1

Tenable Jobs in Virginia (NOW HIRING)

We are seeking a Vulnerability Management Analyst (Tenable/Nessus & Metrics ) to support vulnerability tracking, remediation coordination, and security metrics reporting in a federal technology ...

Required Qualifications - 6-9 years of experience customizing US-DOD STIGs, CIS Benchmarks, or similar guides. - Experience with customizing compliance verification tools like CIS-CAT and Tenable ...

Analyze and document critical vulnerabilities identified in Tenable plugins across unique hosts, providing detailed reports to the Information System Security Officer (ISSO) as required. Compile and ...

Tenable * Qualys * MS Office * Experience with CVE * Experience with Vulnerabilty Management Top 2 Soft Skills: * Great written and verbal communication skills * Ability to work with all levels of ...

Administer and maintain scanning platforms such as Tenable.SC, Qualys and/or application-based scanners, which may include activities such as scan policies, asset groups, credentials scanning, and ...

Administer and maintain scanning platforms such as Tenable.SC, Qualys and/or application-based scanners, which may include activities such as scan policies, asset groups, credentials scanning, and ...

Administer and maintain scanning platforms such as Tenable.SC, Qualys and/or application-based scanners, which may include activities such as scan policies, asset groups, credentials scanning, and ...

Conduct vulnerability scans using ACAS (Tenable/Nessus), STIG Viewer, and related DoD-approved assessment tools. * Categorize and analyze vulnerabilities in accordance with NIST SP 800-53, DISA STIGs ...

Conduct vulnerability scans using ACAS (Tenable/Nessus), STIG Viewer, and related DoD-approved assessment tools. * Categorize and analyze vulnerabilities in accordance with NIST SP 800-53, DISA STIGs ...

Sr. Infrastructure Engineer

Richmond, VA · On-site

$107K - $146K/yr

The candidate should be familiar with security tools such as Tenable and have experience with SCCM and automated patch management. Proficiency in server security configurations, including end-point ...

next page

Showing results 1-20

Tenable information

See Virginia salary details

$16K

$118.7K

$171.2K

How much do tenable jobs pay per year?

As of Jul 17, 2026, the average yearly pay for tenable in Virginia is $118,714.00, according to ZipRecruiter salary data. Most workers in this role earn between $91,417.00 and $141,503.00 per year, depending on experience, location, and employer.

What are the key skills and qualifications needed to thrive in the Tenable position, and why are they important?

To thrive as a Tenable Security Engineer, you need a strong background in cybersecurity, vulnerability assessment, and network protocols, usually supported by a degree in computer science or a related field. Familiarity with Tenable products (such as Nessus or Tenable.io), security frameworks, and relevant certifications like CISSP or CEH is often required. Superior problem-solving abilities, analytical thinking, and effective communication skills help you excel when working with clients and technical teams. These skills ensure accurate threat identification, collaboration on mitigation strategies, and successful implementation of security solutions.

What is a Tenable job?

A Tenable job typically refers to a position at Tenable, a cybersecurity company specializing in vulnerability management. Tenable offers various roles in engineering, sales, security research, and customer support to help organizations identify and mitigate security risks. Employees at Tenable work on cutting-edge security solutions, including Nessus and Tenable.io, to protect digital assets. The company values innovation, collaboration, and expertise in cybersecurity.

What are the typical responsibilities of a Tenable Security Engineer within a team?

As a Tenable Security Engineer, you will regularly conduct vulnerability assessments, analyze security risks, and implement remediation plans using Tenable's suite of tools. You will often collaborate closely with IT teams and other security professionals to interpret scan results and provide actionable recommendations. Additionally, you may be responsible for educating staff on security best practices and ensuring compliance with organizational policies. This role typically requires balancing independent work on technical tasks with group problem-solving and communication across departments.

What are the most commonly searched types of Tenable jobs in Virginia? The most popular types of Tenable jobs in Virginia are:
Infographic showing various Tenable job openings in Virginia as of July 2026, with employment types broken down into 86% Full Time, 7% Part Time, and 7% Contract. Highlights an 79% In-person, 14% Hybrid, and 7% Remote job distribution, with an average salary of $118,714 per year, or $57.1 per hour.
Vulnerability Management Analyst

Vulnerability Management Analyst

DANE LLC

Chantilly, VA • On-site

$70K - $85K/yr

Full-time

Medical, Dental, Vision, Life, Retirement, PTO

Re-posted 3 days ago


Job description

Benefits:
  • Life/STD/LTD
  • FSA/DCA
  • 401(k)
  • Employee discounts
  • Paid time off
  • 401(k) matching
  • Dental insurance
  • Health insurance
  • Tuition assistance
  • Vision insurance

Description
Looking for a place that invests in you from day one? At DANE, we offer aggressive PTO, strong benefits, and ongoing learning opportunities, backed by a culture that values and supports our team.
We are seeking a Vulnerability Management Analyst (Tenable/Nessus & Metrics) to support vulnerability tracking, remediation coordination, and security metrics reporting in a federal technology environment. This is a junior-level role (1–3 years of experience) focused on execution and coordination, working hands-on with Tenable/Nessus, iPost, Power BI, Excel, and ticketing systems to ensure that vulnerability data is accurate, actionable, and reportable.
Details:
Location: Hybrid - Onsite, Arlington, VA,1 day/week and as needed
Job Type: Full Time
Education: Minimum of a Bachelor’s degree in computer science or Equivalent
Experience: Minimum 1 year of relevant experience
Clearance: Must hold an Active DoD Secret Clearance or higher
Responsibilities
  • Run authorized Tenable/Nessus scans using credentialed scan profiles and review exports to identify CVEs, plugin findings, KEV status, EOL/EOS software risks, and affected assets.
  • Validate findings as true or false positives, track vulnerability age using first-seen/last-seen dates, and escalate unresolved findings to senior security staff or system owners.
  • Support the full vulnerability lifecycle from intake and triage through ownership assignment, remediation tracking, retest/rescan validation, and closure evidence collection.
  • Monitor KEV and Critical/High findings against federal remediation timelines (e.g., BOD 22-01) and flag aging, stale, or blocked findings for escalation.
  • Build and maintain Power BI dashboards and Excel reports covering vulnerability posture, patch compliance, KEV status, finding aging, and ownership tracking using Power Query, slicers, and basic DAX measures.
  • Produce recurring deliverables, including Critical/High aging reports, Tenable/iPost reconciliation summaries, EOL/EOS tracking, and executive snapshots; document KPI definitions and data sources.
  • Reconcile vulnerability data across Tenable/Nessus, iPost, ServiceNow/CA ServiceDesk, Jira, SharePoint, POA&M trackers, and Excel exports to identify mismatches and coverage gaps.
  • Coordinate with security, development, infrastructure, database, and cloud teams and ISSO stakeholders to drive remediation through closure.
Requirements

  • 1–3 years of experience in cybersecurity operations, vulnerability management, SOC, cyber GRC, IT operations, or application security support; working knowledge of CVE, CVSS, KEV, false positives, POA&M tracking, risk acceptance, and vulnerability aging.
  • Hands-on Tenable/Nessus experience: executing credentialed scans, analyzing plugin output and CVE findings, validating true/false positives, and building dashboards, saved filters, and exports for KEV, Critical/High, EOL/EOS, and aging tracking.
  • Intermediate Power BI (Power Query, data modeling, DAX, slicers) and strong Excel skills (pivot tables, VLOOKUP/XLOOKUP, conditional formatting, deduplication) for vulnerability reporting and KPI tracking.
  • Experience with iPost, ServiceNow, CA ServiceDesk, Jira, or SharePoint for remediation tracking; ability to reconcile data across multiple tools, identify mismatches, and maintain accurate ownership and evidence records.
  • Familiarity with EOL/EOS software tracking, patch compliance, remediation exceptions, risk acceptance documentation, and closure evidence collection.
  • Strong attention to detail, comfort working with large and messy datasets, and clear communication skills for translating technical findings into plain-language updates for leadership and non-technical stakeholders.
Preferred Qualifications

  • Experience supporting federal cybersecurity programs or regulated environments; familiarity with NIST SP 800-53, RMF, A&A, ATO, POA&M lifecycle management, CISA BOD 22-01, and FedRAMP vulnerability requirements.
  • Exposure to DevSecOps and application security tooling: SAST, DAST, SCA, container image scanning, secrets scanning, or Software Bill of Materials (SBOM) analysis.
  • Basic understanding of enterprise patching for Windows Server, Windows workstations, .NET Framework, Java JRE, SQL Server, and endpoint agents; familiarity with Splunk or other SIEM platforms.
  • Experience developing SOPs, RACI matrices, or workflow documentation in a security or IT operations context.
  • Relevant certifications such as CompTIA Security+, CySA+, CEH, or equivalent entry-to-mid-level cybersecurity credentials.

DANE LLC is an equal-opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran.

Flexible work from home options available.