Vulnerability Management Analyst (R-00145)

True Zero Technologies, a veteran-owned small business, was founded on the principle that the purposeful enablement of people and technology in an organization directly ties to the quality of its outcomes. True Zero recognizes that those outcomes begin and end with our people, and that is what we have built a community of like-minded, driven, and passionate individuals and innovators who are aligned in a common goal of delivering top-tier services to our customers. Our culture and commitment have been recognized through numerous accolades, including being named one of the Best Places to Work in 2023 in two categories (“Prosperous and Thriving” ($5MM–$50MM in gross revenue) and “Mid-Atlantic Region” (DC, DE, MD, NC, VA, WV)), and again in 2025 as a Best Places to Work honoree. In addition, True Zero earned coveted spots on the Inc. 5000 list of fastest-growing companies in America in 2022, 2023, and 2025, a testament to our sustained growth driven by our people-first approach and unwavering dedication to excellence.

This candidate will support vulnerability management activities by identifying, analyzing, and prioritizing vulnerabilities across client systems, applications, and networks. Additionally, this role will translate scan results and cyber hygiene findings into actionable remediation guidance, coordinate with stakeholders to track resolution efforts, and help strengthen the organization’s overall security posture. This position calls for strong analytical ability, technical communication skills, and the ability to support risk-informed remediation in a federal cybersecurity environment.

Job Responsibilities :
• Initiate or coordinate vulnerability scans using approved tools

• Review and analyze scan results to identify weaknesses and security gaps

• Assess risk and prioritize remediation activities based on severity, impact, and likelihood

• Track remediation progress and support reporting to leadership and stakeholders

• Review cyber hygiene findings and develop actionable recommendations

• Coordinate with system owners, engineers, and administrators to support remediation efforts

• Monitor emerging vulnerabilities, threat activity, and high-risk exposures that may affect client systems

• Support security review of new technologies, applications, and software introduced into the environment

• Help maintain vulnerability metrics, dashboards, and reporting outputs

• Support process improvement and automation efforts related to vulnerability identification and tracking

• Assist with documentation, status reporting, and stakeholder communications as needed

Job Qualifications :
•

• Experience using vulnerability scanning tools such as Tenable/Nessus or comparable platforms

• Familiarity with enterprise operating systems, networks, cloud platforms, and applications

• Working knowledge of CVE, CVSS, NVD, and CISA KEV

• Experience analyzing findings and translating technical results into prioritized remediation actions

• Experience coordinating with technical stakeholders to track and validate remediation

• Ability to produce clear written reporting and communicate technical risk effectively

• Familiarity with federal cybersecurity, compliance, or risk-based security operations environments preferred

• Bachelor’s degree in Cybersecurity, Information Technology, Computer Science, or related field; or equivalent experience

• 3+ years of experience in vulnerability management, security operations, system security, or related work

•
Clearance Required
Public Trust or ability to obtain and maintain required DHS suitability/access

Preferred Certifications
CASP, GSEC, GSLC, CISSP, CEH, CISM, CISA, PMI-ACP, SAFe Agilist, CSM, or comparable certifications

We’re actively searching for talented and expereinced professionals who are ready to experience the True Zero difference. As a True Zero team member, you'll enjoy:

- Competitive salary, paid twice per month

- Best in class medical coverage

- 100% of medical premiums covered by True Zero

- Company wide new business incentive programs

- Contribution Incentives (i.e. white papers, blog posts, internal webinars, etc.)

- 3 weeks of PTO starting + 11 Paid Holidays Annually

- 401k Program with 100% company match on the first 4%

- Monthly reimbursement of Cell Phone and Home Internet costs

- Paternity/Maternity Leave

- Investment in training and certifications to broaden and deepen your technical skills