Vulnerability Assessor
Alexandria, VA ยท Hybrid
Vulnerability Assessor Location: Alexandria, VA (Hybrid - Telework with periodic on-site support as required) Clearance: Active Secret Position Overview ASRC Federal is seeking a Vulnerability ...
Vulnerability Assessor
Alexandria, VA ยท Hybrid
Vulnerability Assessor Location: Alexandria, VA (Hybrid - Telework with periodic on-site support as required) Clearance: Active Secret Position Overview ASRC Federal is seeking a Vulnerability ...
Vulnerability Assessor
Alexandria, VA ยท Hybrid
Vulnerability Assessor Location: Alexandria, VA (Hybrid - Telework with periodic on-site support as required) Clearance: Active Secret Position Overview ASRC Federal is seeking a Vulnerability ...
Vulnerability Assessor
Alexandria, VA ยท Hybrid
Vulnerability Assessor Location: Alexandria, VA (Hybrid - Telework with periodic on-site support as required) Clearance: Active Secret Position Overview ASRC Federal is seeking a Vulnerability ...
Vulnerability Analyst
Washington, DC ยท On-site
$99K - $225K/yr
Vulnerability Analyst The Opportunity: As a vulnerability analyst, you're in the middle of the action, responding to and mitigating threats in real time. You're the first line of cyber defense for ...
Vulnerability Analyst
Washington, DC ยท On-site
$99K - $225K/yr
Vulnerability Analyst The Opportunity: As a vulnerability analyst, you're in the middle of the action, responding to and mitigating threats in real time. You're the first line of cyber defense for ...
Vulnerability Researcher
Mclean, VA ยท On-site
$131K/yr
Mobile Vulnerability Researcher DESCRIPTION: We are seeking a highly skilled and motivated Vulnerability Researcher with a strong focus on the Apple iPhone or Google Android ecosystem. The ideal ...
Vulnerability Researcher
Mclean, VA ยท On-site
$131K/yr
Mobile Vulnerability Researcher DESCRIPTION: We are seeking a highly skilled and motivated Vulnerability Researcher with a strong focus on the Apple iPhone or Google Android ecosystem. The ideal ...
Vulnerability Researcher
Mclean, VA ยท On-site
$131K/yr
Mobile Vulnerability Researcher DESCRIPTION: We are seeking a highly skilled and motivated Vulnerability Researcher with a strong focus on the Apple iPhone or Google Android ecosystem. The ideal ...
Vulnerability Researcher
Mclean, VA ยท On-site
$131K/yr
Mobile Vulnerability Researcher DESCRIPTION: We are seeking a highly skilled and motivated Vulnerability Researcher with a strong focus on the Apple iPhone or Google Android ecosystem. The ideal ...
CyberLinx Solutions, LLC is seeking a Vulnerability Management Analyst to support our cybersecurity services by managing vulnerability scanning, risk prioritization, and remediation tracking across ...
CyberLinx Solutions, LLC is seeking a Vulnerability Management Analyst to support our cybersecurity services by managing vulnerability scanning, risk prioritization, and remediation tracking across ...
Vulnerability Researcher
Chantilly, VA ยท On-site
Our teams lead advanced vulnerability analysis and develop tailored cyber solutions to meet the demands of rapidly evolving mission space. With offices in Northern Virginia, Melbourne, Florida, Tel ...
Vulnerability Researcher
Chantilly, VA ยท On-site
Our teams lead advanced vulnerability analysis and develop tailored cyber solutions to meet the demands of rapidly evolving mission space. With offices in Northern Virginia, Melbourne, Florida, Tel ...
Vulnerability Management Engineer Job Category: Security Time Type: Full time Minimum Clearance Required to Start: None Employee Type: Regular Percentage of Travel Required: None Type of Travel: None
Vulnerability Management Engineer Job Category: Security Time Type: Full time Minimum Clearance Required to Start: None Employee Type: Regular Percentage of Travel Required: None Type of Travel: None
Vulnerability Assessor
Alexandria, VA ยท On-site
The Vulnerability Assessor will identify, analyze, and track system vulnerabilities to strengthen the organization's cybersecurity posture and ensure compliance with DoD Risk Management Framework ...
Vulnerability Assessor
Alexandria, VA ยท On-site
The Vulnerability Assessor will identify, analyze, and track system vulnerabilities to strengthen the organization's cybersecurity posture and ensure compliance with DoD Risk Management Framework ...
Overview Vulnerability Researcher Location:On-Site (Annapolis Junction, MD) Clearance Required:TS/SCI with Poly Do you have a passion for uncovering hidden vulnerabilities and pushing the boundaries ...
Overview Vulnerability Researcher Location:On-Site (Annapolis Junction, MD) Clearance Required:TS/SCI with Poly Do you have a passion for uncovering hidden vulnerabilities and pushing the boundaries ...
CyberLinx Solutions, LLC is seeking a Vulnerability Management Analyst to support our cybersecurity services by managing vulnerability scanning, risk prioritization, and remediation tracking across ...
CyberLinx Solutions, LLC is seeking a Vulnerability Management Analyst to support our cybersecurity services by managing vulnerability scanning, risk prioritization, and remediation tracking across ...
Vulnerability Researcher
$135K - $281K/yr
Overview Vulnerability Researcher Location:On-Site (Annapolis Junction, MD) Clearance Required:TS/SCI with Poly Do you have a passion for uncovering hidden vulnerabilities and pushing the boundaries ...
Quick apply
Vulnerability Researcher
$135K - $281K/yr
Overview Vulnerability Researcher Location:On-Site (Annapolis Junction, MD) Clearance Required:TS/SCI with Poly Do you have a passion for uncovering hidden vulnerabilities and pushing the boundaries ...
Vulnerability Management Consultant
Mclean, VA ยท On-site +1
$45 - $48/hr
Vulnerability Management Consultant Location: Washington, DC; Virginia; Dallas, TX; or Boston, MA (Remote with occasional onsite requirements and up to 10% travel) Clearance Requirements: None ...
Vulnerability Management Consultant
Mclean, VA ยท On-site +1
$45 - $48/hr
Vulnerability Management Consultant Location: Washington, DC; Virginia; Dallas, TX; or Boston, MA (Remote with occasional onsite requirements and up to 10% travel) Clearance Requirements: None ...
Responsibilities Peraton is seeking a Cybersecurity Vulnerability Analyst in our Linthicum, MD office in support of our Department of Defense (DoD) customer as part of a highly talented, highly ...
Responsibilities Peraton is seeking a Cybersecurity Vulnerability Analyst in our Linthicum, MD office in support of our Department of Defense (DoD) customer as part of a highly talented, highly ...
Responsibilities Peraton is seeking a Cybersecurity Vulnerability Analyst in our Linthicum, MD office in support of our Department of Defense (DoD) customer as part of a highly talented, highly ...
Responsibilities Peraton is seeking a Cybersecurity Vulnerability Analyst in our Linthicum, MD office in support of our Department of Defense (DoD) customer as part of a highly talented, highly ...
Vulnerability Management Analyst
Chantilly, VA ยท Hybrid
$70K - $85K/yr
We are seeking a Vulnerability Management Analyst (Tenable/Nessus & Metrics ) to support vulnerability tracking, remediation coordination, and security metrics reporting in a federal technology ...
Quick apply
Vulnerability Management Analyst
Chantilly, VA ยท Hybrid
$70K - $85K/yr
We are seeking a Vulnerability Management Analyst (Tenable/Nessus & Metrics ) to support vulnerability tracking, remediation coordination, and security metrics reporting in a federal technology ...
Vulnerability Analyst, Senior
Herndon, VA ยท On-site
$104K - $166K/yr
Establish and govern enterprise vulnerability management strategy: scanning methodologies, validation protocols, and assessment standards aligned with RMF, DoD, and Army requirements. * Oversee ...
Vulnerability Analyst, Senior
Herndon, VA ยท On-site
$104K - $166K/yr
Establish and govern enterprise vulnerability management strategy: scanning methodologies, validation protocols, and assessment standards aligned with RMF, DoD, and Army requirements. * Oversee ...
Vulnerability Researcher
Annapolis Junction, MD ยท On-site
$109K - $228K/yr
If so, BigBear.ai wants you on our team! We're seeking an elite Vulnerability Researcher that has an active TS/SCI with Poly clearance to join our cutting-edge team and deliver groundbreaking ...
Quick apply
Vulnerability Researcher
Annapolis Junction, MD ยท On-site
$109K - $228K/yr
If so, BigBear.ai wants you on our team! We're seeking an elite Vulnerability Researcher that has an active TS/SCI with Poly clearance to join our cutting-edge team and deliver groundbreaking ...
Cybersecurity Vulnerability Analyst
Linthicum, MD ยท On-site
$104K - $166K/yr
Responsibilities This Cybersecurity Vulnerability Analyst supports a Vulnerability Disclosure Program (VDP) within the federal government and is responsible for reviewing and vetting security ...
Cybersecurity Vulnerability Analyst
Linthicum, MD ยท On-site
$104K - $166K/yr
Responsibilities This Cybersecurity Vulnerability Analyst supports a Vulnerability Disclosure Program (VDP) within the federal government and is responsible for reviewing and vetting security ...
As a Vulnerability Researcher at BigBear.ai, you'll: * Work on classified, mission-critical research that directly impacts national security. * Collaborate with elite teams of engineers and ...
As a Vulnerability Researcher at BigBear.ai, you'll: * Work on classified, mission-critical research that directly impacts national security. * Collaborate with elite teams of engineers and ...
Vulnerability information
See Washington salary details
$42.5K - $53.3K
1% of jobs
$53.3K - $64.2K
5% of jobs
$64.2K - $75.1K
3% of jobs
$75.1K - $85.9K
0% of jobs
$85.9K - $96.8K
9% of jobs
$103K is the 25th percentile. Wages below this are outliers.
$96.8K - $107.6K
11% of jobs
$107.6K - $118.5K
5% of jobs
$118.5K - $129.4K
1% of jobs
The median wage is $132.7K / yr.
$129.4K - $140.2K
46% of jobs
$140.2K - $151.1K
13% of jobs
$151.1K - $162K
5% of jobs
$42.5K
$122.2K
$162K
How much do vulnerability jobs pay per year?
As of Jun 28, 2026, the average yearly pay for vulnerability in Washington is $122,210.00, according to ZipRecruiter salary data. Most workers in this role earn between $106,500.00 and $133,100.00 per year, depending on experience, location, and employer.
What are some common challenges faced by professionals working in vulnerability management roles?
Professionals in vulnerability management often face the challenge of keeping up with constantly evolving threats and newly discovered vulnerabilities. Prioritizing which vulnerabilities to address first, especially in large environments with thousands of potential risks, can be demanding. Collaborating with IT, development, and security teams to ensure timely remediation and maintaining clear communication about risk levels are also essential parts of the role. Additionally, balancing the need for quick patching with the risk of disrupting business operations requires careful judgment.
What is the difference between Vulnerability vs Penetration Tester?
| Aspect | Vulnerability | Penetration Tester |
|---|---|---|
| Primary Focus | Identifying security weaknesses and vulnerabilities in systems | Simulating cyberattacks to exploit vulnerabilities and test defenses |
| Certifications | CompTIA Security+, CEH, OSCP (for some roles) | OSCP, CEH, GPEN, CISSP (often overlapping) |
| Work Environment | Security analysis, vulnerability scanning, reporting | Active testing, exploitation, reporting |
| Industry Usage | Security assessment, risk management | Security testing, red teaming |
Vulnerability specialists focus on identifying weaknesses in systems, while penetration testers actively exploit those vulnerabilities to assess security effectiveness. Both roles require similar certifications and work in cybersecurity, but their methods and objectives differ: vulnerability analysts aim to find issues, whereas penetration testers simulate attacks to evaluate defenses.
What are the key skills and qualifications needed to thrive as a Vulnerability Analyst, and why are they important?
To thrive as a Vulnerability Analyst, you need a solid understanding of network security, operating systems, and vulnerability assessment methodologies, typically supported by a degree in cybersecurity or IT and relevant certifications like CompTIA Security+ or CEH. Familiarity with tools such as Nessus, OpenVAS, Metasploit, and vulnerability management platforms is essential. Strong analytical thinking, attention to detail, and effective communication help in identifying risks and explaining findings to diverse stakeholders. These skills ensure timely detection and remediation of security weaknesses, protecting organizations from cyber threats.
What are vulnerability analysts?
Vulnerability analysts are cybersecurity professionals who identify, assess, and help remediate security weaknesses in computer systems, networks, and software. They use various tools and techniques to scan for vulnerabilities, analyze threats, and recommend solutions to mitigate risks. Their work is crucial in preventing cyberattacks and ensuring the security of organizational assets. Vulnerability analysts often collaborate with IT and security teams to prioritize and address vulnerabilities based on their potential impact.
What are the most commonly searched types of Vulnerability jobs in Washington? The most popular types of Vulnerability jobs in Washington are:
What are popular job titles related to Vulnerability jobs in Washington? For Vulnerability jobs in Washington, the most frequently searched job titles are:
What job categories do people searching Vulnerability jobs in Washington look for? The top searched job categories for Vulnerability jobs in Washington are:
Other
Posted 17 days ago
Job description
Vulnerability Assessor
Position Overview
Responsibilities
Basic Qualifications
Preferred Qualifications
Location: Alexandria, VA (Hybrid โ Telework with periodic on-site support as required)
Clearance: Active Secret
Position Overview
ASRC Federal is seeking a Vulnerability Assessor to support the Department of War Education Activity (DoWEA) Enterprise Cyber Program. The Vulnerability Assessor will identify, analyze, and track system vulnerabilities to strengthen the organizationโs cybersecurity posture and ensure compliance with DoD Risk Management Framework (RMF) requirements. This role supports Continuous Monitoring (ConMon) activities and works closely with cybersecurity and system teams to enhance DoWEAโs enterprise-wide security operations.
Responsibilities
Conduct vulnerability scans using ACAS (Tenable/Nessus), STIG Viewer, and related DoD-approved assessment tools.
Categorize and analyze vulnerabilities in accordance with NIST SP 800-53, DISA STIGs, and DoDI 8510.01 (RMF).
Collaborate with Information System Security Managers (ISSMs), Information System Security Officers (ISSOs), and system administrators to track remediation and update Plans of Action and Milestones (POA&Ms).
Prepare and maintain vulnerability assessment reports and risk summaries for leadership.
Support RMF Steps 3โ6 and Continuous Monitoring documentation within eMASS.
Research and evaluate emerging technologies to identify new or evolving risks and recommend mitigation strategies.
Basic Qualifications
Bachelorโs degree in Cybersecurity, Computer Science, Information Technology, or related discipline (four additional years of equivalent experience may substitute).
Minimum 5+ years of cybersecurity or vulnerability management experience.
Active DoD Secret clearance
DoD 8570.01-M IAT Level II certification (e.g., Security+ CE, CySA+, CCNA-Security).
Hands-on experience with ACAS (Tenable/Nessus) and STIG compliance tools.
Strong analytical, documentation, and communication skills.
Working knowledge of vulnerability scanning, risk assessment methodologies, and remediation tracking.
Preferred Qualifications
Familiarity with DoW (DoD) RMF, eMASS, and DISA STIG/SRG compliance.
Understanding of NIST SP 800-53, CNSSI 1253, and DoDI 8510.01 frameworks.
Knowledge of common cybersecurity threats, exploits, and attack vectors.
Experience supporting federal or DoD IT environments.
Positive, proactive approach and ability to collaborate effectively across remote and on-site teams.