×
Register Here to Apply for Jobs or Post Jobs. X

Vulnerability & Risk Management Specialist Security Clearance

Job in Oak Ridge, Anderson County, Tennessee, 37830, USA
Listing for: DeMase Technical Services, LLC
Full Time position
Listed on 2026-07-17
Job specializations:
  • IT/Tech
    Cybersecurity, Information Security, Security Management & Operations, Network Security
Job Description & How to Apply Below
Position: Vulnerability & Risk Management Specialist with Security Clearance
DeMase Technical Services is a Women-Owned Small Business created by experts in the cybersecurity, energy, nuclear, and defense markets. We offer best-in-class solutions for nuclear facility licensing, permitting, startup, operations, cybersecurity, and next generation technologies. DeMase provides expert professionals in the fields of cybersecurity, next generation information technologies, nuclear engineering, nuclear technologies, and environmental management. Our cybersecurity team is an industry leader supporting the Cybersecurity Maturity Model Certification (CMMC) ecosystem.

DeMase is an expert authorized CMMC C3

PAO and full-service CMMC provider for readiness and certification. View our website for more information.

Employment type:

Full-Time The Vulnerability & Risk Management Specialist is responsible for identifying, assessing, monitoring, and helping mitigate cybersecurity risks across all enterprise systems, including unclassified, classified, industrial control systems, and cloud system environments. This role combines vulnerability management expertise with SOC‑level monitoring, detection, correlation, and response activities to ensure strong continuous monitoring and defense‑in‑depth across the organization. This role requires an active DOE Q security clearance (or equivalent DoD TS).

Vulnerability Management:
• Conducts scheduled and ad‑hoc vulnerability scans using approved scanning tools, e.g., Nessus, Defender, Ninja One;
• Analyzes scan results, validates true positives, prioritizes findings based on exploitability, risk, and mission impact;
• Addresses vulnerabilities in collaboration with the ISSO, System Administrators, and Network Administrators based on access control roles;
• Maintains and updates vulnerability tracking dashboards, reports, and remediation timelines; and
• Supports RMF continuous monitoring by documenting vulnerabilities into POA&Ms and tracking mitigation progress.

Risk Management:

• Performs risk assessments for changes, new systems, and emerging threats;
• Maintains the organizational risk register and supports risk scoring based on likelihood and impact;
• Maps vulnerabilities to NIST control weaknesses and support corrective actions;
• Contributes to SSP updates, risk acceptance decisions, and risk mitigation strategies; and
• Provides security risk guidance for new projects, technologies, and system architectures. SOC (Security Operations Center) Capabilities:
• Reviews and monitors SIEM alerts, logs, and security telemetry for indicators of compromise (IOCs);
• Correlates vulnerability data with SOC detection events to identify active exploitation attempts; and
• Tunes detection rules/signatures based on vulnerabilities, threat intelligence, or observed behaviors. Incident Response Support:
• Provides vulnerability context during incident triage, e.g., known exploited CVEs, system exposure;
• Assists Incident Response teams with containment and remediation actions; and
• Contributes to root cause analysis reports and incident documentation. Threat Intelligence Integration:
• Reviews external and internal threat intelligence feeds for emerging threats and new exploit activity;
• Maps threats to assets using vulnerability data to identify high‑risk systems; and
• Recommends prioritization changes based on exploitation trends and threat actor TTPs. Security Tooling & Analytics:
• Works with SIEM, SOAR, EDR, NDR, and log analysis tools to improve detection fidelity; and
• Creates custom alert logic or correlation rules based on vulnerabilities, misconfigurations, or risk indicators. Continuous Monitoring:
• Contributes to the organization’s continuous monitoring program: log review and alert response. Basic qualifications
• Active DOE Q security clearance (or equivalent DoD TS)
• Strong experience with vulnerability scanning and SOC tools and frameworks, e.g., Nessus, Qualys, Defender, Sentinel, Sentinel One, Ninja One, etc.
• Understanding of CVE, CVSS, KEV catalogs, and exploitability scoring
• Hands‑on experience with SIEM tools
• Familiarity with SOC processes, e.g., Tier 1/2 monitoring, triage, escalation paths
• Knowledge of MITRE ATT&CK,…
To View & Apply for jobs on this site that accept applications from your location or country, tap the button below to make a Search.
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).
 
 
 
Search for further Jobs Here:
(Try combinations for better Results! Or enter less keywords for broader Results)
Location
Increase/decrease your Search Radius (miles)
0
200
Filters
Education Level
Experience Level (years)
Posted in last:
Salary