork experience placementWork at officeLocal areaWatermark Risk Management International
Washington DC11 days ago$9k
The ISSM II's primary function serves as a principal advisor on all matters, technical... ...of network security, based upon the Risk Management Framework (RMF) with emphasize... ...measures have been taken when an incident or vulnerability has been discovered within a system Ensure...RiskFull timeWork at officeLocal areaImmediate startWorldwideFlexible hoursModern Technology Solutions Inc
Arlington, VA1 day ago$88k - $140k
Affirm is seeking a Compliance Analyst II in Washington, D.C. to support its compliance governance program. The Analyst will review and challenge... ...adherence. Required are 3 to 5+ years in compliance or risk management within financial services, strong analytical skills,...RiskRemote job- ...Secretary Level II (Contract Contingent) ProSidian is a Management and Operations Consulting Services Firm focusing on providing... ...leading practices. ProSidian services focus on the broad spectrum of Risk Management, Compliance, Business Process, IT Effectiveness,...RiskFull timeContract workTemporary workFor contractorsWork at officeImmediate startFlexible hours
ProSidian Consulting
Washington DC3 days ago $151.5k - $155k
Information System Security Manager (ISSM) II Security Clearance: TS/SCI (Must be... ...guidelines of network security, based upon the Risk Management Framework (RMF) with emphasis... ...have been taken when an incident or vulnerability has been discovered within a system Ensure...RiskFull timeWork at officeLocal area$33.92 - $36.59 per hour
...Cda Lending And Risk Analyst II Department: DHCD - Div of Dev Finance - Special Loan Programs Date Opened: 5/26/2026 4:07:00 PM Filing Deadline: 6/9/2026 11:59:00 PM Salary: $33.92- $36.59/hour (Grade 17/Step 5-9. with promotional growth to $52.88/hour)...RiskFull timeMaryland State Jobs
Hyattsville, MD4 days ago$18k
...ITSM Network Engineer II ProSidian is a Management and Operations Consulting Services Firm focusing on providing value to clients... ...leading practices. ProSidian services focus on the broad spectrum of Risk Management, Compliance, Business Process, IT Effectiveness,...RiskFor contractorsWork experience placementWork at officeLocal areaImmediate startProSidian Consulting
Washington DC5 days ago$18k
...ADSM Administrative Specialist II ProSidian is a Management and Operations Consulting Services Firm focusing on providing value to... ...leading practices. ProSidian services focus on the broad spectrum of Risk Management, Compliance, Business Process, IT Effectiveness,...RiskFor contractorsWork experience placementWork at officeImmediate startProSidian Consulting
Washington DC5 days ago- ...Remote Sensing And Geospatial Support Programming Specialist II (RSGS7) ProSidian is a Management and Operations Consulting Services... ...services focus on the broad spectrum of Enterprise Solutions for Risk Management | Compliance | Business Processes | IT Effectiveness |...RiskPermanent employmentContract workWork experience placementWork at officeRemote work
ProSidian Consulting
Washington DC1 day ago - Redtracetech is looking for an Information System Security Officer (ISSO) II based in Washington, D.C. The successful candidate will ensure... ..., a Top Secret Clearance with SCI eligibility, and strong knowledge of the Risk Management Framework. #J-18808-Ljbffr RedtracetechRisk
- ...instrumental in securing complex systems, conducting risk assessments, designing secure system... ...Ensure system compliance with IASAE Level II frameworks and DoD regulations. Conduct security assessments, gap analyses, and vulnerability mitigation planning. Technical Leadership...RiskFull timeRemote work
Nationwide IT Services, Inc.
Arlington, VA8 days ago - ...the security of customer systems. Identify vulnerabilities and develop recommended remediations to satisfy... ...(GXPN) Zero Point Security Red Team Ops II Advanced understanding of the following: NIST Risk Management Framework (RMF) and the Assessment and...RiskFull timeFor contractorsRemote work
VETS
Arlington, VA5 days ago - ...Internal Auditor II – Specialty Washington, DC Exp 1-2 yrs Deg Doctorate The Risk Management Team within Internal Audit is responsible for assessing the adequacy and effectiveness of management and oversight processes associated with credit, market, counterparty...Risk
Direct Staffing Inc
Washington DC4 days ago - ...Senior Vulnerability Analyst This position supports the Information Risk Strategy Management (IRSM) Vulnerability Management (VM) program reporting to the Vulnerability Management Team Lead. Responsibilities include managing the vulnerability remediation process to...Risk
Software Technology Inc
Washington DC5 days ago $76.4k - $138.6k
...build client trust. Within Information Security we blend risk strategy, digital identity, cyber defense, application... ...business value. The opportunity As an Offensive Security Analyst on the Vulnerability Management team, you will play a supporting role in the...RiskSummer holidayLocal areaFlexible hoursEY
Washington DC1 day ago$110.39k - $172.66k
...functions including but not limited to; scheduling, estimating, cost control, risk management, document control and project management information systems. The Project Controls Specialist II reports on cost controls and schedules for projects involving cost and schedule...RiskFull timePart timeFor contractorsHNTB
Arlington, VA4 days ago- A security services company is hiring a Security Specialist II - Risk Assessment Specialist in Washington, DC. This full-time role requires managing the Position Description database, conducting Risk Designation assessments, and maintaining accurate contractor information...RiskFull timeFor contractors
Do you want to receive more vacancies?
Subscribe and receive similar vacancies to Risk and Vulnerability Analyst II. Be the first to apply!
Related searches
- transaction risk analyst Washington DC
- operational risk consultant Washington DC
- governance risk & compliance analyst Washington DC
- it risk analyst Washington DC
- information risk analyst Washington DC
- risk compliance officer Washington DC
- operational risk specialist Washington DC
- risk analyst Washington DC
- third party risk analyst Washington DC
- senior quantitative risk analyst Washington DC