Romania onlyLocation: Remote (RO)
Employment Type: Freelance/6 months
Role Overview
We are seeking a Vulnerability Analyst to identify, assess, and mitigate security vulnerabilities across diverse IT infrastructures and enterprise systems. You will leverage industry-standard tools and methodologies to help strengthen clients security posture while ensuring compliance with internal and regulatory standards.
Key Responsibilities
Conduct vulnerability assessments using tools such as Nessus, Qualys, Rapid7, or OpenVAS.
Validate automated scan results manually to eliminate false positives.
Assess exploitability and business impact of discovered vulnerabilities.
Generate detailed technical and executive-level reports with actionable remediation guidance.
Prioritize vulnerabilities using CVSS scoring and business risk context.
Collaborate with IT and security teams to define remediation strategies and validate fixes.
Support compliance efforts (PCI, ISO 27001, etc.) and maintain vulnerability databases.
Stay up-to-date on emerging threats, exploits, and assessment tools.
Requirements
1-3 years of experience in cybersecurity or IT security roles.
Proficiency with vulnerability management tools (Nessus, Qualys, Rapid7, OpenVAS).
Strong knowledge of OWASP Top 10, SANS Top 25, and network/application security.
Familiarity with Python, PowerShell, or Bash for automation.
Understanding of CVSS scoring and risk assessment.
Excellent analytical and communication skills.
Eligible for UK SC Clearance.
Preferred Certifications
CEH, Security+, GCIH, or CREST Practitioner Security Analyst (CPSA).
AF, AL + 146 more
CA and RO only
