Information Security Associate - 3 Years Exp

Overview

Hybrid
$35 - $38
Contract - W2
Contract - 12 Month(s)

Skills

Security
cybersecurity

Job Details

Job Summary
The Vulnerability Management Analyst plays a key role in identifying, analyzing, and mitigating security risks across the organization. This position supports vulnerability assessments, threat intelligence gathering, and cross-functional remediation efforts, while ensuring alignment with regulatory and compliance requirements.

Key Responsibilities

  • Monitor and analyze vulnerability assessment data to identify risks and communicate findings to stakeholders.

  • Classify and assess the impact of newly discovered vulnerabilities within the organization s environment.

  • Conduct and support vulnerability assessments, penetration tests, and social engineering exercises.

  • Provide insights into emerging cyber threats, including attacker tactics, techniques, and procedures (TTPs).

  • Drive remediation efforts by coordinating with application, infrastructure, and operations teams.

  • Ensure timely resolution of identified security gaps through active tracking and collaboration.

  • Support the execution of the vulnerability management program in alignment with organizational security goals.

  • Deliver regular risk and remediation updates to senior leadership.

  • Assist in identifying gaps in vulnerability management capabilities and propose solutions.

  • Respond to client and third-party audits, security inquiries, and vulnerability-related questionnaires.

  • Operate and manage tools such as DLP, code scanners, internal/external scanning and scoring platforms to identify and address security control deficiencies.

  • Participate in the software development lifecycle (SDLC) to ensure security is embedded by design.

  • Foster strong working relationships across technical and business teams to promote alignment, compliance, and timely remediation.

  • Collaborate with cross-functional stakeholders to improve the overall security posture and integrate security into IT and operational workflows.

  • Support audits, regulatory assessments, and certifications by providing vulnerability data and remediation documentation.

  • Prepare executive-level briefings on vulnerability findings and associated risks.

  • Aggregate and analyze vulnerability data from multiple scanning tools for trend reporting and risk assessments.

  • Stay current with industry trends and continuously enhance skills and knowledge to support the IS function effectively.

Basic Qualifications

  • Bachelor s degree in Computer Science, Information Technology, or a related field.

  • Minimum of 3 years of experience in Information Security, IT Risk, or Compliance.

  • Experience with frameworks and standards such as SOC 1/2, ISO 27001/2, PCI DSS, HITRUST, SANS, and NIST.

  • Strong understanding of enterprise IT systems and security infrastructure.

  • Proven ability to manage multiple projects, prioritize tasks, and deliver on deadlines.

  • Strong communication skills with the ability to convey complex technical issues to non-technical audiences.

  • Analytical mindset with excellent problem-solving and organizational skills.

  • Experience managing enterprise-grade security and intrusion detection systems in regulated environments.

  • Ability to work collaboratively across departments to drive remediation and compliance.

Employers have access to artificial intelligence language tools (“AI”) that help generate and enhance job descriptions and AI may have been used to create this description. The position description has been reviewed for accuracy and Dice believes it to correctly reflect the job opportunity.

About Abacus Service Corporation