• Formalize and deliver security product tuning requests to improve detection capabilities and overall efficiency. • Develop and maintain incident response use incidents, knowledge base articles, and other relevant documentation. • Coordinate basic forensics activities as needed. • Conduct after action reviews on high impact and otherwise noteworthy incidents to identify process and human capital improvements. • Aid in onboarding and mentoring new team members. • Drive and Implement continuous improvement, open communication, and sharing of knowledge. • Act as a primary subject matter expert for one or more security products. • Identify and resolve opportunities to automate repetitive tasks. • Proactively propose improvements for how to reduce risk and potential future incidents.

• Perform operational support of information security technology. • Perform analysis and resolve problems regarding information security. • Complete project tasks to enable the on time, within budget and scope delivery of information security projects. • Present new and existing information security information to workforce and management. • Assist in incident response procedures. • Assist Change Management. • Assist in conducting application risk assessments against Health Insurance Portability and Accountability Act (HIPAA) and Payment Card Industry (PCI). • Assure compliance to required standards, procedures, guidelines and processes.

This description is a summary of our understanding of the job description. Click on 'Apply' button to find out more. Role Description We are seeking a highly skilled and motivated Identity, Credential, and Access Management (ICAM) Analyst to join the ICAM Cyber Modernization project team. The ideal candidate will possess: - Exceptional communication and organizational skills - Experience in Agile methodologies - The ability to collaborate effectively across multiple teams This candidate will need to have a working knowledge of ICAM to support the needs of our clients and act as a liaison between technical teams, stakeholders, and clients to ensure clear and effective communication of requirements, project status, and deliverables. The candidate will work closely with the Project Lead to manage project workflows, ensuring timely delivery and adaptability to changing requirements. Qualifications - US Citizen - Must be able to pass a full background check and drug screen - Must have a minimum of a Bachelor's Degree Company Description

Company Overview VulnCheck delivers next-generation exploit and vulnerability intelligence solutions for enterprise, Government and product teams to prevent large-scale remote code execution events with better, faster exploit data, massive-scale real-time monitoring and predictively-built detection artifacts. VulnCheck’s 300M+ unique data from 400+ sources points help vulnerability management and response teams outpace adversaries - autonomously. VulnCheck is an RSAC Innovation Sandbox finalist and a Black Hat Startup Spotlight finalist. Job Summary Are you passionate about advancing the science of vulnerability analysis and threat intelligence? Do you want to join a mission-driven team that delivers real-world impact—and has the resources and technical culture to fuel your curiosity? We’re searching for a Senior Vulnerability Analyst with a deep understanding of the vulnerability management ecosystem, hands-on experience with the CVE process, and expert knowledge in standard frameworks like MITRE ATT&CK, CAPEC, CWE, and CVSS. This is a rare opportunity to leverage your skills and experience as a contributor to, or expert user of, CVE and related MITRE capabilities—while taking your career in vulnerability research to the next level. Location This is a 100% remote role with preference for candidates based in Greater DMV (District of Columbia, Maryland, and Virginia), (Boston) Massachusetts, or (Austin) Texas. Why Join VulnCheck? VulnCheck stands behind its mission to influence how organizations worldwide understand, assess, and remediate security vulnerabilities - and to deliver intelligence-based solutions that change the world. We especially welcome candidates bringing operational or leadership experience from the CVE Program or adjacent efforts—your background is valued here. You’ll be joining a collaborative, supportive environment that values intellectual curiosity, technical mastery, and personal growth. (And more - below) Leverage your expertise: Work on cutting-edge threat intelligence initiatives that matter, alongside the top domain experts in the field. Shape the industry: Influence how vulnerabilities are classified, scored, mapped, and remediated at scale for enterprise customers and for the entire cybersecurity industry. Grow your impact: Collaborate with global partners, lead high-visibility projects, and drive standards across the security community. Innovate and explore: Conduct research and develop tools for automating and improving vulnerability enrichment and mapping. Key Responsibilities Map vulnerabilities: Analyze and map discovered vulnerabilities to MITRE ATT&CK techniques and CAPEC attack patterns with precision and consistency. CWE assignment: Determine and assign accurate CWE (Common Weakness Enumeration) IDs, producing well-documented rationales. CVSS calculation: Authoritatively calculate CVSS v3/v4 base scores, providing transparent, defensible justifications. CVE Processing: Review, draft, and curate CVE Records, ensuring data quality, fidelity, and consistency with CVE Program standards. Collaboration: Liaise with vulnerability researchers, product security teams, and standards communities to ensure best practices and knowledge transfer. Process improvement: Develop and refine workflows and playbooks for vulnerability triage, mapping, and reporting. Mentorship: Share your expertise by mentoring junior analysts and driving team knowledge-sharing initiatives. Required Qualifications Preferred Qualifications Experience contributing to the evolution of vulnerability standards (e.g., participation in CVE Editorial Boards, CAPEC Working Groups, or similar). Familiarity with automation tools or programming/scripting languages (Python, Golang, etc.) for data enrichment or workflow improvement. Published research, whitepapers, or presentations in the field of vulnerability analysis, mapping, or threat intelligence. Benefits Competitive compensation package. Comprehensive, 100% company-paid medical, dental, and vision plans. Flexible work arrangements with the option to work remotely. Dynamic work environment with opportunities for growth and advancement. Access to continuous learning and development programs. Ready to move from enabling the ecosystem to leading its evolution? Apply now and help us protect what matters most!