Sr. Analyst, Vulnerability Reporting

Sr. Analyst, Vulnerability Reporting- Permanent - Miami, FL - ($115000.00 -$115000.00)

The final salary or hourly wage, as applicable, paid to each candidate/applicant for this position is ultimately dependent on a variety of factors, including, but not limited to, the candidate's/applicant's qualifications, skills, and level of experience as well as the geographical location of the position.

The end client is unable to sponsor or transfer visas for this position; all parties authorized to work in the US without sponsorship are encouraged to apply.

Our client is seeking a Sr. Analyst, Vulnerability Reporting in Miami, FL.

Role Description

The purpose of this position is for a highly skilled and experienced Senior Vulnerability Management Analyst to join our Information Security team. The ideal candidate will be responsible for identifying and assessing vulnerabilities across our IT infrastructure. This role requires a deep understanding of cybersecurity principles, strong analytical skills, and the ability to work collaboratively with various teams to enhance our security posture.
Develop and track key performance indicators (KPIs) to measure the effectiveness of the vulnerability management program
Generate regular reports on the status of vulnerabilities and remediation efforts
Ensure tools are properly configured and integrated with other security and IT systems
Conduct regular vulnerability assessments using tools such as Qualys
Collaborate with IT and development teams to ensure timely remediation of identified vulnerabilities

Skills & Requirements

5-8+ years of experience in cybersecurity, vulnerability management, risk reporting, or related information security functions, with demonstrated progression in responsibility
Strong experience working with vulnerability scanning and management tools (e.g., Tenable, Qualys, Rapid7) and interpreting findings across infrastructure, applications, and cloud environments
Proven ability to analyze vulnerability data, assess risk and business impact, and produce clear, executive-ready reports and metrics
Experience partnering with infrastructure, application, and engineering teams to track remediation, validate fixes, and manage risk acceptance
Solid understanding of common security frameworks and standards (e.g., CVSS, NIST, CIS, ISO) and how vulnerabilities map to compliance and risk programs
Bachelor's degree in Information Security, Computer Science, Engineering, or a related field, or equivalent practical experience
Scope: The Senior Vulnerability Management Reporting Analyst serves as a key contributor within the organization's Cybersecurity and Risk Management function, transforming complex vulnerability data into clear, actionable insights that guide strategic decisions across both shoreside operations and the global fleet. Operating as a subject matter expert, the role collaborates with IT, Security Operations, Infrastructure, Compliance, and Fleet Technology teams to ensure consistent reporting, accurate risk visibility, and effective prioritization of remediation efforts. With enterprise wide reach and influence, the analyst strengthens the organization's overall security posture by maintaining a unified reporting framework, improving data quality, and enabling leadership at all levels to understand and act on emerging risks that impact global operations and critical assets.
Problem solving: The core problem this new role is designed to solve is the lack of clear, consistent, and actionable visibility into the organization's vulnerability posture across both shore and fleet environments. Right now, vulnerability data often lives in multiple systems, is interpreted differently by different teams, and doesn't always translate into meaningful insights that drive timely remediation or informed decision making. By centralizing reporting, standardizing metrics, and elevating analysis, the Senior Vulnerability Management Reporting Analyst closes the gap between raw technical data and the strategic understanding leaders need to manage cyber risk effectively across a global, highly distributed operation.
Impact: This role creates a ripple effect across the entire organization because it finally gives the business a unified, trustworthy view of cyber risk something that has been difficult to achieve across diverse shore and fleet environments. By elevating the quality, consistency, and clarity of vulnerability reporting, the role enables leaders to make faster, more informed decisions, helps technical teams prioritize the right remediation work, and strengthens compliance efforts across global operations. It reduces blind spots, improves coordination between departments, and ultimately raises the organization's overall security maturity. The impact is enterprise wide: better risk visibility, stronger protection of critical assets, and a more resilient business.
Leadership: This position will need to have strong leadership skills to be able to work with multiple different brands but will have no direct reports.

Benefits/Other Compensation

Why Hays?

You will be working with a professional recruiter who has intimate knowledge of the industry and market trends. Your Hays recruiter will lead you through a thorough screening process in order to understand your skills, experience, needs, and drivers. You will also get support on resume writing, interview tips, and career planning, so when there's a position you really want, you're fully prepared to get it.

Nervous about an upcoming interview? Unsure how to write a new resume?

Visit the Hays Career Advice section to learn top tips to help you stand out from the crowd when job hunting.

Hays is committed to building a thriving culture of diversity that embraces people with different backgrounds, perspectives, and experiences. We believe that the more inclusive we are, the better we serve our candidates, clients, and employees. We are an equal employment opportunity employer, and we comply with all applicable laws prohibiting discrimination based on race, color, creed, sex (including pregnancy, sexual orientation, or gender identity), age, national origin or ancestry, physical or mental disability, veteran status, marital status, genetic information, HIV-positive status, as well as any other characteristic protected by federal, state, or local law. One of Hays' guiding principles is 'do the right thing'.
We also believe that actions speak louder than words.
In that regard, we train our staff on ensuring inclusivity throughout the entire recruitment process and counsel our clients on these principles. If you have any questions about Hays or any of our processes, please contact us.

In accordance with applicable federal, state, and local law protecting qualified individuals with known disabilities, Hays will attempt to reasonably accommodate those individuals unless doing so would create an undue hardship on the company. Any qualified applicant or consultant with a disability who requires an accommodation in order to perform the essential functions of the job should call or text .

Drug testing may be required; please contact a recruiter for more information.

#LI-DNI