Apply

Ready to go for it?

AI Apply speeds things up—apply directly if you prefer.

FREE ACCESS
5,000–10,000 jobs/day
JobTailor Logo

See all jobs on JobTailor

Search thousands of fresh jobs every day.

Discover
  • Fresh listings
  • Fast filters
  • No subscription required
Create a free account and start exploring right away.
Dragonfli Group

Vulnerability Management Analyst

Dragonfli Group

Vulnerability Management Analyst in a cybersecurity advisory firm managing federal cybersecurity initiatives. Responsible for vulnerability management programs and stakeholder engagement.

Posted 6/2/2026full-timeRemote • 🇺🇸 United StatesMid-LevelSeniorWebsite

Tech Stack

Tools & technologies
Cyber SecurityITSMServiceNow

About the role

Key responsibilities & impact
  • Lead and manage end-to-end vulnerability disclosure programs (VDP), including coordination with ethical hackers, system owners, and agency stakeholders.
  • Own attack surface management programs (e.g., CISA FAST), including scheduling, scope management, findings coordination, and POA&M documentation.
  • Manage and update Standard Operating Procedures (SOPs), SharePoint repositories, and program tracking documentation.
  • Operate and maintain enterprise vulnerability scanning platforms including Tenable.sc, Tenable.io, and web application scanning tools.
  • Scope, schedule, execute, and report on vulnerability scans across large, complex federal environments.
  • Track and drive remediation of critical, high, and all severity-tiered vulnerabilities to closure within program SLAs.
  • Build and maintain working relationships with CISA contacts, agency system owners, SOC personnel, and contractor teams.

Requirements

What you’ll need
  • 3+ years of hands-on vulnerability management experience within a federal agency environment.
  • Demonstrated program ownership: VDP, attack surface management, or equivalent independently managed programs.
  • Proficiency with Tenable.sc and/or Tenable.io (scan configuration, report generation, false positive management).
  • Experience with CISA programs (VDP, FAST, BOD compliance) or equivalent federal cybersecurity initiatives.
  • Working knowledge of ServiceNow or equivalent ITSM platforms for ticket management.
  • Ability to produce clean, accurate SOPs, POA&Ms, and stakeholder-facing documentation.
  • Bachelor's degree in Computer Science, Information Technology, Cybersecurity, or equivalent practical experience.
  • Active security clearance or eligibility to obtain one preferred.

Benefits

Comp & perks
  • Health, Dental, and Vision Insurance
  • PTO
  • 401(k)
  • Remote work flexibility
  • Exposure to high-impact federal cybersecurity programs
  • Direct access to firm leadership and career development opportunities

ATS Keywords

✓ Tailor your resume
Applicant Tracking System Keywords

Tip: use these terms in your resume and cover letter to boost ATS matches.

Hard Skills & Tools
vulnerability managementvulnerability disclosure programsattack surface managementvulnerability scanningreport generationfalse positive managementSOP documentationPOA&M documentationprogram trackingremediation tracking
Soft Skills
leadershipcommunicationrelationship buildingcoordinationorganizational skills
Certifications
Bachelor's degree in Computer ScienceBachelor's degree in Information TechnologyBachelor's degree in CybersecurityActive security clearance