Vulnerability Management Analyst

Our client is seeking a Vulnerability Management Analyst to validate and triage vulnerability findings, assess risk-based prioritization, and engage stakeholders throughout the vulnerability lifecycle in an enterprise environment.

Responsibilities & Qualifications

  • Validate and triage vulnerability findings from internal scans, external scans, and threat intelligence
  • Assess severity, exploitability, exposure, and business impact for risk-based prioritization
  • Engage technology stakeholders and remediation owners throughout the vulnerability lifecycle
  • Support rapid response for vulnerability threat intelligence escalations and critical events
  • Work with vulnerability management and scanning tools to validate data and investigate discrepancies
  • Identify recurring risk patterns and recommend improvements to processes and tooling
  • Translate technical vulnerability findings into clear remediation guidance for technical and non-technical stakeholders

Requirements

  • 8-10 years of experience in vulnerability management
  • Proficiency with Qualys, Tenable, and Nessus
  • Strong background in cloud security and container security
  • Experience with risk assessment and vulnerability triage in enterprise technology environments
  • Knowledge of vulnerability lifecycle management
  • Proficiency in Python, PowerShell, and SQL
  • Experience with data analysis tools including Power BI and Excel
  • Strong written and verbal communication skills