Location: Remote (RO)
Employment Type: Freelance/6 months

Role Overview

We are seeking a Vulnerability Analyst to identify, assess, and mitigate security vulnerabilities across diverse IT infrastructures and enterprise systems. You will leverage industry-standard tools and methodologies to help strengthen clients security posture while ensuring compliance with internal and regulatory standards.

Key Responsibilities

• Conduct vulnerability assessments using tools such as Nessus, Qualys, Rapid7, or OpenVAS.

• Validate automated scan results manually to eliminate false positives.

• Assess exploitability and business impact of discovered vulnerabilities.

• Generate detailed technical and executive-level reports with actionable remediation guidance.

• Prioritize vulnerabilities using CVSS scoring and business risk context.

• Collaborate with IT and security teams to define remediation strategies and validate fixes.

• Support compliance efforts (PCI, ISO 27001, etc.) and maintain vulnerability databases.

• Stay up-to-date on emerging threats, exploits, and assessment tools.

Requirements

• 1-3 years of experience in cybersecurity or IT security roles.

• Proficiency with vulnerability management tools (Nessus, Qualys, Rapid7, OpenVAS).

• Strong knowledge of OWASP Top 10, SANS Top 25, and network/application security.

• Familiarity with Python, PowerShell, or Bash for automation.

• Understanding of CVSS scoring and risk assessment.

• Excellent analytical and communication skills.

• Eligible for UK SC Clearance.

Preferred Certifications

CEH, Security+, GCIH, or CREST Practitioner Security Analyst (CPSA).