×
Apply for Jobs Apply for Jobs Post a Job Post a Job Local Jobs Home
Register Here to Apply for Jobs or Post Jobs. X
More jobs:
Cybersecurity Information Security

Vulnerability Analyst

Job in Oak Ridge, Anderson County, Tennessee, 37830, USA
Listing for: Consolidated Nuclear Security
Full Time position
Listed on 2026-06-05
Job specializations:
  • IT/Tech
    Cybersecurity, Information Security
Salary/Wage Range or Industry Benchmark: 80000 - 100000 USD Yearly USD 80000.00 100000.00 YEAR
Job Description & How to Apply Below

Career Opportunities:
Vulnerability Analyst (19322)

Requisition
19322
-Posted
- Technology
- Level of Experience (3)
- Travel - 30% or less
- Job Location Options (1)

Location: Oak Ridge, TN
Job Title: Vulnerability Analyst
Career Level From: Associate
Career Level To: Senior Specialist
Job Specialty: Cyber Security

What You’ll Do

The Vulnerability Analyst is responsible for analyzing key data streams and interpreting threats, vulnerabilities, impacts, and likelihood of asset exposure. The aggregation of ingested data informs analysis with key identifiers to generate a holistic view of the enterprise and provide recommended mitigations and/or remediation of possible exploitable assets. The analyst also assists Vulnerability and Compliance Assessment Management with cyber analysis to support requested exception requests.

Responsible for cybersecurity assessment/analysis and provides recommendations for Enterprise level systems and applications designs. Involved in a wide range of cybersecurity areas, including system architectures, firewalls, inspection and analysis tools, encryption components and networking architectures. Involved in security reporting and analysis to regulatory agencies.

Position Duties and Responsibilities
  • Identify systemic security issues based on the analysis of vulnerability and configuration data.
  • Share meaningful insights about the context of an organization’s threat environment that improve its risk management posture.
  • Apply cybersecurity and privacy principles to organizational requirements (relevant to confidentiality, integrity, availability, authentication, and non-repudiation).
  • Host/network access control mechanisms (e.g., access control list, capabilities lists).
  • Conduct vulnerability scans and recognize vulnerabilities in security systems.
  • Assess robustness of security systems and designs.
  • Detect host and network-based intrusions via intrusion detection technologies (e.g., Snort).
  • Ability to mimic threat behaviors.
  • Support penetration testing tools and techniques.
  • Use social engineering techniques (e.g., phishing, baiting, tailgating, etc.).
  • Support network analysis tools to identify vulnerabilities (e.g., fuzzing, nmap, etc.).
  • Review logs to identify evidence of past intrusions.
  • Conduct application vulnerability assessments.
  • Develop insights about the context of an organization’s threat environment.
  • Analyze organization's cyber defense policies and configurations and evaluate compliance with regulations and organizational directives.
  • Maintain knowledge of applicable cyber defense policies, regulations, and compliance documents specifically related to cyber defense auditing.
What You Can Expect
  • Meaningful work and unique opportunities to support missions vital to national and global security
  • Top-notch, dedicated colleagues
  • Generous pay and benefits with a stable organization
  • Career advancement and professional development programs
  • Work-life balance fostered through flexible work options and wellness initiatives
  • Bachelor’s degree in engineering/science/information technology discipline.
  • Master’s degree in engineering/science/information technology discipline.
  • Eight or more years of education and/or relevant experience may be considered to satisfy educational and years‑of‑experience requirements for this posting.
Preferred Job Requirements
  • Knowledge of computer networking concepts and protocols, and network security methodologies.
  • Knowledge of laws, regulations, policies, and ethics as they relate to cybersecurity and privacy.
  • Knowledge of cybersecurity threats and vulnerabilities.
  • Knowledge of risk management processes (e.g., methods for assessing and mitigating risk).
  • Knowledge of cryptography and cryptographic key management concepts.
  • Knowledge of cybersecurity specific operational impacts of cybersecurity lapses.
  • Knowledge of cybersecurity application vulnerabilities.
  • Knowledge of network access, identity, and access management (e.g., public key infrastructure, Oauth, OpenID, SAML, SPML).
  • Knowledge of how traffic flows across the network (e.g., Transmission Control Protocol [TCP] and Internet Protocol [IP], Open System Interconnection Model [OSI], Information Technology Infrastructure Library, current…
To View & Apply for jobs on this site that accept applications from your location or country, tap the button below to make a Search.
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).
 
 
 
Search for further Jobs Here:
(Try combinations for better Results! Or enter less keywords for broader Results)
Location
Increase/decrease your Search Radius (miles)
0
200
Filters
Education Level
Experience Level (years)
Posted in last:
Salary
Advanced Search