Full Job Description
The Senior Vulnerability Management Analyst is responsible for supporting vulnerability and exposure management operations across multiple client environments within an MSP SOC. This role focuses on vulnerability assessment, risk analysis, remediation coordination, client reporting, and operational support across diverse enterprise security monitoring technologies and vulnerability management platforms. This role works closely with the Exposure Management Team, Security Engineering Team, SOC analysts, client technical teams, and internal engineering teams to deliver high-quality vulnerability management services, actionable risk intelligence, and effective remediation support across a multi-client portfolio. This role requires the ability to seamlessly transition between client environments, adapt to varied technology stacks, and communicate complex security risks to both technical and executive audiences.
- Experience: Minimum of 5-8 years of cybersecurity experience supporting vulnerability management or exposure management operations, preferably within an MSP, MSSP, or multi-client SOC environment.
- Multi-Client Operations: Proven ability to manage security operations across multiple client environments simultaneously, with strong organizational and context-switching capabilities.
- Vulnerability Management Platforms: Hands-on experience with multiple vulnerability management technologies such as Tenable (Nessus, Tenable.io, Tenable.sc), Crowdstrike Spotlight, or similar platforms.
- Risk Assessment Expertise: Strong analytical skills in vulnerability risk assessment, prioritization methodologies, CVSS scoring, exploitability analysis, and business impact evaluation.
- Client Communication Skills: Excellent verbal and written communication skills with demonstrated ability to explain technical security risks to diverse audiences including executives, IT teams, and non-technical stakeholders.
- Asset and Environment Knowledge: Strong understanding of enterprise infrastructure, cloud environments (AWS, Azure, GCP), container technologies, endpoint systems, and network architecture across varied enterprise configurations.
- Remediation Coordination: Experience coordinating vulnerability remediation efforts with IT teams, tracking remediation progress, and managing client expectations around timelines and priorities.
- Security Framework Knowledge: Familiarity with cybersecurity frameworks such as NIST Cybersecurity Framework, CIS Critical Security Controls, ISO 27001, and industry-specific compliance requirements.
- Able and willing to obtain a US Security Clearance.
- On-Call Support: Participates in on-call support to assist with security incident response, operational issues, and investigation activities to maintain continuous SOC coverage and response capabilities.
Salary Range: $115,000-135,000
General Description of Benefits