Sign upLog in
JobsJobs in MassachusettsJobs in Boston, MABusiness Jobs in Boston, MABusiness Analyst Jobs in Boston, MA

Vulnerability Management Analyst

LanceSoft Inc

Boston, MA

Apply
JOB DETAILS
SALARY
$60–$62 Per Hour
SKILLS
Amazon Web Services (AWS), Analysis Skills, Cloud Computing, Communication Skills, Computer Security, Continuous Improvement, Cross-Functional, Data Analysis, Data Quality, Data Sets, Data Visualization, Decision Support, Detail Oriented, Enterprise Protection, Error Handling, Establish Priorities, GCP (Good Clinical Practices), Hybrid Cloud, ISO (International Organization for Standardization), Information/Data Security (InfoSec), Leadership, Maintain Compliance, Metrics, Microsoft Windows Azure, Operational Support, PCI-DSS, Problem Solving Skills, Reporting Dashboards, Risk, Risk Management, Root Cause Analysis, Security Analysis, Security Information and Event Management (SIEM), Software Engineering, Tableau, Trend Analysis, U.S. National Institute of Standards and Technology (NIST)
LOCATION
Boston, MA
POSTED
1 day ago
The Vulnerability Management and Configuration Assurance (VMCA) Analyst plays a critical role in identifying, assessing, and reducing cyber risk across the enterprise by delivering effective vulnerability management and configuration assurance capabilities. This role is responsible for driving visibility into vulnerabilities and misconfigurations, ensuring alignment with secure baseline standards, and enabling risk-informed remediation across on-premises, cloud, and hybrid environments.
 
The analyst leverages enterprise security tools and data analytics to assess vulnerabilities, monitor configuration compliance, and provide actionable insights that strengthen the organization’s overall security posture. This includes analyzing scan results, prioritizing remediation efforts based on risk and exploitability, and implementing compensating controls where necessary.
 
Working closely with cross-functional teams—including Infrastructure, Cloud, Engineering, and Business Information Security Officers (BISOs)—the VMCA Analyst ensures that vulnerabilities are effectively remediated and configuration standards are consistently applied. The role also supports governance, audit readiness, and executive reporting by delivering clear, accurate, and actionable risk metrics and insights.
 
Skills:
Vulnerability Management Tools: Hands-on experience with enterprise scanning platforms (e.g., Qualys, Wiz, Tenable, Rapid7) to identify, assess, and track vulnerabilities across endpoints, servers, and cloud services.
 
Risk-Based Vulnerability Analysis: Strong understanding of CVSS scoring, exploitability, and threat context (e.g., MITRE ATT&CK) to prioritize vulnerabilities based on risk and business impact.
 
Configuration Assurance & Compliance: Experience assessing and validating secure configurations using automated compliance tools and aligning controls to frameworks such as CIS, NIST, ISO, and PCI-DSS.
 
Data Analytics & Visualization: Ability to analyze large datasets to identify trends, anomalies, and risk concentrations, and to develop dashboards and reporting (e.g., Tableau) for technical and executive audiences.
 
Cloud & Platform Security: Knowledge of cloud platforms (AWS, Azure, GCP), container environments, and hybrid infrastructure, including associated vulnerability and configuration risks.
 
Security Tool Integration: Experience integrating vulnerability and configuration data into enterprise platforms such as SIEM, GRC, and ticketing systems to support governance and operational workflows.
 
Core Strengths
Risk-Based Decision Making: Ability to evaluate vulnerabilities and misconfigurations based on risk, exploitability, and business impact, enabling effective prioritization and remediation strategies.
 
Analytical Thinking & Problem Solving: Strong capability to analyze complex security data, identify trends and root causes, and translate findings into actionable insights.
 
Attention to Detail & Audit Readiness: High level of accuracy in validating vulnerability data, configuration compliance, and exception handling, ensuring outputs are audit-ready and defensible.
 
Communication & Executive Reporting: Ability to clearly articulate technical risks and remediation status to both technical teams and senior leadership, supporting informed decision-making.
 
Collaboration & Influence: Proven ability to work across cross-functional teams to drive remediation, enforce security standards, and improve overall security posture.
 
Operational Ownership & Continuous Improvement: Proactive mindset focused on enhancing vulnerability management processes, reducing risk exposure, and improving control effectiveness across the enterprise.
 
Education:     
  • Bachelors Degree.

About the Company

L

LanceSoft Inc

We are a $125 Million, NMSDC-certified Minority & Woman owned Workforce Solutions Company headquartered in the DC metro area with presence across US with global presence - Canada, Mexico, India, UK, Malaysia, Indonasia, Hongkong, Singapore, UAE. We are specialized in providing Workforce Solutions, SOW project delivery, Engineering Solutions, Creative Services. We currently support 100+ Fortune companies globally and across multiple industry segments. We are currently supporting several massive programs across industry segment nationally/globally (Intel, Ally, AMD, QUALCOMM, Morgan Stanley, Kraft/ Mondelez, MNP, Amdocs, Dell, SanDisk, Medtronic, Becton Dickinson, GE, Lockheed Martin, UTC, L-3 Communications, Caterpillar, BMW, Mercedes Benz, National Grid, Dominion, Energy Future Holdings, PSEG, 3M, Fidelity, Aetna, Humana, Johnson & Johnson, Pfizer, Merck etc). 

All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender, identity, national origin, disability, or protected veteran status.

COMPANY SIZE
2,000 to 2,499 employees
INDUSTRY
Staffing/Employment Agencies
FOUNDED
2000
WEBSITE
http://www.lancesoft.com/

Resume Resources

Free Resume TemplatesFree Resume Builder