Vulnerability Analyst

Vulnerability Analyst

Gloucester,United Kingdom

Contract

Skills

CVE (Common Vulnerabilities and Exposures)

Tenable

Vulnerability

CVSS (Common Vulnerability Scoring System).

show less

Job Purpose and primary objectives:

 The Vulnerability Analyst will be responsible for identifying, analyzing, and managing security vulnerabilities within the organization’s IT infrastructure using the Tenable One platform. The role is essential in mitigating security risks, ensuring compliance, and protecting the organization’s assets by working closely with internal teams, vendors, and partners. The analyst will provide clear, actionable reports and recommendations to support the timely remediation of vulnerabilities.

Key responsibilities

 Analyze and manage vulnerabilities using Tenable One platform, working closely with internal teams, partners, and vendors.

 Generate and deliver vulnerability reports, ensuring they are clear and actionable, based on data from Tenable One.

 CVE & CVSS Tracking: Monitor vulnerabilities using CVE (Common Vulnerabilities and Exposures) and assess risk levels using the CVSS (Common Vulnerability Scoring System).

 Collaboration: Work cross-functionally with partners and vendors to manage and remediate vulnerabilities, ensuring timely resolution.

 Tracking & Documentation: Maintain a complete tracking system for all vulnerabilities and remediation activities, providing regular updates and reports to stakeholders.

 Compliance: Ensure all vulnerability management practices meet regulatory and security compliance requirements.

Key Skills/Knowledge/Experience :

 SC Clearance (Active).

 Proficiency in using Tenable One for vulnerability scanning, tracking, and reporting.

 Strong knowledge of CVE and CVSS frameworks.

 Experience with vulnerability lifecycle management from identification to remediation.

 Excellent report-writing skills with the ability to translate technical findings into business impact.

 Strong collaboration skills for working with vendors, partners, and internal teams.

 Understanding of compliance standards and best practices in Vulnerability Management.