Vulnerability Management / Vulnerability Analyst

Job ID: 2612468

Location: Washington, DC, US

Date Posted: 2026-05-12

Category: Cyber

Subcategory: Cybersecurity Spec

Schedule: Full-Time

Shift: Day Job

Travel: No

Minimum Clearance Required: None

Clearance Level Must Be Able to Obtain: Public Trust

Potential for Remote Work: ORA_ON_SITE

Description

SAIC seeks a Vulnerability Management / Vulnerability Analyst to support the Department of Transportation's Cybersecurity mission by joining a dedicated team of cybersecurity professionals who collaborate, cooperate, and facilitate maintaining and enhancing the security posture of DOT information systems and infrastructure. These information systems and infrastructure support the DOT mission of managing and maintaining United States critical infrastructure (i.e. highways, bridges, roads, etc.).

Role is Onsite in Washington DC/ 5 days a week

In this role you will:

• Engage with Federal Leadership and counterparts to identify endpoint vulnerabilities and provide feedback / guidance on remediation actions
• Engage with system and application administrators to coordination remediation efforts to meet required timelines
• Develop and enhance vulnerability identification and remediation status tracking and reporting to present cyber related risks
• Engage with system and application administrators and Federal counterparts to troubleshoot issues associated with endpoint vulnerability scanning
• Work Cyber related security operations ITSM (ServiceNow) assigned tickets to completion
• Participate in relevant Cybersecurity and Security Operations (SecOps) meetings
• Collaborate on and provide feedback to cybersecurity solutions that enhance DOT security posture
  
  

Qualifications

Requirements:

• Six Years in Cybersecurity or related Information Technology fields. Education may be considered in lieu of experience
• Experience working with Endpoint Vulnerability Scanning solutions, specifically Tenable Nessus
• Security , CISSP, CISM, CISA, GCIH, OSCP, CEH, or similar certification
• Experience with and understanding of Federal Cybersecurity requirements (i.e. FISMA, NIST 800 series, etc)
• Solid experience in vulnerability management, risk assessment and mitigation, and comprehensive remediation actions
• Great communications skills with the capacity to describe endpoint security concepts to unacquainted individuals
• Ability to collaboration and coordinate with cross-functional teams
• Experience with Anti-VirAnti-Malware/End point detection and response tools is a must
• Experience with Palo Alto Cortex XDR / XSIAM Platforms is highly preferred
  
  

Preferred skills and qualifications:

• Familiarity with and foundational understanding of the Vulnerability Management lifecycle, application and technology stacks, cloud-based systems, operating systems, databases, networking, firewalls, Data Loss Prevention, Endpoint Security Software, Network Intrusion Detection and Prevention Systems (IDS/IPS) and host-based IDS and IPS and general cyber security best practices and industry standards, to include the Federal Information Security Modernization Act, the NIST Risk Management Framework and NIST Cybersecurity Framework
  
  

Target salary range: $80,001 - $120,000. The estimate displayed represents the typical salary range for this position based on experience and other factors.

SAIC is a premier technology integrator providing full life cycle services and solutions in the technical, engineering, intelligence, and enterprise information technology markets. SAIC is Redefining Ingenuity through its deep customer and domain knowledge to enable the delivery of systems engineering and integration offerings for large, complex projects. SAIC's approximately 15,000 employees are driven by integrity and mission focus to serve customers in the U.S. federal government. Headquartered in Reston, Virginia, SAIC has annual revenues of approximately $4.5 billion. For more information, visit saic.com. For information on the benefits SAIC offers, see .