Job Description

Key Responsibilities

• Conduct vulnerability assessments on networks, servers, applications, and databases using automated and manual tools.
• Analyze scan results and prioritize vulnerabilities based on risk and business impact.
• Collaborate with IT, development, and cybersecurity teams to remediate identified vulnerabilities.
• Perform configuration reviews and security audits to ensure compliance with security standards.
• Maintain accurate records of findings, remediation actions, and vulnerability trends.
• Stay updated with the latest vulnerabilities, threats, and cybersecurity tools.
• Prepare detailed reports for technical teams and executive management highlighting risks and recommendations.
• Contribute to continuous improvement of vulnerability assessment methodologies and best practices.

Education

• Bachelor’s degree in Cybersecurity, Computer Science, Information Technology, or a related field.
• Advanced certifications or training in vulnerability assessment and cybersecurity are preferred.

Skills and Experience

• 5 years of experience in vulnerability assessment, penetration testing, or cybersecurity operations.
• Proficiency with vulnerability scanning tools such as Nessus, Qualys, OpenVAS, or Rapid7.
• Strong understanding of network protocols, operating systems, and application security.
• Ability to analyze and prioritize vulnerabilities based on risk.
• Basic scripting skills (Python, Bash, PowerShell) for automation and reporting are a plus.
• Excellent analytical, documentation, and communication skills.
• Ability to work collaboratively with cross-functional teams.

Professional Certifications (Preferred)

• CEH – Certified Ethical Hacker
• CompTIA Security+
• OSCP – Offensive Security Certified Professional (optional for advanced VA roles)
• GIAC GSEC / GPEN – for vulnerability assessment and penetration testing expertise