ZipRecruiter

Log In

1

Contract Vulnerability Analyst Jobs in Boston, MA

Mondo

Vulnerability Analyst

Boston, MA ยท Remote

$50 - $55/hr

The start date is ASAP for this 6 month contract-to-hire position. Job Title: Vulnerability Analyst Location-Type: Remote Start Date Is: ASAP Duration: 6-month contract-to-hire Compensation Range ...

Artech

Cybersecurity Software Engineer

North Reading, MA ยท On-site

$120 - $135/hr

North Reading, MA (100% Onsite) Duration: 12 Months contract Payrate: $120 to $135 per hour. The ... Experience in threat modeling, security automation, vulnerability analysis, and incident response.

Abacus Technology

CFP/Cyber Liaison

Hanscom Air Force Base, MA ยท On-site

$88.86K - $101.50K/yr

... vulnerability reports. * Enable data-driven decision-making by translating technical compliance ... Possess excellent technical writing, critical thinking/analytical, oral and written communication ...

Abacus Technology

CFP/Cyber Liaison

Hanscom Air Force Base, MA ยท On-site

$88.86K - $101.50K/yr

... vulnerability reports. * Enable data-driven decision-making by translating technical compliance ... Possess excellent technical writing, critical thinking/analytical, oral and written communication ...

next page

Showing results 1-20

People also search for

All JobsContract Vulnerability Analyst JobsContract Vulnerability Analyst Jobs in Boston, MA

Contract Vulnerability Analyst information

See Boston, MA salary details

$33.7K

$79.6K

$141.2K

How much do contract vulnerability analyst jobs pay per year?

As of May 28, 2026, the average yearly pay for contract vulnerability analyst in Boston, MA is $79,591.00, according to ZipRecruiter salary data. Most workers in this role earn between $57,000.00 and $94,500.00 per year, depending on experience, location, and employer.

What are the key skills and qualifications needed to thrive as a Contract Vulnerability Analyst, and why are they important?

To thrive as a Contract Vulnerability Analyst, you need a strong background in cybersecurity principles, vulnerability assessment methodologies, and relevant certifications such as CEH or CompTIA Security+. Familiarity with vulnerability scanning tools like Nessus, Qualys, or OpenVAS, as well as experience with common operating systems and network protocols, is typically required. Analytical thinking, attention to detail, and strong communication skills help analysts effectively identify, prioritize, and report vulnerabilities to stakeholders. These skills are crucial for ensuring organizational security and compliance while minimizing risk in dynamic contract-based environments.

What are some common challenges faced by Contract Vulnerability Analysts, and how can they overcome them?

Contract Vulnerability Analysts often face challenges such as rapidly changing threat landscapes and the need to quickly adapt to new security vulnerabilities in client environments. They must balance multiple client projects and prioritize tasks based on risk and impact. Success in this role requires strong communication skills to clearly explain technical findings to non-technical stakeholders and collaborate with both internal security teams and client IT departments. Building efficient workflows, staying updated with the latest security tools, and participating in regular training can help analysts stay ahead of threats and deliver impactful results.

What is a Contract Vulnerability Analyst?

A Contract Vulnerability Analyst is a cybersecurity professional who is hired on a contractual basis to identify, assess, and report security vulnerabilities within an organization's systems, networks, or applications. Their main role is to help companies find and address security weaknesses before attackers can exploit them. They often use various tools and methodologies to conduct vulnerability assessments, penetration testing, and security audits. Contract Vulnerability Analysts typically work for a set period or on a specific project, providing expert guidance to enhance the organization's security posture.

What is the difference between Contract Vulnerability Analyst vs Security Analyst?

AspectContract Vulnerability AnalystSecurity Analyst
CertificationsCompTIA Security+, CEH, CISSP (preferred)CompTIA Security+, CISSP, CISA
Work EnvironmentContract-based, project-specific roles, often remote or on-siteFull-time, in-house or remote security teams within organizations
Industry UsageIT security firms, consulting companies, tech organizationsCorporate, government, financial institutions
Search & Comparison IntentFocus on vulnerability assessment, penetration testing, security gapsBroader security management, incident response, policy enforcement

The Contract Vulnerability Analyst primarily focuses on identifying and mitigating security vulnerabilities through assessments and testing, often working on a contractual basis. In contrast, a Security Analyst typically handles ongoing security monitoring, incident response, and policy implementation within an organization. While both roles require similar certifications and work in the cybersecurity field, their scope and employment structure differ significantly.

What are the most commonly searched types of Vulnerability Analyst jobs in Boston, MA? The most popular types of Vulnerability Analyst jobs in Boston, MA are:
What are popular job titles related to Contract Vulnerability Analyst jobs in Boston, MA? For Contract Vulnerability Analyst jobs in Boston, MA, the most frequently searched job titles are:
What job categories do people searching Contract Vulnerability Analyst jobs in Boston, MA look for? The top searched job categories for Contract Vulnerability Analyst jobs in Boston, MA are:
What cities near Boston, MA are hiring for Contract Vulnerability Analyst jobs? Cities near Boston, MA with the most Contract Vulnerability Analyst job openings:
Contract Vulnerability Analyst jobs near you
Vulnerability Analyst

Vulnerability Analyst

Mondo

Boston, MA โ€ข Remote

$50 - $55/hr

Contractor

Medical, Dental, Vision, Retirement

This job post hasย expired today.ย Applications are no longer accepted.

Job description

Apply now: Vulnerability Analyst, location is Remote. The start date is ASAP for this 6 month contract-to-hire position.

Job Title: Vulnerability Analyst
Location-Type: Remote
Start Date Is: ASAP
Duration: 6-month contract-to-hire
Compensation Range: $50-$55/hour W2
Benefits: Eligible for Health, Dental, Vision, 401K
Must be authorized to work in the U.S. This position is not eligible for sponsorship .

Job Description:
Support vulnerability management and production operations by identifying, tracking, and reporting security risks while ensuring compliance within regulated environments.

Day-to-Day Responsibilities:

  • Pull vulnerability data from tools (e.g., Wiz, scans, databases)
  • Normalize, clean, and reconcile data across multiple sources
  • Identify high-priority risks vs. noise across large datasets
  • Build, maintain, and track POA&Ms (Plans of Action & Milestones)
  • Assign ownership and monitor remediation progress with application teams
  • Document exceptions, deviations, and compliance artifacts
  • Produce risk summaries and reports for stakeholders
  • Monitor production alerts and incidents (e.g., PagerDuty)
  • Ensure resolution and document root cause analyses (RCAs)
  • Identify opportunities to reduce alert noise and improve automation

Requirements:

  • Must-Haves:
    • Strong experience in vulnerability management (identification, tracking, prioritization)
    • Hands-on experience with Wiz (vulnerability scanning tool)
    • Experience creating and managing POA&Ms
    • Experience with FedRAMP or regulated environments
    • Ability to reconcile and normalize data from multiple tools/sources
    • Experience managing large volumes of vulnerabilities (hundreds to thousands)
    • Strong cross-functional collaboration with engineering/application teams
    • Excellent documentation and reporting skills
    • Must have a Bachelor's Degree
  • Nice-to-Haves:
    • AWS cloud and cloud security experience
    • Experience with continuous monitoring (ConMon) programs
    • Familiarity with automation of security or reporting processes
    • Experience improving alerting systems and reducing operational noise