Information Security Analyst Lead (Vulnerability Management)

About The Position

Requirements

• 8+ years experience in information and cyber security.
• Bachelor’s degree in a related field. Additional years of experience may be substituted for degree requirements.
• Must be Security+ certified.
• Demonstrated experience with vulnerability management tools (ACAS) and processes.
• Experience analyzing vulnerability scan results and coordinating remediation efforts.
• Experience supporting cyber security compliance, assessment, or inspection activities.
• Experience leading and mentoring technical cyber security personnel.
• Must have strong leadership and organization skills.
• Demonstrated ability to take initiative and solve problems as they arise.
• Must have strong communication skills, interact with all levels of the organization professionally, and coordinate across technical teams and organizational boundaries as needed.
• Must be a US citizen and hold a current Secret clearance.
• Applicants selected will be subject to a U.S. government security investigation and must meet eligibility requirements for access to classified information.

Nice To Haves

• CISSP certification desired.
• Experience working in classified or secure environments/networks highly preferred.
• Experience with ARAD Tanium and network infrastructure preferred.
• Strong understanding of vulnerability management lifecycle and remediation processes.
• Able to analyze security findings and determine appropriate mitigation strategies.
• Ability to develop scripts or automation tools to improve operational efficiency.

Responsibilities

• Lead vulnerability management activities including analysis, prioritization, mitigation, and tracking of vulnerabilities across supported systems and networks.
• Analyze vulnerability scan results using enterprise scanning tools and assess risk, severity, and remediation requirements.
• Coordinate with system administrators, engineers, and stakeholders to ensure timely remediation of identified vulnerabilities.
• Provide technical leadership, guidance, and support to vulnerability management team members.
• Develop and maintain vulnerability tracking processes, metrics, and reporting mechanisms.
• Prepare systems and supporting documentation for cybersecurity inspections, assessments, and compliance reviews.
• Track remediation activities and coordinate resolution of vulnerabilities through enterprise ticketing (ServiceNow) and workflow systems.
• Communicate vulnerability findings, remediation requirements, and risk posture to stakeholders and leadership.
• Develop scripts, tools, or automation to improve vulnerability analysis, reporting, and remediation processes.
• Maintain documentation of vulnerabilities, remediation status, and compliance artifacts.
• Monitor emerging threats, vulnerabilities, and security trends and provide recommendations for mitigation.
• Support continuous monitoring activities to ensure ongoing cybersecurity posture and operational readiness.