RemoteLeaf Logo
Log in Sign up

Associate, Vulnerability Assessment

1 week, 3 days ago
United States
Full-time
Entry Level
Security Analyst
Cybersecurity
AWS Azure Bash Burp Suite Cybersecurity GCP HIPAA Penetration Testing PowerShell Python SOC
Apply Now
Coalfire

Coalfire

Coalfire is a cybersecurity advisor that helps organizations avert threats, reduce risk, and turn security into a competitive advantage, fueling their success.

Internet Software & Services
251-1K
Founded 2001
$9M raised
View All Jobs 19

Description

  • Operate, review, or assess vulnerability scanning tool implementations such as Tenable, Qualys, Nexpose, Prisma Cloud, and Burp.
  • Identify, analyze, and report security vulnerabilities across systems, networks, and applications.
  • Provide remediation recommendations for host-based and web application vulnerabilities.
  • Conduct manual validation to confirm vulnerability closure.
  • Analyze raw scan data to produce reports on credential success, inventory validation, and open vulnerabilities.
  • Evaluate client justifications for vendor dependencies, false positives, operational requirements, and risk adjustments.
  • Collaborate with Coalfire team members to deliver vulnerability scan findings, analysis results, and validated justifications on time.
  • Support risk prioritization and help determine mitigating controls to reduce security severity.

Requirements

  • Less than 2 years of vulnerability assessment experience.
  • Experience with a leading vulnerability scan tool such as Tenable, Qualys, Nexpose, Prisma Cloud, or Burp.
  • Bachelor’s degree in Cybersecurity, Information Technology, Computer Science, or equivalent education and experience.
  • Understanding of vulnerability identification, scanning, analysis, remediation tactics, and reporting processes.
  • In-depth knowledge of industry best practices for vulnerability management.
  • Security+ certification, CCSK, AWS Cloud Practitioner, or a comparable certification.
  • Knowledge of security frameworks and regulatory requirements such as ISO, NIST, COBIT, HIPAA/HITECH, and similar standards.
  • Preferred familiarity with at least 3 frameworks such as FedRAMP, FISMA, SOC, ISO, HIPAA, and HITRUST.
  • Preferred experience creating system inventories, boundary diagrams, or POA&M documentation.
  • Preferred familiarity with cloud platforms such as AWS, GCP, and Azure.
  • Preferred familiarity with configuration baseline standards such as CIS and STIG.
  • Preferred experience with scripting languages such as Python, Bash, or PowerShell.

Benefits

  • $86,000 to $96,000 annual salary range.
  • Eligibility for annual incentive, commission, and/or recognition programs.
  • Flexible work model with the ability to work from home or an office.
  • Paid parental leave.
  • Flexible time off.
  • Certification and training reimbursement.
  • Digital mental health and wellbeing support membership.
  • Comprehensive insurance options.

Interested in this position?

Apply directly on the company website

Apply Now

Similar Roles

Recorded Future

Incident Response Analyst

Recorded Future 251-1K Professional Services

Recorded Future is hiring an Incident Response Analyst to support its Enterprise Security team with security operations, incident response, risk management, compliance, and training work across the company’s security function.

United Kingdom Junior Security Analyst
Bash Confluence JIRA Network Security Perl Python SIEM SOC Splunk
1 hour, 53 minutes ago
Signifyd

Risk Intelligence Analyst

Signifyd 251-1K IT Services

Signifyd is hiring a Risk Analyst to join its Risk Intelligence team, focusing on detecting fraud patterns, monitoring risk, and improving payment risk decisioning for e-commerce merchants worldwide.

Brazil Full-time Junior Data Analyst Security Analyst
Looker Machine Learning SQL
7 hours, 57 minutes ago
Tactacam

Security Analyst I

Tactacam 51-250 Household Durables

Tactacam is seeking a Security Analyst to monitor and respond to security threats across its digital infrastructure while supporting vulnerability management, remediation, documentation, and employee security awareness.

United States Full-time Junior Security Analyst
Cybersecurity Network Security SIEM
10 hours, 42 minutes ago
Capgemini

FBS Information Security Analyst (Remote)

Capgemini 100K+ Internet Software & Services

Farmers Information Security’s External Vendor Risk Assessment team is hiring an Information Security Analyst to support cybersecurity assessments of vendors and third parties, manage security risk reviews, and help protect company systems and data.

Mexico Brazil Full-time Senior Security Analyst
Cybersecurity
16 hours, 15 minutes ago

You're on a roll! Sign up now to keep applying.

Sign Up

Already have an account? Log in

Used by 14,729+ remote workers