Hiring.fm
Centuria

Vulnerability Management Analyst

Hanscom AFB Full Time
Job Title: Vulnerability Management Analyst
Location: Hanscom AFB, MA
Clearance: Secret
Program: BLITS 3.0

Company/ Program Description:
Centuria, a Service-Disabled Veteran-Owned Small Business (SDVOSB), has been delivering IT, Engineering, and Scientific solutions to the Federal Government since 2002. During our two decades of service, we have earned the trust and respect of our government clients for the simple reason that we have great people who are experts in their fields and take pride and ownership in everything they do.
 
BLITS 3.0 PROGRAM DESCRIPTION: This role will be to directly support the mission of the 66th Air Base Group (66 ABG) to secure information and information systems; to support mission success through effective and efficient service delivery; and to sustain required infrastructure and capabilities. As one part of the greater Air Force Information Network (AFIN) enterprise, the 66 ABG Communications and Information Division (66 ABG/SC) has responsibilities in two categories (1) direct actions in support of Hanscom Air Force Base (HAFB) and geographically separated units (GSUs); and (2) indirect actions to support the AFIN enterprise. Successful solutions for this requirement are expected to have strengths in four areas: integration, flexibility, AFIN knowledge, and technical expertise.
 
Position Summary
The Vulnerability Management Analyst will identify, analyze, and remediate vulnerabilities across enterprise systems. This position requires strong technical and communication skills, with a focus on proactive collaboration and automation-driven patch management. The analyst will leverage ACAS, ARAD (Tanium), and PowerShell scripting to maintain system compliance and reduce risk exposure.
 
Key Responsibilities:
·        Perform vulnerability scanning, assessment, and remediation tracking using ACAS (Nessus/Security Center), ARAD (Tanium), or similar tools.
·        Analyze scan data and coordinate patching activities with system administrators and functional owners.
·        Develop and maintain PowerShell scripts to automate configuration management and patch deployment tasks.
·        Work in Active Directory and Windows Server environments to implement secure baselines and GPO configurations.
·        Coordinate vulnerability closure through ServiceNow or equivalent ticketing systems, ensuring timely and accurate updates.
·        Prepare tracking and status reports on vulnerability status, patch compliance, and risk posture for leadership and compliance reviews.
·        Collaborate with Cybersecurity, IT Operations, and Compliance teams to support RMF and STIG compliance requirements.
·        Proactively communicate findings, remediation guidance, tracking insights, and risk impacts to both technical and non-technical stakeholders.
·        Support HBSS/MECM and related endpoint management tools as required to deploy patches or security updates.
 
Required Skills and Qualifications
·        Strong understanding of Windows OS (Windows 10/11) and Windows Server environments.
·        Experience with vulnerability management tools (e.g., ACAS, Tenable, Nessus, Tanium, Qualys).
·        Demonstrated experience with patch management and configuration management processes.
·        Intermediate to advanced PowerShell scripting for automation and remediation workflows.
·        Working knowledge of Active Directory, Group Policy, and system hardening techniques.
·        Familiarity with enterprise ITSM platforms (ServiceNow preferred).
·        Excellent written and verbal communication skills, including the ability to convey technical details clearly.
·        Proven ability to manage competing priorities in a mission-focused environment.
 
Education and Certifications
·        Active DoD Secret clearance required.
·        CompTIA Security+ CE (or higher certification such as CISSP, CISM)
·        Associate’s degree in Information Technology or related field; additional experience may substitute for education.
·        2+ years of experience in vulnerability management, patch management, or system administration within a DoD or enterprise environment.
 
Preferred Qualifications
·        Experience supporting DoD cybersecurity programs and compliance frameworks (RMF, STIGs, DISA, NIST 800-53).
·        Familiarity with automation/orchestration platforms for patch and configuration management.
·        Excel expertise.
·        Experience creating dashboards and reports for leadership visibility using tools such as Power BI, Tanium, and ServiceNow Performance Analytics.