Description
Description
SAIC is seeking a Junior Vulnerability Analyst to join our team in support of a critical U.S. government agency in the National Capital Region. This role offers an exciting opportunity to gain hands-on experience in vulnerability management, issue analysis, and security compliance while working with on-premises and cloud-based security solutions.
The ideal candidate will have foundational knowledge of cybersecurity principles and experience using vulnerability scanning tools such as Nessus, Tenable Security Center, Tenable.IO, Qualys WAS, or NMAP. This role will focus on conducting vulnerability scans, assisting in security assessments, analyzing scan results, and supporting compliance efforts. The Junior Vulnerability Analyst will work closely with senior analysts, IT security teams, and compliance personnel to help maintain the agency's security posture.
Key Responsibilities:
· Assist in vulnerability scanning and security assessments across on-premises and cloud environments.
· Support web application and device scanning using tools such as Nessus, Security Center, Tenable.IO, Qualys WAS, and NMAP.
· Conduct initial review of scan results, verify findings, and assist in prioritizing vulnerabilities for remediation.
· Work with senior analysts and IT security teams to track vulnerabilities and support mitigation efforts.
· Monitor scan performance, troubleshoot basic scanning issues, and report anomalies to senior team members.
· Assist in compiling vulnerability reports, compliance documentation, and risk analysis summaries.
· Support vulnerability tracking using ServiceNow, SharePoint, Microsoft SQL, and PowerBI, ensuring that issues are documented and updated as needed.
· Help review and maintain security policies and procedures related to vulnerability management and compliance.
· Stay current with cybersecurity trends, best practices, and emerging threats to enhance technical knowledge and contribute to security improvements.
Qualifications
Qualifications & Experience:
· Bachelor's degree in Cybersecurity, Information Technology, or a related field. May accept an additional 2 years of experience in lieu of a degree.
· 0-3 years of experience in cybersecurity, IT security operations, or vulnerability management.
· Basic experience with vulnerability scanning tools such as Nessus, Security Center, Tenable.IO, Qualys WAS, or NMAP.
· Foundational knowledge of patch management, security controls, and vulnerability mitigation.
· Familiarity with Excel data analytics for reporting purposes.
· Ability to analyze scan results and assist in prioritizing security vulnerabilities.
Preferred Qualifications:
· Some experience working in cloud security environments (Azure, AWS, etc.).
· Basic scripting knowledge in Python, SQL, PowerShell, or DAX for automating security tasks.
· Familiarity with ServiceNow, SharePoint, MS SQL, or PowerBI for vulnerability tracking and documentation.
· Industry certifications such as CompTIA Security+, CEH, CySA+, or other entry-level cybersecurity certifications (preferred but not required).
· Strong written and verbal communication skills, with the ability to create basic security reports and documentation.
· Strong analytical, problem-solving, and organizational skills, with attention to detail.
· Ability to work collaboratively with a team and learn from senior security professionals.
Clearance Requirement:
All candidates must be eligible to obtain a U.S. Public Trust Clearance.
**This hybrid role requires a minimum of three on-site days per week in Washington, DC.**
Target salary range: $40,001 - $80,000. The estimate displayed represents the typical salary range for this position based on experience and other factors.
SAIC accepts applications on an ongoing basis and there is no deadline.
Covid Policy: SAIC does not require COVID-19 vaccinations or boosters. Customer site vaccination requirements must be followed when work is performed at a customer site.
Apply on company website
Find Connections via Linkedin
