The final salary or hourly wage, as applicable, paid to each candidate/applicant for this position is ultimately dependent on a variety of factors, including, but not limited to, the candidate’s/applicant’s qualifications, skills, and level of experience as well as the geographical location of the position.

Applicants must be legally authorized to work in the United States. Sponsorship not available.

Our client is seeking a Vulnerability & Risk Analyst in Vienna, VA

Role Description

• Vulnerability Assessment: Experience conducting vulnerability assessments using industry-standard tools such as Nessus and Rapid7. Proficient in identifying, categorizing, and prioritizing vulnerabilities across networks, systems, applications, and cloud platforms.
• Risk Analysis and Management: Skilled in applying risk frameworks to analyze threat landscapes, estimate potential impacts, and design practical risk mitigation strategies. Adept at translating technical findings into business risks for executive stakeholders.
• Security Architecture Review: Demonstrated ability to review and evaluate infrastructure and application architectures for security gaps, recommending controls and improvements to strengthen resilience against attacks.
• Incident Response Support: Familiarity with incident detection, investigation, containment, and remediation, supporting security operations teams with actionable vulnerability and risk intelligence.
• Threat Intelligence Integration: Ability to consume, analyze, and act upon threat intelligence feeds and advisories, correlating external threat data with internal findings to enhance situational awareness.

Skills & Requirements

• Program Support: Supported vulnerability management programs, coordinated and ensured timely remediation of critical findings. Supported delivery of projects within scope and budget, contributing to organizational security posture improvement.
• Policy and Procedure Development: Authored and updated vulnerability management policies, risk assessment templates, and reporting standards, aligning with regulatory and compliance requirements (e.g., GDPR, HIPAA, PCI DSS, SOX).
• Audit and Compliance: Supported internal and external audits, providing evidence for vulnerability scans, risk assessments, and remediation efforts. Ensured controls were effectively designed and operating as intended.
• Metrics and Reporting: Developed dashboards and reports for senior management, visualizing trends in vulnerabilities, threat activity, and risk levels. Used data-driven insights to support strategic decision-making and resource allocation.
• vulnerability: hands on experience with nessus and rapid7. Ability to identify, categorize, and prioritize vulnerabilities across networks, systems, applications, and cloud platforms
• Risk mgmt: Skilled in applying risk frameworks to assess threats and design mitigation strategies. Capable of translating technical findings into business risks for executive stakeholders
• Experience evaluating infra and application architectures
• Able to recommend security controls and improvements
• Familiarity with incident detection, investigation, and remediation
• Ability to integrate and act on threat intelligence feeds to enhance situational awareness
• Experience authoring vulnerability mgmt policies and risk templates

Benefits/Other Compensation

This position is a contract/temporary role where Hays offers you the opportunity to enroll in full medical benefits, dental benefits, vision benefits, 401K and Life Insurance ($20,000 benefit).

Why Hays?

You will be working with a professional recruiter who has intimate knowledge of the industry and market trends. Your Hays recruiter will lead you through a thorough screening process in order to understand your skills, experience, needs, and drivers. You will also get support on resume writing, interview tips, and career planning, so when there’s a position you really want, you’re fully prepared to get it.

Nervous about an upcoming interview? Unsure how to write a new resume?

Visit the Hays Career Advice section to learn top tips to help you stand out from the crowd when job hunting.

Hays is committed to building a thriving culture of diversity that embraces people with different backgrounds, perspectives, and experiences. We believe that the more inclusive we are, the better we serve our candidates, clients, and employees. We are an equal employment opportunity employer, and we comply with all applicable laws prohibiting discrimination based on race, color, creed, sex (including pregnancy, sexual orientation, or gender identity), age, national origin or ancestry, physical or mental disability, veteran status, marital status, genetic information, HIV-positive status, as well as any other characteristic protected by federal, state, or local law. One of Hays’ guiding principles is ‘do the right thing’.
We also believe that actions speak louder than words.
In that regard, we train our staff on ensuring inclusivity throughout the entire recruitment process and counsel our clients on these principles. If you have any questions about Hays or any of our processes, please contact us.

In accordance with applicable federal, state, and local law protecting qualified individuals with known disabilities, Hays will attempt to reasonably accommodate those individuals unless doing so would create an undue hardship on the company. Any qualified applicant or consultant with a disability who requires an accommodation in order to perform the essential functions of the job should call or text 813.336.5570.

Drug testing may be required; please contact a recruiter for more information.

#LI-DNI