Job ID: 2504338

Location: WASHINGTON, DC, US

Date Posted: 2025-04-07

Category: Information Technology

Subcategory: IT Security Administrator

Schedule: Full-time

Shift: Day Job

Travel: No

Minimum Clearance Required: None

Clearance Level Must Be Able to Obtain: Public Trust

Potential for Remote Work: Yes

Description

SAIC is seeking a Junior Vulnerability Analyst to join our team in support of a critical U.S. government agency in the National Capital Region. This role offers an exciting opportunity to gain hands-on experience in vulnerability management, issue analysis, and security compliance while working with on-premises and cloud-based security solutions.

The ideal candidate will have foundational knowledge of cybersecurity principles and experience using vulnerability scanning tools such as Nessus, Tenable Security Center, Tenable.IO, Qualys WAS, or NMAP. This role will focus on conducting vulnerability scans, assisting in security assessments, analyzing scan results, and supporting compliance efforts. The Junior Vulnerability Analyst will work closely with senior analysts, IT security teams, and compliance personnel to help maintain the agency's security posture.

Key Responsibilities:

Assist in vulnerability scanning and security assessments across on-premises and cloud environments.

Support web application and device scanning using tools such as Nessus, Security Center, Tenable.IO, Qualys WAS, and NMAP.

Conduct initial review of scan results, verify findings, and assist in prioritizing vulnerabilities for remediation.

Work with senior analysts and IT security teams to track vulnerabilities and support mitigation efforts.

Monitor scan performance, troubleshoot basic scanning issues, and report anomalies to senior team members.

Assist in compiling vulnerability reports, compliance documentation, and risk analysis summaries.

Support vulnerability tracking using ServiceNow, SharePoint, Microsoft SQL, and PowerBI, ensuring that issues are documented and updated as needed.

Help review and maintain security policies and procedures related to vulnerability management and compliance.

Stay current with cybersecurity trends, best practices, and emerging threats to enhance technical knowledge and contribute to security improvements.

Qualifications

Qualifications & Experience:

Bachelor's degree in Cybersecurity, Information Technology, or a related field. May accept an additional 2 years of experience in lieu of a degree.

0-3 years of experience in cybersecurity, IT security operations, or vulnerability management.

Basic experience with vulnerability scanning tools such as Nessus, Security Center, Tenable.IO, Qualys WAS, or NMAP.

Foundational knowledge of patch management, security controls, and vulnerability mitigation.

Familiarity with Excel data analytics for reporting purposes.

Ability to analyze scan results and assist in prioritizing security vulnerabilities.

Preferred Qualifications:

Some experience working in cloud security environments (Azure, AWS, etc.).

Basic scripting knowledge in Python, SQL, PowerShell, or DAX for automating security tasks.

Familiarity with ServiceNow, SharePoint, MS SQL, or PowerBI for vulnerability tracking and documentation.

Industry certifications such as CompTIA Security+, CEH, CySA+, or other entry-level cybersecurity certifications (preferred but not required).

Strong written and verbal communication skills, with the ability to create basic security reports and documentation.

Strong analytical, problem-solving, and organizational skills, with attention to detail.

Ability to work collaboratively with a team and learn from senior security professionals.

Clearance Requirement:

All candidates must be eligible to obtain a U.S. Public Trust Clearance.

**This hybrid role requires a minimum of three on-site days per week in Washington, DC.**

Target salary range: $40,001 - $80,000. The estimate displayed represents the typical salary range for this position based on experience and other factors.

SAIC accepts applications on an ongoing basis and there is no deadline.

Covid Policy: SAIC does not require COVID-19 vaccinations or boosters. Customer site vaccination requirements must be followed when work is performed at a customer site.

SAIC is a premier technology integrator providing full life cycle services and solutions in the technical, engineering, intelligence, and enterprise information technology markets. SAIC is Redefining Ingenuity through its deep customer and domain knowledge to enable the delivery of systems engineering and integration offerings for large, complex projects. SAIC's approximately 15,000 employees are driven by integrity and mission focus to serve customers in the U.S. federal government. Headquartered in Reston, Virginia, SAIC has annual revenues of approximately $4.5 billion. For more information, visit saic.com. For information on the benefits SAIC offers, see .