Guidehouse is seeking a seasoned Vulnerability Management Subject Matter Expert (SME) to serve as a trusted advisor to federal clients. The Associate Director focuses on strategic guidance, cross ...
Guidehouse is seeking a seasoned Vulnerability Management Subject Matter Expert (SME) to serve as a trusted advisor to federal clients. The Associate Director focuses on strategic guidance, cross ...
Guidehouse is seeking a seasoned Vulnerability Management Subject Matter Expert (SME) to serve as a trusted advisor to federal clients. The Associate Director focuses on strategic guidance ...
Guidehouse is seeking a seasoned Vulnerability Management Subject Matter Expert (SME) to serve as a trusted advisor to federal clients. The Associate Director focuses on strategic guidance ...
Full-Time/Part-Time Full-Time Description RiVidium is seeking a Vulnerability Management Analyst to support our planned MODES III team supporting Military Community and Family Policy (MC&FP). This ...
Full-Time/Part-Time Full-Time Description RiVidium is seeking a Vulnerability Management Analyst to support our planned MODES III team supporting Military Community and Family Policy (MC&FP). This ...
The ideal candidate will have deep expertise with traditional vulnerability management practices, activities, and technologies. The ideal candidate will also have experience working with a variety of ...
The ideal candidate will have deep expertise with traditional vulnerability management practices, activities, and technologies. The ideal candidate will also have experience working with a variety of ...
... in the Vulnerability management system. o Perform security analysis of the different layers of the systems (application database layers) by performing manual testing and automated system ...
... in the Vulnerability management system. o Perform security analysis of the different layers of the systems (application database layers) by performing manual testing and automated system ...
This role bridges traditional vulnerability management with real-time detection and response -- turning raw scan data, exploit intelligence, and asset context into actionable risk decisions. You'll ...
Quick apply
This role bridges traditional vulnerability management with real-time detection and response -- turning raw scan data, exploit intelligence, and asset context into actionable risk decisions. You'll ...
Description We are seeking an experience Security Analyst / Vulnerability Management Lead to join our security compliance team. In this role, you will work closely with the Information Systems ...
Description We are seeking an experience Security Analyst / Vulnerability Management Lead to join our security compliance team. In this role, you will work closely with the Information Systems ...
... in the Vulnerability management system. o Perform security analysis of the different layers of the systems (application database layers) by performing manual testing and automated system ...
... in the Vulnerability management system. o Perform security analysis of the different layers of the systems (application database layers) by performing manual testing and automated system ...
Sr. Security Vulnerability Analyst
Washington, DC · On-site
$108K - $141K/yr
Responsibilities : • Implement AI-enabled solutions for vulnerability management and adapt existing processes to integrate emerging AI capabilities into standard operations. • Provide key ...
Sr. Security Vulnerability Analyst
Washington, DC · On-site
$108K - $141K/yr
Responsibilities : • Implement AI-enabled solutions for vulnerability management and adapt existing processes to integrate emerging AI capabilities into standard operations. • Provide key ...
Description We are seeking an experience Security Analyst / Vulnerability Management Lead to join our security compliance team. In this role, you will work closely with the Information Systems ...
Description We are seeking an experience Security Analyst / Vulnerability Management Lead to join our security compliance team. In this role, you will work closely with the Information Systems ...
Experience managing enterprise vulnerability scanning solutions. * Experience leading penetration testing efforts. * Experience supporting Federal cybersecurity programs. * Experience with RMF, FISMA ...
Quick apply
Experience managing enterprise vulnerability scanning solutions. * Experience leading penetration testing efforts. * Experience supporting Federal cybersecurity programs. * Experience with RMF, FISMA ...
NIH - Vulnerability Assessment Lead
Bethesda, MD · On-site +1
Experience managing enterprise vulnerability scanning solutions. * Experience leading penetration testing efforts. * Experience supporting Federal cybersecurity programs. * Experience with RMF, FISMA ...
NIH - Vulnerability Assessment Lead
Bethesda, MD · On-site +1
Experience managing enterprise vulnerability scanning solutions. * Experience leading penetration testing efforts. * Experience supporting Federal cybersecurity programs. * Experience with RMF, FISMA ...
Experience managing enterprise vulnerability scanning solutions. * Experience with penetration testing efforts. * Experience supporting Federal cybersecurity programs. * Experience with RMF, FISMA ...
Quick apply
Experience managing enterprise vulnerability scanning solutions. * Experience with penetration testing efforts. * Experience supporting Federal cybersecurity programs. * Experience with RMF, FISMA ...
Everforth ECS is seeking a Junior Vulnerability Management Analyst to work in the National Capital Region covering the Pentagon, Falls Church, and Fairfax . Please Note: This position is contingent ...
Everforth ECS is seeking a Junior Vulnerability Management Analyst to work in the National Capital Region covering the Pentagon, Falls Church, and Fairfax . Please Note: This position is contingent ...
Sr. AI Security Vulnerability Analyst
Washington, DC · On-site
$108K - $142K/yr
The ideal candidate will have deep expertise with traditional vulnerability management practices, activities, and technologies. * The ideal candidate will also have experience working with a variety ...
Sr. AI Security Vulnerability Analyst
Washington, DC · On-site
$108K - $142K/yr
The ideal candidate will have deep expertise with traditional vulnerability management practices, activities, and technologies. * The ideal candidate will also have experience working with a variety ...
NIH - Vulnerability Analyst
Bethesda, MD · On-site +1
Experience managing enterprise vulnerability scanning solutions. * Experience with penetration testing efforts. * Experience supporting Federal cybersecurity programs. * Experience with RMF, FISMA ...
NIH - Vulnerability Analyst
Bethesda, MD · On-site +1
Experience managing enterprise vulnerability scanning solutions. * Experience with penetration testing efforts. * Experience supporting Federal cybersecurity programs. * Experience with RMF, FISMA ...
Summary Cybersecurity Analyst (Vulnerability Management & Continuous Monitoring) Oakton, VA Are you ready to enhance your skills and build your career in a rapidly evolving business climate? Are you ...
Summary Cybersecurity Analyst (Vulnerability Management & Continuous Monitoring) Oakton, VA Are you ready to enhance your skills and build your career in a rapidly evolving business climate? Are you ...
Overview Cybersecurity Analyst (Vulnerability Management & Continuous Monitoring) Oakton, VA Are you ready to enhance your skills and build your career in a rapidly evolving business climate? Are you ...
Overview Cybersecurity Analyst (Vulnerability Management & Continuous Monitoring) Oakton, VA Are you ready to enhance your skills and build your career in a rapidly evolving business climate? Are you ...
Overview Cybersecurity Analyst (Vulnerability Management & Continuous Monitoring) Oakton, VA Are you ready to enhance your skills and build your career in a rapidly evolving business climate? Are you ...
Overview Cybersecurity Analyst (Vulnerability Management & Continuous Monitoring) Oakton, VA Are you ready to enhance your skills and build your career in a rapidly evolving business climate? Are you ...
Req ID: 40432 Summary Cybersecurity Analyst (Vulnerability Management & Continuous Monitoring) Oakton, VA Are you ready to enhance your skills and build your career in a rapidly evolving business ...
Req ID: 40432 Summary Cybersecurity Analyst (Vulnerability Management & Continuous Monitoring) Oakton, VA Are you ready to enhance your skills and build your career in a rapidly evolving business ...
Vulnerability Management information
What are the common challenges faced in a Vulnerability Management role?
Professionals in Vulnerability Management often encounter challenges such as rapidly evolving threat landscapes, prioritizing remediation efforts among numerous vulnerabilities, and ensuring continuous communication between technical and non-technical stakeholders. They may also need to adapt to changing regulatory requirements and work within tight deadlines to protect the organization from emerging risks. As part of this role, you'll collaborate regularly with IT, security, and business teams to ensure remediation steps are effectively implemented. Continuous learning and adaptability are important, as technologies and attack vectors change frequently in this field. Being proactive and detail-oriented will help you address these challenges and advance your career in cybersecurity.
What are the key skills and qualifications needed to thrive in the Vulnerability Management position, and why are they important?
To thrive in Vulnerability Management, you need a strong understanding of cybersecurity principles, network protocols, and risk assessment, typically supported by a relevant degree and experience in information security. Familiarity with vulnerability scanning tools (such as Nessus or Qualys), security frameworks, and industry certifications like CISSP or CompTIA Security+ is highly valued. Exceptional analytical thinking, communication skills, and an ability to work collaboratively across IT and business teams help professionals excel in this field. These competencies are crucial to effectively identifying, prioritizing, and mitigating security risks in dynamic organizational environments.
What is a Vulnerability Management job?
A Vulnerability Management job involves identifying, assessing, prioritizing, and mitigating security vulnerabilities in an organization's systems, networks, and applications. Professionals in this role use tools like vulnerability scanners and threat intelligence to detect weaknesses and coordinate remediation efforts with IT and security teams. They also establish policies, monitor security risks, and ensure compliance with industry standards. The goal is to reduce the organization's exposure to cyber threats and improve overall security posture.

Full-time
Medical, Dental, Vision, Life, Retirement
Posted 19 days ago
Guidehouse rating
7.5
Based on 26 frontline employees who took The Breakroom Quiz
37th of 58 rated business consultants
Job description
Cyber Consulting
Travel Required:
Up to 10%
Clearance Required:
Ability to Obtain Public Trust
What You Will Do:
Guidehouse is seeking a seasoned Vulnerability Management Subject Matter Expert (SME) to serve as a trusted advisor to federal clients. The Associate Director focuses on strategic guidance, cross-organizational coordination, and maturing enterprise vulnerability and endpoint management capabilities. This is not a project management role. The SME will provide expert advisory support across vulnerability management and endpoint tooling, with emphasis on platforms such as BigFix, Tenable, SCCM, and/or Qualys. The ideal candidate brings hands-on experience with enterprise vulnerability tooling and has supported modernization, tooling transitions, and enterprise-wide capability uplift. The enterprise is a large, federated organization, with multiple environments and technology, with over 100k endpoints. The individual will help guide clients through improving processes, strengthening reporting and remediation pathways, and driving consistent adoption across numerous sub-organizations.
• Serve as a trusted advisor to federal clients on maturing vulnerability management and endpoint security capabilities.
• Provide expert guidance on configuration, optimization, and effective use of enterprise vulnerability management tools (BigFix, Tenable, SCCM, and/or Qualys).
• Support the modernization and evolution of enterprise vulnerability and endpoint management environments, including tool transitions, capability enhancements, and integration with broader cyber programs.
• Strengthen enterprise vulnerability workflows by advancing prioritization, remediation coordination, communications, and reporting consistency.
• Engage stakeholders across a large, federated organization, building alignment and driving sustained adoption of enterprise vulnerability management practices.
• Translate complex technical topics into clear, actionable insights for leadership.
• Partner with cyber, IT infrastructure, application teams, and senior stakeholders to improve remediation outcomes and reduce enterprise risk.
• Contribute thought leadership, mentor junior staff, and support practice development.
What You Will Need:
• U.S. Citizenship and the ability to obtain/maintain a federal security clearance.
• Bachelor's Degree plus minimum of nine (9) years of cybersecurity experience with deep specialization in vulnerability management and endpoint security.
• Demonstrated experience with enterprise vulnerability tools (BigFix, Tenable, SCCM, and/or Qualys) and architecting solutions.
• Experience supporting enterprise modernization initiatives, system/tool transitions, or the evolution of large-scale cyber capabilities.
• Ability to navigate large, federated organizations and work with multiple sub-organizations.
• Strong communication and advisory skills, with the ability to shape strategy and influence stakeholders.
What Would Be Nice To Have:
• Experience linking vulnerability management with ICAM, Zero Trust, continuous monitoring, or RMF-aligned cyber programs
• Familiarity with federal cybersecurity standards and large-scale IT environments.
• Prior consulting or advisory experience in federal civilian or defense environments.
• Relevant certifications (Security+, CISSP, vendor-specific tool certifications).
What We Offer:
Guidehouse offers a comprehensive, total rewards package that includes competitive compensation and a flexible benefits package that reflects our commitment to creating a diverse and supportive workplace.
Benefits include:
- Medical, Rx, Dental & Vision Insurance
- Personal and Family Sick Time & Company Paid Holidays
- Position may be eligible for a discretionary variable incentive bonus
- Parental Leave and Adoption Assistance
- 401(k) Retirement Plan
- Basic Life & Supplemental Life
- Health Savings Account, Dental/Vision & Dependent Care Flexible Spending Accounts
- Short-Term & Long-Term Disability
- Student Loan PayDown
- Tuition Reimbursement, Personal Development & Learning Opportunities
- Skills Development & Certifications
- Employee Referral Program
- Corporate Sponsored Events & Community Outreach
- Emergency Back-Up Childcare Program
- Mobility Stipend
About Guidehouse
Guidehouse is an Equal Opportunity Employer-Protected Veterans, Individuals with Disabilities or any other basis protected by law, ordinance, or regulation.
Guidehouse will consider for employment qualified applicants with criminal histories in a manner consistent with the requirements of applicable law or ordinance including the Fair Chance Ordinance of Los Angeles and San Francisco.
If you have visited our website for information about employment opportunities, or to apply for a position, and you require an accommodation, please contact Guidehouse Recruiting at 1-571-633-1711 or via email at RecruitingAccommodation@guidehouse.com. All information you provide will be kept confidential and will be used only to the extent required to provide needed reasonable accommodation.
All communication regarding recruitment for a Guidehouse position will be sent from Guidehouse email domains including @guidehouse.com or guidehouse@myworkday.com. Correspondence received by an applicant from any other domain should be considered unauthorized and will not be honored by Guidehouse. Note that Guidehouse will never charge a fee or require a money transfer at any stage of the recruitment process and does not collect fees from educational institutions for participation in a recruitment event. Never provide your banking information to a third party purporting to need that information to proceed in the hiring process.
If any person or organization demands money related to a job opportunity with Guidehouse, please report the matter to Guidehouse's Ethics Hotline. If you want to check the validity of correspondence you have received, please contact recruiting@guidehouse.com. Guidehouse is not responsible for losses incurred (monetary or otherwise) from an applicant's dealings with unauthorized third parties.
Guidehouse does not accept unsolicited resumes through or from search firms or staffing agencies. All unsolicited resumes will be considered the property of Guidehouse and Guidehouse will not be obligated to pay a placement fee.
What Guidehouse employees say
Pay
Benefits
Hours and flexibility
Workplace
Get the full story on Breakroom
About Guidehouse
Sourced by ZipRecruiter
Industry
Business management consulting
Company size
10,000+ Employees
Headquarters location
Falls Church, VA, US
Year founded
2005