Position Summary

We are seeking a motivated and detail-oriented Vulnerability Management & Remediation Analyst to support the organization's cybersecurity program. This role is responsible for assisting with vulnerability tracking, reporting, and remediation coordination across servers, endpoints, applications, and network infrastructure. The ideal candidate has foundational cybersecurity knowledge, strong communication skills, and a desire to grow within information security operations.

Duration: 3-month engagement with possible extension

Key Responsibilities

Vulnerability Management

· Assist with prioritizing vulnerabilities based on risk, exploitability, and business impact.

· Maintain vulnerability tracking tickets and remediation documentation.

Remediation Coordination

· Work with IT infrastructure, application, and operations teams to coordinate remediation activities.

· Follow up with system owners to ensure vulnerabilities are remediated within established SLAs.

· Verify remediation efforts through rescanning and validation testing.

· Assist in reporting activities.

Reporting & Documentation

· Generate regular vulnerability and remediation status reports.

· Document remediation procedures, exceptions, and risk acceptance records.

· Maintain accurate records of vulnerability metrics and compliance requirements.

Security Operations Support

· Support continuous improvement initiatives for vulnerability management processes.

· Stay current on cybersecurity trends, threats, and best practices.

Required Qualifications

· Associate's or Bachelor's degree in Cybersecurity, Information Technology, Computer Science, or related field (or equivalent experience).

· Basic understanding of cybersecurity principles and vulnerability management concepts.

· Familiarity with operating systems such as Windows and Linux.

· Strong analytical and problem-solving skills.

· Excellent written and verbal communication skills.

· Ability to manage multiple tasks and meet deadlines.

Preferred Qualifications

· Internship or hands-on experience in IT or cybersecurity.

· Familiarity with vulnerability scanning tools such as Tenable/Nessus, Qualys, Rapid7, or Microsoft Defender.

· Basic understanding of CVSS scoring and vulnerability prioritization.

· Experience with ticketing systems such as ServiceNow

· Entry-level certifications such as CompTIA Security+, Network+, SSCP, or Microsoft Security certifications.

Key Skills

· Vulnerability Assessment

· Patch & Remediation Tracking

· Security Reporting

· Risk Prioritization

· Technical Documentation

· Collaboration & Communication

· Attention to Detail

· Time Management

Work Environment

Remote - 8:30am - 5:30pm