Vulnerability Analyst

Tyto Athene is searching for a Vulnerability Management Analyst to assist our Federal client in the development and maintenance of the full lifecycle of vulnerability management services from discovery, triage, advising, remediation, and validation. The role can be remote.

Responsibilities

• Support the development and maintenance of vulnerability management services, including vulnerability scanning, vulnerability assessments, and providing advisory and tracking support for vulnerability remediation.
• Operate and configure agency tools used for vulnerability testing and identification.
• Review agency vulnerability management plans / policies and update documents as needed.
• Coordinate with customers regarding scanning schedule and scope Review, analyze, validate, and report on vulnerability scan results.
• Develop and disseminate operational and executive-level reports on vulnerability status to stakeholders involved in remediating vulnerabilities.
• Work with stakeholders as necessary to develop vulnerability remediation strategies and track status.
• Identify areas for improvement and/or efficiencies including processes, tools, and template; Identify relevant metrics.
• Develop processes and document procedures in an Standard Operating Procedures (SOP) format for use by other team members and to enhance efficiencies.
• Coordinate with other teams, including ISSOs and penetration testers to share information as needed.
• Opportunity to perform security testing activities, such as application and vulnerability assessments.
  
  
  

Required

• Minimum of 3 years of professional experience in information security or information technology roles; 2 years of experience in Vulnerability Management preferred.
• Bachelor’s Degree, or an equivalent combination of formal education, experience preferred
• Experience conducting vulnerability scans, including configuration and use of tools such as Tenable Security Center and/or Qualys
• Experience executing security testing activities such as penetration testing and application / vulnerability assessments preferred
• Knowledge of cybersecurity frameworks, controls and standards, and best practices (e.g., FISMA, ISO 27K, CMMC, NIST)
• Knowledge of cloud and network security
• Proven track record of identifying and recommending improvement initiatives
• Excellent people skills and the ability to work both independently and in a team environment
• Excellent communication skills, both written and verbal
• Excellent organizational skills with the ability to multi-task and meet deadlines
  
  
  

Clearance

• Active Secret clearance required
  
  
  

Compensation

• Compensation is unique to each candidate and relative to the skills and experience they bring to the position. This does not guarantee a specific salary as compensation is based upon multiple factors such as education, experience, certifications, and other requirements, and may fall outside of the above-stated range.
  
  
  

Benefits

• Highlights of our benefits include Health/Dental/Vision, 401(k) match, Paid Time Off, STD/LTD/Life Insurance, Referral Bonuses, professional development reimbursement, and parental leave.
  
  
  

Tyto Athene is a trusted leader in IT services and solutions, delivering mission-focused digital transformation that drives measurable success. Our expertise spans four core technology domains—Network Modernization, Hybrid Cloud, Cybersecurity, and Enterprise IT—empowering our clients with cutting-edge solutions tailored to their evolving needs. With over 50 years of experience, Tyto Athene proudly support Defense, Intelligence, Space, National Security, Civilian, Health, and Public Safety clients across the United States and worldwide.

At Tyto Athene, we believe that success starts with our people. We foster a collaborative, innovative, and mission-driven environment where every team member plays a critical role in shaping the future of technology. Are you ready to join #TeamTyto?

Tyto Athene, LLC is an Equal Opportunity Employer; all qualified applicants will receive consideration for employment without regard to race, color, religion, sex, [sexual orientation, gender identity,] national origin, disability, status as a protected veteran, or any characteristic protected by applicable law.