IT Business Analyst (Vulnerability/Cyber)

Responsibilities

Kforce has a client that is seeking an IT Business Analyst (Vulnerability/Cyber) in Juno Beach, FL. Summary: We are seeking a Vulnerability Cyber Technical Business Analyst to support our cybersecurity program with a strong focus on vulnerability management, reporting, analytics, and cross functional coordination. This role blends business analysis, technical understanding, and cybersecurity domain knowledge. Vulnerability Management & Cyber Analysis:

• Serve as a liaison between cybersecurity, IT operations, engineering, and business stakeholders to ensure vulnerabilities are clearly understood, prioritized, and remediated
• Analyze vulnerability data from scanners and toolsets (e.g., Qualys, Tenable, Rapid7) and translate findings into actionable insights
• Support lifecycle processes including vulnerability identification, triage, prioritization, remediation tracking, and reporting
• Partner with security engineers to understand the technical impact of vulnerabilities and communicate these impacts in language appropriate to business teams
  
  

Business Analysis & Requirements:

• Gather, document, and translate business and technical requirements related to vulnerability management processes and tools
• Support enhancements to vulnerability reporting processes, dashboards, workflows, and governance
• Assist in documenting current-state and future-state process flows, data flows, and system interactions
  
  

Communication & Stakeholder Engagement:

• Develop clear, polished PowerPoint presentations for executive, technical, and business audiences
• Communicate vulnerability trends, risks, metrics, and remediation progress
• Coordinate remediation handoffs and timelines with application owners, infrastructure teams, and security teams
  
  

Operational Support

• Perform root-cause and trend analysis on recurring or systemic vulnerabilities
• Support compliance and audit inquiries regarding vulnerability management
  
  

Requirements

• 3 years of experience in Business Analysis, Cybersecurity, or a technical operations role supporting security programs
• Strong understanding of vulnerability management concepts, scoring (CVSS), and common categories of vulnerabilities
• Experience working with or supporting vulnerability scanning tools (e.g., Qualys, Tenable, Rapid7, or similar platforms)
• Strong analytical and documentation skills, including process mapping and requirements gathering
• Advanced PowerPoint skills with an ability to visualize and communicate technical information effectively
• Excellent communication skills, with the ability to tailor messages to both technical teams and business stakeholders
• Demonstrated ability to work independently, prioritize tasks, and drive initiatives with minimal guidance
• Knowledge of common cybersecurity frameworks (e.g., NIST, CIS Controls, OWASP)
  
  

Preferred Qualifications

• Experience coordinating or supporting penetration testing or red team activities
• Familiarity with vulnerability remediation workflows in cloud environments (AWS, Azure, GCP)
• Exposure to Jira, ServiceNow Security Operations, or similar workflow management tools
• Background in risk management, incident response, or security operations centers (SOCs)
• Understanding of patch management processes
  
  

The pay range is the lowest to highest compensation we reasonably in good faith believe we would pay at posting for this role. We may ultimately pay more or less than this range. Employee pay is based on factors like relevant education, qualifications, certifications, experience, skills, seniority, location, performance, union contract and business needs. This range may be modified in the future.

We offer comprehensive benefits including medical/dental/vision insurance, HSA, FSA, 401(k), and life, disability & ADD insurance to eligible employees. Salaried personnel receive paid time off. Hourly employees are not eligible for paid time off unless required by law. Hourly employees on a Service Contract Act project are eligible for paid sick leave.

Note: Pay is not considered compensation until it is earned, vested and determinable. The amount and availability of any compensation remains in Kforce's sole discretion unless and until paid and may be modified in its discretion consistent with the law.

This job is not eligible for bonuses, incentives or commissions.

Kforce is an Equal Opportunity/Affirmative Action Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, pregnancy, sexual orientation, gender identity, national origin, age, protected veteran status, or disability status.

By clicking “Apply Today” you agree to receive calls, AI-generated calls, text messages or emails from Kforce and its affiliates, and service providers. Note that if you choose to communicate with Kforce via text messaging the frequency may vary, and message and data rates may apply. Carriers are not liable for delayed or undelivered messages. You will always have the right to cease communicating via text by using key words such as STOP.