Junior Vulnerability Management Analyst

Roles Responsibilities:

• Assist with analyzing vulnerability scan results from tools such as Tenable, Qualys, or Rapid7.
• Support prioritization efforts using CVSS scores, KEV (Known Exploited Vulnerabilities), EPSS (Exploit Prediction Scoring System), and asset criticality.
• Collaborate with IT and security teams to track remediation status and escalate high-risk findings.
• Monitor public threat intelligence sources to understand the context of vulnerabilities.
• Contribute to the development of dashboards and reports for tracking vulnerabilities and trends.
• Assist in documenting vulnerability management processes and remediation workflows.
• Support compliance and audit requests by providing vulnerability data as needed.
• Learn and follow policies related to patch management and secure configurations.

What we expect of you

We are all different, yet we all use our unique contributions to serve patients.

Basic Qualifications:

Bachelor s degree and 0 to 3 years of experience in cybersecurity or IT operations with exposure to vulnerability or security tools OR

Diploma and 4 to 7 years of experience in cybersecurity or IT operations with exposure to vulnerability or security tools

Must-Have Skills:

• Basic familiarity with vulnerability management platforms (e. g. , Tenable, Qualys, or Rapid7)
• Understanding of basic CVSS scoring and vulnerability classification
• Awareness of cybersecurity concepts such as threat intelligence, patching, and risk assessment
• Foundational knowledge of networking and common IT systems
• Willingness to learn and grow in the field of vulnerability management

Preferred Qualifications:

Good-to-Have Skills:

• Exposure to KEV, EPSS, or similar threat-based scoring frameworks
• Basic experience with scripting languages (e. g. , Python, PowerShell)
• Awareness of cloud security tools (e. g. , AWS Inspector, Azure Defender)
• Familiarity with compliance standards such as NIST, ISO, or PCI-DSS
• CompTIA Security+ (preferred)
• Tenable Certified Nessus Auditor (Preferred)
• Qualys Vulnerability Management Specialist (Preferred)

Soft Skills:

• Analytical Thinking- Comfortable working with data and identifying patterns
• Attention to Detail- Careful review and tracking of vulnerabilities
• Communication Skills- Able to clearly document and explain findings
• Collaboration Teamwork- Works well with cross-functional teams
• Curiosity Continuous Learning- Strong interest in cybersecurity and professional growth
• Problem-Solving Mindset- Seeks practical solutions to real-world security issues