Vulnerability Assessment Analyst

Vulnerability Assessment Analyst

As part of a mission‑driven team supporting the Army, you will identify, analyze, and report security vulnerabilities across systems, applications, and networks. You will also perform vulnerability scans, analyze results to identify weaknesses and potential attack vectors, assess severity based on risk frameworks, recommend remediation actions, prepare vulnerability reports, track remediation progress, and maintain accurate records of assessments. Your work directly supports the Army’s readiness and national mission response.

• Identify, analyze, and report security vulnerabilities across systems, applications, and networks.
• Perform vulnerability scans and analyze results to identify weaknesses and potential attack vectors.
• Assess severity and impact of vulnerabilities based on risk frameworks.
• Recommend remediation actions and prepare vulnerability reports.
• Track remediation progress and maintain accurate records of assessments.

• 5+ years of experience in vulnerability management and analysis.
• Experience working in an environment with SOC operations and cybersecurity engineers.
• Experience with enterprise vulnerability scanning tools such as Tenable.sc, Nessus, or ACAS.
• Experience generating reports to measure progress in meeting vulnerability remediation targets such as POAMs.
• Knowledge of federal cybersecurity frameworks such as NIST 800-53 controls.
• Knowledge of CVSS, CVE, NVD, and threat intelligence sources.
• Ability to evaluate the risk of identified vulnerabilities and prepare remediation instructions for system administrators.
• TS/SCI clearance.
• HS diploma or GED.
• Information Security Certification such as CEH, CompTIA Security+, CASP+, or CompTIA Security X Certification.

• Experience working in ARNG, DA, or DoD/DoW environments.
• Possession of excellent verbal and written communication skills.
• Bachelor's degree.
• Advanced Information Security Certification such as CISSP, ISSEP, CISM, or CCSP Certification.

Applicants selected will be subject to a security investigation and may need to meet eligibility requirements for access to classified information. TS/SCI clearance is required.

Salary is determined by various factors including location, education, skills, and experience. The projected compensation range for this position is $86,800.00 to $ annually. This range reflects the typical salary for the role and is one component of the total compensation package.

• Remote:
  May require occasional on‑site work at Booz Allen or customer facility.
• Hybrid:
  Expected to work from a Booz Allen facility frequently; may also be required to work from or visit a customer facility.
• Onsite:
  Work will primarily be performed at a Booz Allen office or customer facility.

All qualified applicants will receive consideration for employment without regard to disability, status as a protected veteran, or any other status protected by applicable federal, state, local, or international law.