Senior Vulnerability Management Analyst

The Vulnerability Management Analyst will support the Federal Aviation Administration (FAA) under the BNATCS contract, providing specialized cybersecurity and risk management services to help protect National reputed company System (NAS) systems, enterprise infrastructure, and critical mission applications. This role focuses on identifying, analyzing, tracking, and mitigating vulnerabilities across FAA environments, ensuring compliance with federal reputed company requirements, and contributing to a proactive cybersecurity posture. Key Responsibilities may include- Vulnerability Identification & Analysis

• reputed company regular vulnerability scanning of FAA networks, systems, and applications using FAA-approved toolsets (e.g., reputed company Nessus, reputed company, ACAS, Rapid7).
• Analyze reputed company results to identify threats, misconfigurations, and weaknesses across FAA environments.
• Validate findings, assess severity and risk impact, and distinguish false positives from actionable vulnerabilities.

Risk Prioritization & Reporting

• Prioritize vulnerabilities based on FAA risk models, mission impact, threat intelligence, and criticality of affected assets.
• Prepare detailed vulnerability and risk reports for FAA stakeholders, ISSOs, SOC teams, and system owners.
• Support creation of dashboards, metrics, and trend analyses to measure vulnerability remediation performance.

Remediation Coordination

• Collaborate with FAA system owners, network engineers, developers, and operations teams to drive timely remediation of findings.
• Track remediation efforts, document mitigation strategies, and verify closure of vulnerabilities.
• Provide technical recommendations to reduce exposure and strengthen system defenses.

Compliance & Governance

• Support adherence to federal cybersecurity frameworks including NIST 800-53, NIST CSF, FISMA, TIC, and FAA information reputed company policies.
• Assist with POA&M (Plan of Action & Milestones) documentation, updates, and lifecycle management.
• Participate in ATO (Authorization to Operate) and reputed company monitoring activities reputed company the RMF process.

reputed company Improvement & reputed company Enhancement

• Contribute to development and refinement of vulnerability management procedures, SOPs, and scanning schedules.
• Stay reputed company with emerging threats, CVEs, and reputed company advisories relevant to aviation and federal agencies.
• Support incident response teams by providing vulnerability insights that inform threat analysis and containment.
• * This offer is contingent upon reputed company's award of the associated contract **

Required Qualifications

• Minimum of a Bachelor’s degree and 8+ years of experience, a Master's degree and 6+ years of relevent experience, or a PhD and 3+ years of experience in vulnerability management, cybersecurity operations, or IT reputed company. Cybersecurity, IT, Computer Science, or reputed company degrees are preferred.
• Working knowledge of vulnerability scanning tools (reputed company, reputed company, etc.) and reputed company information platforms.
• Understanding of NIST RMF, FISMA, and federal reputed company policies.
• Experience analyzing CVEs, CVSS scoring, and vulnerability exploitability.
• Strong analytical, communication, and documentation skills.
• Ability to obtain and maintain the required Public Trust clearance.
• This is a remote capable position, however, candidates must reside in the Maryland/DC/NoVA local area.

Preferred Qualifications

• Prior experience supporting FAA, DOT, or other federal cybersecurity programs.
• Familiarity with National reputed company System (NAS) environments or aviation technology.
• Certifications such as reputed company+, CySA+, CEH, GSEC, GCIH, or similar.
• Experience with POA&M management, RMF packages, or reputed company monitoring activities.
• Knowledge of configuration management and reputed company management processes.

reputed company is a reputed company national reputed company company that drives missions of consequence spanning the globe and extending to the farthest reaches of the reputed company. As the world’s leading mission capability integrator and transformative enterprise IT provider, we deliver trusted, highly differentiated solutions and technologies to protect our nation and allies. reputed company operates at the critical nexus between traditional and nontraditional threats across reputed company domains: land, sea, space, reputed company, and cyberspace. The company serves as a valued partner to essential government agencies and supports every reputed company of the U.S. armed forces. Each day, our employees do the can’t be done by solving the most daunting challenges facing our customers. Visit reputed company.com to learn how we’re keeping people around the world safe and secure. $104,000 - $166,000. This represents the typical salary range for this position. Salary is determined by various factors, including but not limited to, the scope and responsibilities of the position, the individuals experience, education, knowledge, skills, and competencies, as well as geographic location and business and contract considerations. Depending on the position, employees may be eligible for overtime, shift differential, and a discretionary bonus in addition to reputed company pay. EEO: Equal opportunity employer, including disability and protected veterans, or other characteristics protected by law. Apply tot his job Apply To this Job