ZipRecruiter

Log In

1

Contract Vulnerability Analyst Jobs (NOW HIRING)

SOSi

Risk and Vulnerability Analyst II

Washington, DC ยท On-site

Overview SOSi is seeking a Risk and Vulnerability Analyst II to support vulnerability assessment ... May be requested to work evenings and weekends to meet program and contract needs. Working at SOSi ...

Alignerr

Vulnerability Management Analyst

Dallas, TX ยท Remote

Type : Hourly Contract * Location : Remote * Commitment : 10-40 hours/week What You'll Do * Analyze vulnerability reports, CVEs, and exposure scenarios across infrastructure and applications

Cymertek

iOS Vulnerability Engineer (Software)

Tysons, VA ยท On-site

$140.50K/yr

Most contracts allow additional experience (4-5 years) in lieu of a Bachelor's Degree. Some ... Identify and analyze iOS vulnerabilities * Develop mitigation strategies for discovered issues

Cymertek

iOS Vulnerability Engineer (Software)

Reston, VA ยท On-site

$145.90K/yr

Most contracts allow additional experience (4-5 years) in lieu of a Bachelor's Degree. Some ... Identify and analyze iOS vulnerabilities * Develop mitigation strategies for discovered issues

Alignerr

Vulnerability Management Analyst

Miami, FL ยท Remote

Type : Hourly Contract * Location : Remote * Commitment : 10-40 hours/week What You'll Do * Analyze vulnerability reports, CVEs, and exposure scenarios across infrastructure and application ...

Cymertek

iOS Vulnerability Engineer (Software)

Tysons, VA ยท On-site

$140.50K/yr

Most contracts allow additional experience (4-5 years) in lieu of a Bachelor's Degree. Some ... Identify and analyze iOS vulnerabilities * Develop mitigation strategies for discovered issues

Alignerr

Vulnerability Management Analyst

Chicago, IL ยท Remote

Type : Hourly Contract * Location : Remote * Commitment : 10-40 hours/week What You'll Do * Analyze vulnerability reports, CVEs, and exposure scenarios across infrastructure and applications

Alignerr

Hourly Contract * Location: Remote * Commitment: 10-40 hours/week What You'll Do * Analyze vulnerability reports, CVEs, and exposure scenarios across infrastructure and applications * Evaluate ...

next page

Showing results 1-20

People also search for

All JobsContract Vulnerability Analyst Jobs

Contract Vulnerability Analyst information

See salary details

$31K

$73.3K

$130K

How much do contract vulnerability analyst jobs pay per year?

As of May 28, 2026, the average yearly pay for contract vulnerability analyst in the United States is $73,261.00, according to ZipRecruiter salary data. Most workers in this role earn between $52,500.00 and $87,000.00 per year, depending on experience, location, and employer.

What are the key skills and qualifications needed to thrive as a Contract Vulnerability Analyst, and why are they important?

To thrive as a Contract Vulnerability Analyst, you need a strong background in cybersecurity principles, vulnerability assessment methodologies, and relevant certifications such as CEH or CompTIA Security+. Familiarity with vulnerability scanning tools like Nessus, Qualys, or OpenVAS, as well as experience with common operating systems and network protocols, is typically required. Analytical thinking, attention to detail, and strong communication skills help analysts effectively identify, prioritize, and report vulnerabilities to stakeholders. These skills are crucial for ensuring organizational security and compliance while minimizing risk in dynamic contract-based environments.

What are some common challenges faced by Contract Vulnerability Analysts, and how can they overcome them?

Contract Vulnerability Analysts often face challenges such as rapidly changing threat landscapes and the need to quickly adapt to new security vulnerabilities in client environments. They must balance multiple client projects and prioritize tasks based on risk and impact. Success in this role requires strong communication skills to clearly explain technical findings to non-technical stakeholders and collaborate with both internal security teams and client IT departments. Building efficient workflows, staying updated with the latest security tools, and participating in regular training can help analysts stay ahead of threats and deliver impactful results.

What is a Contract Vulnerability Analyst?

A Contract Vulnerability Analyst is a cybersecurity professional who is hired on a contractual basis to identify, assess, and report security vulnerabilities within an organization's systems, networks, or applications. Their main role is to help companies find and address security weaknesses before attackers can exploit them. They often use various tools and methodologies to conduct vulnerability assessments, penetration testing, and security audits. Contract Vulnerability Analysts typically work for a set period or on a specific project, providing expert guidance to enhance the organization's security posture.

What is the difference between Contract Vulnerability Analyst vs Security Analyst?

AspectContract Vulnerability AnalystSecurity Analyst
CertificationsCompTIA Security+, CEH, CISSP (preferred)CompTIA Security+, CISSP, CISA
Work EnvironmentContract-based, project-specific roles, often remote or on-siteFull-time, in-house or remote security teams within organizations
Industry UsageIT security firms, consulting companies, tech organizationsCorporate, government, financial institutions
Search & Comparison IntentFocus on vulnerability assessment, penetration testing, security gapsBroader security management, incident response, policy enforcement

The Contract Vulnerability Analyst primarily focuses on identifying and mitigating security vulnerabilities through assessments and testing, often working on a contractual basis. In contrast, a Security Analyst typically handles ongoing security monitoring, incident response, and policy implementation within an organization. While both roles require similar certifications and work in the cybersecurity field, their scope and employment structure differ significantly.

More about Contract Vulnerability Analyst jobs
What cities are hiring for Contract Vulnerability Analyst jobs? Cities with the most Contract Vulnerability Analyst job openings:
What are the most commonly searched types of Vulnerability Analyst jobs? The most popular types of Vulnerability Analyst jobs are:
What states have the most Contract Vulnerability Analyst jobs? States with the most job openings for Contract Vulnerability Analyst jobs include:
What job categories do people searching Contract Vulnerability Analyst jobs look for? The top searched job categories for Contract Vulnerability Analyst jobs are:
Contract Vulnerability Analyst jobs near you
Infographic showing various Contract Vulnerability Analyst job openings in the United States as of May 2026, with employment types broken down into 31% Full Time, 46% Part Time, 15% Contract, and 8% Nights. Highlights an 47% Physical, and 53% Remote job distribution, with an average salary of $73,261 per year, or $35.2 per hour.

Risk and Vulnerability Analyst II

SOSi

Washington, DC โ€ข On-site

Full-time

Posted 6 days ago

Job description

Company Description

Founded in 1989, SOSi is among the largest private, founder-owned technology and services integrators in the defense and government services industry. We deliver tailored solutions, tested leadership, and trusted results to enable national security missions worldwide.

Job Description

Overview
SOSi is seeking a Risk and Vulnerability Analyst II to support vulnerability assessment and risk analysis activities in alignment with our customer. This role is responsible for conducting vulnerability scanning and analysis, supporting remediation efforts, maintaining scan operations, and helping improve enterprise visibility into security weaknesses and cyber risk.
ย 

Responsibilities

ยทย  Perform vulnerability assessments and security scanning across operating systems, databases, web applications, and enterprise infrastructure

ยทย  Analyze vulnerabilities and support development of remediation recommendations

ยทย  Support cloud compliance scans and assessment activities

ยทย  Troubleshoot scan issues and support maintenance of vulnerability scanning tools, consoles, and configurations

ยทย  Support automated and scheduled scanning activities, including scan planning, execution, and reporting

ยทย  Support ad hoc or emergency vulnerability scanning in support of incident investigation and response activities

ยทย  Create and maintain scan reports, data feeds, scan policies, repositories, and user access/roles for assessment tools

ยทย  Support API discovery and scanning, and integration of assessment data into third-party tools

ยทย  Coordinate with cyber defense engineering and system teams to support tool operations, testing, and vulnerability management activities

Qualifications

ยทย  Experience:

  • Three (3) to five (5) years of security-related experience
  • Experience with operating system, database, and web application vulnerability scanning
  • Experience supporting cloud compliance scanning
  • Experience troubleshooting vulnerability scan tools and scan configurations
  • Experience with automation supporting vulnerability assessment operations
  • Experience supporting Information System Vulnerability Management (ISVM) scans and compliance activities
  • Experience with API discovery and security scanning

ยทย  Education:

  • Bachelorโ€™s Degree
  • Clearance/Suitability: Secret (eligible)

Additional Information

Work Environment

  • Normal office conditions with potential to perform duties in deployed locations.
  • Core hours of operation are Monday through Friday, 0600 โ€“ 1700.
  • May be requested to work evenings and weekends to meet program and contract needs.

Working at SOSi

All interested individuals will receive consideration and will not be discriminated against for any reason.