1

Vulnerability Analyst Jobs in Raleigh, NC (NOW HIRING)

Senior Vulnerability Management Engineer

Raleigh, NC · On-site

$101K - $139K/yr

Execute comprehensive vulnerability scans across various technological domains including network ... Analysis (SCA), and Static Application Security Testing (SAST). * Provide actionable intelligence ...

Analyze vulnerability scan results, pen test reports, and threat intelligence to prioritize risk and drive remediation based on exploitability and business impact. * Develop and maintain security ...

next page

Showing results 1-20

Vulnerability Analyst information

See Raleigh, NC salary details

$30.1K

$71.2K

$126.4K

How much do vulnerability analyst jobs pay per year?

As of Jul 2, 2026, the average yearly pay for vulnerability analyst in Raleigh, NC is $71,212.00, according to ZipRecruiter salary data. Most workers in this role earn between $51,000.00 and $84,600.00 per year, depending on experience, location, and employer.

What are the key skills and qualifications needed to thrive in the Vulnerability Analyst position, and why are they important?

To thrive as a Vulnerability Analyst, you need expertise in cybersecurity principles, risk assessment, and vulnerability management, often supported by a degree in information security or a related field. Familiarity with vulnerability scanning tools (such as Nessus, Qualys, or Rapid7), knowledge of operating systems, and certifications like CompTIA Security+ or CEH are commonly required. Strong analytical thinking, attention to detail, and effective communication skills set top candidates apart. These abilities are crucial for accurately identifying system weaknesses and effectively advising teams on how to remediate security threats.

What are the typical day-to-day responsibilities of a Vulnerability Analyst?

As a Vulnerability Analyst, your daily tasks often include running vulnerability scans, analyzing findings, prioritizing risks based on severity, and working with IT or development teams to coordinate remediation efforts. You will also document your findings, prepare reports for stakeholders, and stay informed about the latest security threats and exploits. Collaboration with other security professionals and IT staff is common, as resolving vulnerabilities often requires cross-functional teamwork. This role requires a balance of technical analysis and effective communication to ensure organizational security posture is continuously improved.

What is a Vulnerability Analyst job?

A Vulnerability Analyst is a cybersecurity professional responsible for identifying, assessing, and mitigating security weaknesses in an organization's systems, networks, and applications. They use tools like vulnerability scanners, penetration testing frameworks, and security assessments to identify potential threats. Their role includes analyzing vulnerabilities, prioritizing risks, and working with IT and security teams to implement necessary patches or fixes. They also stay up to date with emerging threats and ensure compliance with security policies and regulations.

What are the most commonly searched types of Vulnerability Analyst jobs in Raleigh, NC? The most popular types of Vulnerability Analyst jobs in Raleigh, NC are:
What are popular job titles related to Vulnerability Analyst jobs in Raleigh, NC? For Vulnerability Analyst jobs in Raleigh, NC, the most frequently searched job titles are:
What job categories do people searching Vulnerability Analyst jobs in Raleigh, NC look for? The top searched job categories for Vulnerability Analyst jobs in Raleigh, NC are:
What cities near Raleigh, NC are hiring for Vulnerability Analyst jobs? Cities near Raleigh, NC with the most Vulnerability Analyst job openings:
Cyber Security Analyst III - App Security & Vulnerability (Remote)

Cyber Security Analyst III - App Security & Vulnerability (Remote)

First-Citizens Bank & Trust Company

Raleigh, NC • On-site

Other

Posted 6 days ago


First Citizens Bank rating

7.5

Company rating: 7.5 out of 10

Based on 104 frontline employees who took The Breakroom Quiz

89th of 144 rated banks


Job description

Overview
This is aremote role in NC, AZ, and TX.
We are seeking a highly skilled Cyber Security Analyst with a strong background in application security and vulnerability management. This role focuses on identifying, analyzing, and mitigating security risks across software development pipelines using SAST, DAST, and SCA tools. The ideal candidate combines hands-on technical expertise with knowledge of modern security practices and emerging technologies, including AI/ML.
Responsibilities
Application Security & Code Analysis
  • Perform static (SAST), dynamic (DAST), and software composition analysis (SCA) to identify vulnerabilities in applications and third-party components
  • Analyze scan results, triage findings, and prioritize remediation efforts based on risk
  • Partner with development teams to remediate vulnerabilities and improve secure coding practices

Vulnerability Management
  • Conduct regular security assessments and vulnerability scans across applications and environments
  • Validate and reproduce vulnerabilities, including false positive elimination
  • Track and report vulnerability metrics, risk trends, and remediation progress

Security Tools & Automation
  • Configure, deploy, and maintain security scanning tools (e.g., Checkmarx, Veracode, Fortify, Snyk, Burp Suite, OWASP ZAP)
  • Automate security testing processes using scripting or APIs
  • Improve scanning efficiency and coverage through tuning and optimization

Qualifications
Bachelor's Degree and 6 years of experience in Information Security OR High School Diploma or GED and 10 years of experience in Information Security
Required Qualifications
  • Hands-on experience with:
    • SAST, DAST, and SCA tools
    • Web application security testing (OWASP Top 10, API security)
  • Strong understanding of:
    • Secure software development lifecycle (SDLC / DevSecOps)
    • Common vulnerabilities (e.g., injection, XSS, authentication flaws)
  • Proficiency in one or more programming/scripting languages (e.g., Python, Java, JavaScript, Bash)
  • Experience interpreting and prioritizing scan results and remediation plans

Preferred Qualifications
  • Experience integrating security tools into CI/CD pipelines (e.g., Jenkins, GitHub Actions, Azure DevOps)
  • Familiarity of container and cloud security (AWS, Azure, Google Cloud Platform)
  • Familiarity with AI/ML concepts and security implications
  • Industry certifications such as:
    • CEH, Security+, SSCP, GIAC or comparable.

Key Skills
  • Strong analytical and problem-solving skills
  • Provide risk-based recommendations to stakeholders
  • Ability to communicate technical findings to both technical and non-technical stakeholders
  • Experience working cross-functionally with development and engineering teams
  • Attention to detail with a risk-based security mindset

Nice-to-Have Experience
  • API security testing tools (Postman, SoapUI)
  • AI-assisted security tooling (e.g., anomaly detection, code analysis assistants)
  • Knowledge of regulatory frameworks (NIST, ISO 27001, SOC 2)
  • AI/ML & Emerging Technologies
    • Leverage AI/ML-based security tools for enhanced detection and analysis
    • Assess risks related to AI/ML models (e.g., data poisoning, model inversion, adversarial attacks)
    • Participate in securing AI-driven applications and data pipelines
  • Threat Analysis & Risk Management
    • Assess potential threats and attack vectors relevant to applications and APIs
    • Apply threat modeling techniques (e.g., STRIDE) during development lifecycle

Benefits are an integral part of total rewards and First Citizens Bank is committed to providing a competitive, thoughtfully designed and quality benefits program to meet the needs of our associates. More information can be found at
$descr2
$descr3

What First Citizens Bank employees say

Pay

Benefits

Hours and flexibility

Workplace

Get the full story on Breakroom