Overview This is aremote role in NC, AZ, and TX. We are seeking a highly skilled Cyber Security Analyst with a strong background in application security and vulnerability management. This role ...
Overview This is aremote role in NC, AZ, and TX. We are seeking a highly skilled Cyber Security Analyst with a strong background in application security and vulnerability management. This role ...
Overview This is aremote role in NC, AZ, and TX. We are seeking a highly skilled Cyber Security Analyst with a strong background in application security and vulnerability management. This role ...
Overview This is aremote role in NC, AZ, and TX. We are seeking a highly skilled Cyber Security Analyst with a strong background in application security and vulnerability management. This role ...
Overview This is aremote role in NC, AZ, and TX. We are seeking a highly skilled Cyber Security Analyst with a strong background in application security and vulnerability management. This role ...
Overview This is aremote role in NC, AZ, and TX. We are seeking a highly skilled Cyber Security Analyst with a strong background in application security and vulnerability management. This role ...
Overview This is aremote role in NC, AZ, and TX. We are seeking a highly skilled Cyber Security Analyst with a strong background in application security and vulnerability management. This role ...
Overview This is aremote role in NC, AZ, and TX. We are seeking a highly skilled Cyber Security Analyst with a strong background in application security and vulnerability management. This role ...
Overview This is aremote role in NC, AZ, and TX. We are seeking a highly skilled Cyber Security Analyst with a strong background in application security and vulnerability management. This role ...
Overview This is aremote role in NC, AZ, and TX. We are seeking a highly skilled Cyber Security Analyst with a strong background in application security and vulnerability management. This role ...
Should be able to collect feedback and analyze weak areas and present the same to management * Should be able to collect gaps in vulnerability management processes and provide optimization ...
Quick apply
Should be able to collect feedback and analyze weak areas and present the same to management * Should be able to collect gaps in vulnerability management processes and provide optimization ...
Senior Vulnerability Management Engineer
$111K - $152K/yr
Execute comprehensive vulnerability scans across various technological domains including network ... CSPM), Software Composition Analysis (SCA), and Static Application Security Testing (SAST)
Senior Vulnerability Management Engineer
$111K - $152K/yr
Execute comprehensive vulnerability scans across various technological domains including network ... CSPM), Software Composition Analysis (SCA), and Static Application Security Testing (SAST)
Senior Cyber Threat Hunter
Raleigh, NC · On-site
$130K - $196K/yr
Analyze vulnerability scan results, pen test reports, and threat intelligence to prioritize risk and drive remediation based on exploitability and business impact. * Develop and maintain security ...
Senior Cyber Threat Hunter
Raleigh, NC · On-site
$130K - $196K/yr
Analyze vulnerability scan results, pen test reports, and threat intelligence to prioritize risk and drive remediation based on exploitability and business impact. * Develop and maintain security ...
Senior Cyber Threat Hunter
Raleigh, NC · On-site
$130K - $196K/yr
Analyze vulnerability scan results, pen test reports, and threat intelligence to prioritize risk and drive remediation based on exploitability and business impact. * Develop and maintain security ...
Senior Cyber Threat Hunter
Raleigh, NC · On-site
$130K - $196K/yr
Analyze vulnerability scan results, pen test reports, and threat intelligence to prioritize risk and drive remediation based on exploitability and business impact. * Develop and maintain security ...
Senior Cyber Threat Hunter
$130K - $196K/yr
Analyze vulnerability scan results, pen test reports, and threat intelligence to prioritize risk and drive remediation based on exploitability and business impact. * Develop and maintain security ...
Senior Cyber Threat Hunter
$130K - $196K/yr
Analyze vulnerability scan results, pen test reports, and threat intelligence to prioritize risk and drive remediation based on exploitability and business impact. * Develop and maintain security ...
Cyber Security Analyst II
Raleigh, NC · On-site
Track and report vulnerability metrics, risk trends, and remediation progress Security Tools ... Strong analytical and problem-solving skills * Provide risk-based recommendations to stakeholders
Cyber Security Analyst II
Raleigh, NC · On-site
Track and report vulnerability metrics, risk trends, and remediation progress Security Tools ... Strong analytical and problem-solving skills * Provide risk-based recommendations to stakeholders
Cyber Security Analyst II
Raleigh, NC · On-site
Track and report vulnerability metrics, risk trends, and remediation progress Security Tools ... Strong analytical and problem-solving skills * Provide risk-based recommendations to stakeholders
Cyber Security Analyst II
Raleigh, NC · On-site
Track and report vulnerability metrics, risk trends, and remediation progress Security Tools ... Strong analytical and problem-solving skills * Provide risk-based recommendations to stakeholders
Senior Vulnerability Management Engineer
Raleigh, NC · On-site
$101K - $139K/yr
Execute comprehensive vulnerability scans across various technological domains including network ... Analysis (SCA), and Static Application Security Testing (SAST). * Provide actionable intelligence ...
Senior Vulnerability Management Engineer
Raleigh, NC · On-site
$101K - $139K/yr
Execute comprehensive vulnerability scans across various technological domains including network ... Analysis (SCA), and Static Application Security Testing (SAST). * Provide actionable intelligence ...
IT Security Operations Analyst
Butner, NC · On-site
Perform vulnerability assessment reviews and analyze vulnerability scan results to identify, prioritize, and mitigate security risks. * Investigate malware detections, assess potential impact to ...
IT Security Operations Analyst
Butner, NC · On-site
Perform vulnerability assessment reviews and analyze vulnerability scan results to identify, prioritize, and mitigate security risks. * Investigate malware detections, assess potential impact to ...
Perform vulnerability assessment reviews and analyze vulnerability scan results to identify, prioritize, and mitigate security risks. * Investigate malware detections, assess potential impact to ...
Perform vulnerability assessment reviews and analyze vulnerability scan results to identify, prioritize, and mitigate security risks. * Investigate malware detections, assess potential impact to ...
Executing vulnerability and patch management tasks across infrastructure, middleware, and ... Analyzing exposure data, asset criticality, exploitability, and attack paths to help prioritize ...
Executing vulnerability and patch management tasks across infrastructure, middleware, and ... Analyzing exposure data, asset criticality, exploitability, and attack paths to help prioritize ...
IT Security Operations Analyst
Butner, NC · On-site
Perform vulnerability assessment reviews and analyze vulnerability scan results to identify, prioritize, and mitigate security risks. * Investigate malware detections, assess potential impact to ...
Quick apply
IT Security Operations Analyst
Butner, NC · On-site
Perform vulnerability assessment reviews and analyze vulnerability scan results to identify, prioritize, and mitigate security risks. * Investigate malware detections, assess potential impact to ...
Senior Cyber Threat Hunter
Raleigh, NC · On-site
Analyze vulnerability scan results, pen test reports, and threat intelligence to prioritize risk and drive remediation based on exploitability and business impact. * Develop and maintain security ...
Senior Cyber Threat Hunter
Raleigh, NC · On-site
Analyze vulnerability scan results, pen test reports, and threat intelligence to prioritize risk and drive remediation based on exploitability and business impact. * Develop and maintain security ...
Senior Analyst, Cybersecurity Operations & Response
$140K - $155K/yr
... and threat and vulnerability management initiatives to help protect the Firm's systems ... to identify, analyze, and escalate potential security incidents. · Develop and distribute ...
Senior Analyst, Cybersecurity Operations & Response
$140K - $155K/yr
... and threat and vulnerability management initiatives to help protect the Firm's systems ... to identify, analyze, and escalate potential security incidents. · Develop and distribute ...
SOC Analyst II with Security Clearance
Morrisville, NC · On-site
$108K - $125K/yr
Use Tenable, defender, and AWS for vulnerability and configuration management. Qualifications for the SOC Analyst II Include: Must have secret Clearence * Proficient in Splunk, including but not ...
SOC Analyst II with Security Clearance
Morrisville, NC · On-site
$108K - $125K/yr
Use Tenable, defender, and AWS for vulnerability and configuration management. Qualifications for the SOC Analyst II Include: Must have secret Clearence * Proficient in Splunk, including but not ...
Vulnerability Analyst information
See Raleigh, NC salary details
$30.1K - $38.9K
11% of jobs
$38.9K - $47.6K
9% of jobs
$50.6K is the 25th percentile. Wages below this are outliers.
$47.6K - $56.4K
15% of jobs
$56.4K - $65.1K
15% of jobs
The median wage is $65.4K / yr.
$65.1K - $73.9K
18% of jobs
$80.2K is the 75th percentile. Wages above this are outliers.
$73.9K - $82.6K
11% of jobs
$82.6K - $91.4K
7% of jobs
$91.4K - $100.1K
5% of jobs
$100.1K - $108.9K
4% of jobs
$108.9K - $117.6K
2% of jobs
$117.6K - $126.4K
3% of jobs
$30.1K
$71.2K
$126.4K
How much do vulnerability analyst jobs pay per year?
What are the key skills and qualifications needed to thrive in the Vulnerability Analyst position, and why are they important?
To thrive as a Vulnerability Analyst, you need expertise in cybersecurity principles, risk assessment, and vulnerability management, often supported by a degree in information security or a related field. Familiarity with vulnerability scanning tools (such as Nessus, Qualys, or Rapid7), knowledge of operating systems, and certifications like CompTIA Security+ or CEH are commonly required. Strong analytical thinking, attention to detail, and effective communication skills set top candidates apart. These abilities are crucial for accurately identifying system weaknesses and effectively advising teams on how to remediate security threats.
What are the typical day-to-day responsibilities of a Vulnerability Analyst?
As a Vulnerability Analyst, your daily tasks often include running vulnerability scans, analyzing findings, prioritizing risks based on severity, and working with IT or development teams to coordinate remediation efforts. You will also document your findings, prepare reports for stakeholders, and stay informed about the latest security threats and exploits. Collaboration with other security professionals and IT staff is common, as resolving vulnerabilities often requires cross-functional teamwork. This role requires a balance of technical analysis and effective communication to ensure organizational security posture is continuously improved.
What is a Vulnerability Analyst job?
A Vulnerability Analyst is a cybersecurity professional responsible for identifying, assessing, and mitigating security weaknesses in an organization's systems, networks, and applications. They use tools like vulnerability scanners, penetration testing frameworks, and security assessments to identify potential threats. Their role includes analyzing vulnerabilities, prioritizing risks, and working with IT and security teams to implement necessary patches or fixes. They also stay up to date with emerging threats and ensure compliance with security policies and regulations.
Cyber Security Analyst III - App Security & Vulnerability (Remote)
Raleigh, NC • On-site
Other
Posted 6 days ago
First Citizens Bank rating
7.5
Based on 104 frontline employees who took The Breakroom Quiz
89th of 144 rated banks
Job description
This is aremote role in NC, AZ, and TX.
We are seeking a highly skilled Cyber Security Analyst with a strong background in application security and vulnerability management. This role focuses on identifying, analyzing, and mitigating security risks across software development pipelines using SAST, DAST, and SCA tools. The ideal candidate combines hands-on technical expertise with knowledge of modern security practices and emerging technologies, including AI/ML.
Responsibilities
Application Security & Code Analysis
- Perform static (SAST), dynamic (DAST), and software composition analysis (SCA) to identify vulnerabilities in applications and third-party components
- Analyze scan results, triage findings, and prioritize remediation efforts based on risk
- Partner with development teams to remediate vulnerabilities and improve secure coding practices
Vulnerability Management
- Conduct regular security assessments and vulnerability scans across applications and environments
- Validate and reproduce vulnerabilities, including false positive elimination
- Track and report vulnerability metrics, risk trends, and remediation progress
Security Tools & Automation
- Configure, deploy, and maintain security scanning tools (e.g., Checkmarx, Veracode, Fortify, Snyk, Burp Suite, OWASP ZAP)
- Automate security testing processes using scripting or APIs
- Improve scanning efficiency and coverage through tuning and optimization
Qualifications
Bachelor's Degree and 6 years of experience in Information Security OR High School Diploma or GED and 10 years of experience in Information Security
Required Qualifications
- Hands-on experience with:
- SAST, DAST, and SCA tools
- Web application security testing (OWASP Top 10, API security)
- Strong understanding of:
- Secure software development lifecycle (SDLC / DevSecOps)
- Common vulnerabilities (e.g., injection, XSS, authentication flaws)
- Proficiency in one or more programming/scripting languages (e.g., Python, Java, JavaScript, Bash)
- Experience interpreting and prioritizing scan results and remediation plans
Preferred Qualifications
- Experience integrating security tools into CI/CD pipelines (e.g., Jenkins, GitHub Actions, Azure DevOps)
- Familiarity of container and cloud security (AWS, Azure, Google Cloud Platform)
- Familiarity with AI/ML concepts and security implications
- Industry certifications such as:
- CEH, Security+, SSCP, GIAC or comparable.
Key Skills
- Strong analytical and problem-solving skills
- Provide risk-based recommendations to stakeholders
- Ability to communicate technical findings to both technical and non-technical stakeholders
- Experience working cross-functionally with development and engineering teams
- Attention to detail with a risk-based security mindset
Nice-to-Have Experience
- API security testing tools (Postman, SoapUI)
- AI-assisted security tooling (e.g., anomaly detection, code analysis assistants)
- Knowledge of regulatory frameworks (NIST, ISO 27001, SOC 2)
- AI/ML & Emerging Technologies
- Leverage AI/ML-based security tools for enhanced detection and analysis
- Assess risks related to AI/ML models (e.g., data poisoning, model inversion, adversarial attacks)
- Participate in securing AI-driven applications and data pipelines
- Threat Analysis & Risk Management
- Assess potential threats and attack vectors relevant to applications and APIs
- Apply threat modeling techniques (e.g., STRIDE) during development lifecycle
Benefits are an integral part of total rewards and First Citizens Bank is committed to providing a competitive, thoughtfully designed and quality benefits program to meet the needs of our associates. More information can be found at
$descr2
$descr3
What First Citizens Bank employees say
Pay
Benefits
Hours and flexibility
Workplace
Get the full story on Breakroom