Arlington, VA · On-site
$131K - $237K/yr
Leidos has an immediate need for an experienced Vulnerability Assessor for a new customer on a highly-visible and strategic Cybersecurity Task Order. The VAT Analyst will need to be a self-starter ...
Arlington, VA · On-site
$131K - $237K/yr
Leidos has an immediate need for an experienced Vulnerability Assessor for a new customer on a highly-visible and strategic Cybersecurity Task Order. The VAT Analyst will need to be a self-starter ...
The principal level System Vulnerability Analyst shall possess the following capabilities: Candidate must have relevant experience in vulnerability analysis, penetration testing, and/or computer ...
The principal level System Vulnerability Analyst shall possess the following capabilities: Candidate must have relevant experience in vulnerability analysis, penetration testing, and/or computer ...
The principal level System Vulnerability Analyst shall possess the following capabilities: Candidate must have relevant experience in vulnerability analysis, penetration testing, and/or computer ...
The principal level System Vulnerability Analyst shall possess the following capabilities: Candidate must have relevant experience in vulnerability analysis, penetration testing, and/or computer ...
$90K - $100K/yr
Risk/Vulnerability Analyst I Rothe Development, Inc. (RDI) is seeking a Cybersecurity Risk Vulnerability Analyst I to join our security control assessment, vulnerability assessment, software ...
$90K - $100K/yr
Risk/Vulnerability Analyst I Rothe Development, Inc. (RDI) is seeking a Cybersecurity Risk Vulnerability Analyst I to join our security control assessment, vulnerability assessment, software ...
Cybersecurity Vulnerability Analyst Location: Linthicum Heights, MD (full-time - on-site) Duration: 06 - 12 Months with possible extension Pay Rate: Market Rate Summary: This Cybersecurity ...
Cybersecurity Vulnerability Analyst Location: Linthicum Heights, MD (full-time - on-site) Duration: 06 - 12 Months with possible extension Pay Rate: Market Rate Summary: This Cybersecurity ...
Annapolis, MD · On-site
$119K - $164K/yr
We are looking for a System Vulnerability Analyst to identify vulnerabilities of and attacks to the design and operation of a system (H/W, S/W, personnel, procedures, logistics, and physical security ...
Annapolis, MD · On-site
$119K - $164K/yr
We are looking for a System Vulnerability Analyst to identify vulnerabilities of and attacks to the design and operation of a system (H/W, S/W, personnel, procedures, logistics, and physical security ...
Wahiawa, HI · On-site
$136K - $183K/yr
We are looking for a System Vulnerability Analyst to identify vulnerabilities of and attacks to the design and operation of a system (H/W, S/W, personnel, procedures, logistics, and physical security ...
Wahiawa, HI · On-site
$136K - $183K/yr
We are looking for a System Vulnerability Analyst to identify vulnerabilities of and attacks to the design and operation of a system (H/W, S/W, personnel, procedures, logistics, and physical security ...
Senior Windows Vulnerability Analyst Location: Fort Meade, MD 20755 Clearance Level: Active Secret Clearance Job Type: Full-Time Must be U.S. Citizen PD Inc International is seeking an experienced ...
Quick apply
Senior Windows Vulnerability Analyst Location: Fort Meade, MD 20755 Clearance Level: Active Secret Clearance Job Type: Full-Time Must be U.S. Citizen PD Inc International is seeking an experienced ...
Annapolis, MD · On-site
$122K - $167K/yr
We are looking for a System Vulnerability Analyst to identify vulnerabilities of and attacks to the design and operation of a system (H/W, S/W, personnel, procedures, logistics, and physical security ...
Annapolis, MD · On-site
$122K - $167K/yr
We are looking for a System Vulnerability Analyst to identify vulnerabilities of and attacks to the design and operation of a system (H/W, S/W, personnel, procedures, logistics, and physical security ...
Annapolis, MD · On-site
$187K - $241K/yr
We are looking for a System Vulnerability Analyst to identify vulnerabilities of and attacks to the design and operation of a system (H/W, S/W, personnel, procedures, logistics, and physical security ...
Annapolis, MD · On-site
$187K - $241K/yr
We are looking for a System Vulnerability Analyst to identify vulnerabilities of and attacks to the design and operation of a system (H/W, S/W, personnel, procedures, logistics, and physical security ...
Annapolis, MD · On-site
$182K - $234K/yr
We are looking for a System Vulnerability Analyst to identify vulnerabilities of and attacks to the design and operation of a system (H/W, S/W, personnel, procedures, logistics, and physical security ...
Annapolis, MD · On-site
$182K - $234K/yr
We are looking for a System Vulnerability Analyst to identify vulnerabilities of and attacks to the design and operation of a system (H/W, S/W, personnel, procedures, logistics, and physical security ...
Annapolis, MD · On-site
$187K - $241K/yr
The Level 4 System Vulnerability Analyst shall possess the following capabilities: * Experience with computer or information systems design/development, programming, information/cyber/network ...
Annapolis, MD · On-site
$187K - $241K/yr
The Level 4 System Vulnerability Analyst shall possess the following capabilities: * Experience with computer or information systems design/development, programming, information/cyber/network ...
Annapolis, MD · On-site
$153K - $202K/yr
We are looking for a System Vulnerability Analyst to identify vulnerabilities of and attacks to the design and operation of a system (H/W, S/W, personnel, procedures, logistics, and physical security ...
Annapolis, MD · On-site
$153K - $202K/yr
We are looking for a System Vulnerability Analyst to identify vulnerabilities of and attacks to the design and operation of a system (H/W, S/W, personnel, procedures, logistics, and physical security ...
Annapolis, MD · On-site
$122K - $167K/yr
We are looking for a System Vulnerability Analyst to identify vulnerabilities of and attacks to the design and operation of a system (H/W, S/W, personnel, procedures, logistics, and physical security ...
Annapolis, MD · On-site
$122K - $167K/yr
We are looking for a System Vulnerability Analyst to identify vulnerabilities of and attacks to the design and operation of a system (H/W, S/W, personnel, procedures, logistics, and physical security ...
Overview SOSi is seeking a Risk and Vulnerability Analyst II to support vulnerability assessment and risk analysis activities in alignment with our customer. This role is responsible for conducting ...
Overview SOSi is seeking a Risk and Vulnerability Analyst II to support vulnerability assessment and risk analysis activities in alignment with our customer. This role is responsible for conducting ...
About the Job The Cybersecurity Vulnerability Analyst will support the DC3 program and will be primarily responsible for reviewing and vetting security vulnerability reports submitted to the DoD VDP ...
About the Job The Cybersecurity Vulnerability Analyst will support the DC3 program and will be primarily responsible for reviewing and vetting security vulnerability reports submitted to the DoD VDP ...
Cybersecurity Vulnerability Analyst Linthicum Heights, MD Support mission-critical vulnerability analysis operations for the United States Space Force by reviewing and vetting vulnerability reports ...
Cybersecurity Vulnerability Analyst Linthicum Heights, MD Support mission-critical vulnerability analysis operations for the United States Space Force by reviewing and vetting vulnerability reports ...
Overview SOSi is seeking a Risk and Vulnerability Analyst II to support vulnerability assessment and risk analysis activities in alignment with our customer. This role is responsible for conducting ...
Quick apply
Overview SOSi is seeking a Risk and Vulnerability Analyst II to support vulnerability assessment and risk analysis activities in alignment with our customer. This role is responsible for conducting ...
Overview SOSi is seeking a Risk and Vulnerability Analyst II to support vulnerability assessment and risk analysis activities in alignment with our customer. This role is responsible for conducting ...
Overview SOSi is seeking a Risk and Vulnerability Analyst II to support vulnerability assessment and risk analysis activities in alignment with our customer. This role is responsible for conducting ...
About The Role This Cybersecurity Vulnerability Analyst supports a Vulnerability Disclosure Program (VDP) within the federal government and is responsible for reviewing and vetting security ...
About The Role This Cybersecurity Vulnerability Analyst supports a Vulnerability Disclosure Program (VDP) within the federal government and is responsible for reviewing and vetting security ...
$31K - $40K
11% of jobs
$40K - $49K
9% of jobs
$52.1K is the 25th percentile. Wages below this are outliers.
$49K - $58K
15% of jobs
$58K - $67K
15% of jobs
The median wage is $67.3K / yr.
$67K - $76K
18% of jobs
$82.5K is the 75th percentile. Wages above this are outliers.
$76K - $85K
11% of jobs
$85K - $94K
7% of jobs
$94K - $103K
5% of jobs
$103K - $112K
4% of jobs
$112K - $121K
2% of jobs
$121K - $130K
3% of jobs
$31K
$73.3K
$130K
To thrive as a Vulnerability Analyst, you need expertise in cybersecurity principles, risk assessment, and vulnerability management, often supported by a degree in information security or a related field. Familiarity with vulnerability scanning tools (such as Nessus, Qualys, or Rapid7), knowledge of operating systems, and certifications like CompTIA Security+ or CEH are commonly required. Strong analytical thinking, attention to detail, and effective communication skills set top candidates apart. These abilities are crucial for accurately identifying system weaknesses and effectively advising teams on how to remediate security threats.
As a Vulnerability Analyst, your daily tasks often include running vulnerability scans, analyzing findings, prioritizing risks based on severity, and working with IT or development teams to coordinate remediation efforts. You will also document your findings, prepare reports for stakeholders, and stay informed about the latest security threats and exploits. Collaboration with other security professionals and IT staff is common, as resolving vulnerabilities often requires cross-functional teamwork. This role requires a balance of technical analysis and effective communication to ensure organizational security posture is continuously improved.
A Vulnerability Analyst is a cybersecurity professional responsible for identifying, assessing, and mitigating security weaknesses in an organization's systems, networks, and applications. They use tools like vulnerability scanners, penetration testing frameworks, and security assessments to identify potential threats. Their role includes analyzing vulnerabilities, prioritizing risks, and working with IT and security teams to implement necessary patches or fixes. They also stay up to date with emerging threats and ensure compliance with security policies and regulations.
$131K - $237K/yr
Full-time
Posted 11 days ago
8.4
Based on 146 frontline employees who took The Breakroom Quiz
56th of 425 rated business services
Leidos has an immediate need for an experienced Vulnerability Assessor for a new customer on a highly-visible and strategic Cybersecurity Task Order. The VAT Analyst will need to be a self-starter with excellent analytical and problem-solving skills, flexibility, good judgment, and the ability to work within a team to stand up and mature the cybersecurity capabilities of our customer.
Primary Responsibilities:
Develop and execute vulnerability/compliance scans through Nessus SC interface, determine whether a completed scan has provided valid results, and generate a variety of reports to meet customer needs and expectations
Coordinating and collaborating with operations teams to identify solutions for vulnerability mitigation.
Continuously research emerging threats to the environment in order to disseminate the information to all stakeholders, immediately assess the known environment for presence of the vulnerability, and work with the SOC and enterprise networking teams to proactively block exploitation within the customer environment.
Perform enterprise-wide network scans, agent scans, including credentialed scans of Linux, Windows, and Network devices.
Configure and maintain scan templates based on asset types, repository, credentials, etc. in support of continuous scanning requirements for various FISMA systems
Perform security compliance and vulnerability assessments, specifically developing and applying STIG or CIS baselines for various operating systems, including Windows or RHEL and CentOS
The candidate must possess strong communications skills and the demonstrated ability to convey technical concepts to non-technical audiences
Maintain up-to-date knowledge of the customer and its services
Maintain, optimize, and troubleshoot scan policies and repositories.
Manage scan policies for multiple FISMA systems
Perform vulnerability analysis from scan results and prioritize vulnerabilities and findings for remediation
Coordinate with other program staff, FISMA system ISSOs, and system owners to explain findings, provide recommendations on mitigations, and advocate for mitigation of vulnerabilities
Conduct scheduled and ad-hoc or emergency vulnerability/compliance scanning to support targeted incident investigation, escalation, and emergency response to security events in accordance with documented procedures
Author and maintain SOPs and runbooks
Basic Qualifications
BS degree in Science, Technology, Engineering, Math or related field and 12-15 years of prior relevant experience with a focus on cybersecurity. Additional experience and/or cyber certifications may be considered in lieu of a degree.
At least 8 years of direct experience in vulnerability assessment/management.
Familiar with the management, operational, and technical aspects of IT Security in a complex environment.
Experience working with industry-standard cybersecurity methodologies and processes
Advanced knowledge of TCP/IP protocols
Experience configuring and implementing various technical security solutions,
Substantial experience managing vulnerability/compliance scans using Tenable/Nessus products
Possess at least one of the following certifications:
ISC2: CISSP
EC Council: CEH
CompTIA: Security+
Department of Homeland Security (DHS) Entry on Duty (EOD) is required to support this program
Preferred Qualifications
Previous experience working in a DHS or other federal government agency SOC/NOC/NOSC environment
Familiarity or experience in Intelligence Driven Defense, Cyber Kill Chain methodology, and/or MITRE ATT&CK framework.
If you're looking for comfort, keep scrolling. At Leidos, we outthink, outbuild, and outpace the status quo - because the mission demands it. We're not hiring followers. We're recruiting the ones who disrupt, provoke, and refuse to fail. Step 10 is ancient history. We're already at step 30 - and moving faster than anyone else dares.
Original Posting:May 28, 2026For U.S. Positions: While subject to change based on business needs, Leidos reasonably anticipates that this job requisition will remain open for at least 3 days with an anticipated close date of no earlier than 3 days after the original posting date as listed above.
The Leidos pay range for this job level is a general guideline onlyand not a guarantee of compensation or salary. Additional factors considered in extending an offer include (but are not limited to) responsibilities of the job, education, experience, knowledge, skills, and abilities, as well as internal equity, alignment with market data, applicable bargaining agreement (if any), or other law.
Sourced by ZipRecruiter
At Leidos, we deliver innovative solutions through the efforts of our diverse and talented people who are dedicated to our customers' success. We empower our teams, contribute to our communities, and operate sustainable practices. Everything we do is built on a commitment to do the right thing for our customers, our people, and our community.
It services
10,000+ Employees
Reston, VA, US
