Vulnerability Analyst

Share Salary Not Available Position range in Northern Region $48k•$86k Per Year Vulnerability Analyst Boston Government Services

Occupation:

Business and Financial Operations Occupations

Location:

Los Alamos, NM•87544 Positions available: 1 Job #: 1355

Source:

FileImport•Boston Government Services

Posted:

03/11/2026

Expires:

05/09/2026

Web Site:

workforcenow.adp.com

Job Type:

Regular, Full Time (30 Hours or More) Job Requirements and Properties Help for Job Requirements and Properties. Opens a new window. Work Onsite Full Time Schedule Full Time Job Type Regular Job Description Help for Job Description. Opens a new window. Boston Government Services, LLC. (BGS) has created this Evergreen Talent Pool post for gathering qualified candidates for a position relating to Vulnerability Analyst which would support our clients. BGS is an engineering, technology, and security firm helping to advance missions of national importance for government programs, national laboratories, national security facilities, nuclear operations, and complex commercial projects. We support clients at every stage, from strategic planning and program management to the execution of project management, procurement, supply chain management, quality, safety, security, nuclear and systems engineering and technical activities. We strive to attract and retain the best talent because it delivers the best results and "Delivery Certainty" for our clients. Our capabilities are based on our experience in complex, secure, and highly regulated environments. We leverage our expertise and capabilities to provide mission-driven integrated services, systems, and solutions tuned to our clients' mission needs, challenges, requirements, expected results, and strategic direction. We are passionate about our culture! At BGS, we hire people who will bring their whole self to work each day because we value operating with openness and inclusivity, welcoming and respecting all. BGS cares for each employee's well-being by offering a comprehensive benefit package and providing a culture of exciting work, excellence, and fun. If you align with BGS' company values and culture, we would love for you to explore opportunities to join our growing team by checking out the job description below!

Duties/Responsibilities Include:

Possess a working level expertise with the National Institute of Standards and Technologies (NIST) Cybersecurity Framework (CSF) and the

NIST 800-53

series of control families and approaches. Using automated tools and manual techniques to Client security weaknesses (i.e. Tenable Security Center, Nucleus Security, etc...) Conducting regular scans and assessments of systems, applications, and networks to identify potential vulnerabilities. Analyzing the identified vulnerabilities to determine their potential impact on the organization. Prioritizing vulnerabilities based on their severity and the risk they pose to the organization. Performing routine assignment of tickets to IT and other teams to address vulnerabilities as part of a 'cyber hygiene' process. Recommending mitigation strategies to address identified vulnerabilities. Working with IT and development teams to apply patches, configure systems securely, and implement other remediation measures. This position is not expected to perform patching activities. Creating detailed reports on the findings of vulnerability assessments and risk analyses. Documenting the status of vulnerabilities and the actions taken to mitigate them. Communicating the results of vulnerability assessments, risk analyses, and other cyber hygiene work to stakeholders, including management and technical teams. Staying up to date with the latest cybersecurity threats, vulnerabilities, and best practices. Continuously improving the organization's vulnerability management processes and tools. Attend online/Teams meetings with team and others as appropriate. Work with team to provide status on current task, suggest improvements, discuss implementation, etc.

Requirements:

Practical experience in conducting vulnerability assessments and/or penetration tests. Experience in system and network administration. Familiarity with security concerns ...For full information see follow application link. Boston Government Services, LLC is an Equal Opportunity employer. All qualified applicants are encouraged to apply and will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or veteran status. Help for Employer Information. Opens a new window. Boston Government Services Social Links Connect with Boston Government Services Other Local Jobs from Boston Government Services, LLC Help for Other Local Jobs from. Opens a new window. Change to Grid view Pause Carousel Previous Slide Next Slide Slide 1 Slide 2 Slide 3 Lead CMMC Certified Assessor (CCA) Boston Government Services, LLC Los Alamos, NM Managers, All Other Regular Corporate• 10 weeks ago Boston Government Services, LLC. (BGS) has created this Evergreen Talent Pool post for gathering qualified candidates for a position relating to Lead CMMC Certified Assessor to support our clients in multiple locations. BGS is an engineering, technology, and security firm helping to advance missions of national importance for government programs, national laboratories, national security facilities, nuclear operations, and complex projects. We support clients at every stage, from strategic planning and program management to the execution of engineering and technical activities. We work to attract and retain the best talent because the best talent delivers the best results for our clients. Our capabilities are based on our experience in complex, secure, and highly regulated environments. We leverage our experience and capabilities to provide mission-driven solutions tuned to our client's mission needs and strategic direction. We are passionate about our culture! At BGS, we hire people who will bring their whole self to work each day because we value operating with openness and inclusivity, welcoming and respecting all. BGS cares for each employee's well-being by offering a comprehensive benefit package and providing a culture of exciting work, excellence, and fun. If you align with BGS' company values and culture, we would love for you to explore opportunities to join our growing team by checking out the job description below!

Overview:

The Lead CMMC Certified Assessor is responsible for the performance of cybersecurity framework assessments to determine compliance with Government-mandated cybersecurity regulatory requirements. This position is primarily responsible for Cybersecurity Maturity Model Certification (CMMC) for Maturity Levels 1, 2, and 3, National Institute of Standards and Technology Special Publication•NIST SP 800-171, and

NIST SP 800-172

assessments but may also be asked to conduct assessments against

NIST SP 800-53

Risk Management Framework (RMF), International Organization for Standardization•ISO 27001, Center for Internet Security, the NIST Cybersecurity Framework.

Responsibilities:

Maintain CMMC documentation for BGS as a Certified Third-Party Assessor Organization (C3PAO) within the CMMC Ecosystem. Conduct cybersecurity assessments for a broad range of customer environments to determine any gaps that exist between compliance requirements and actual implementation based on common NIST standards, such as

NIST SP 800-53, NIST SP

800-82, and

NIST SP 800-171.

Lead or participate in assessment teams to evaluate organizations against compliance standards. Develop & manage assessment project plans. Work with the customer to conduct interviews and observe technical implementations. Provide guidance to customers, as needed, to facilitate compliance requirements. Conduct compliance and cybersecurity workshops. Create assessment reports and gap analysis reports. Create System Security Plans, Plan of Action & Milestones, and security procedures. Other duties as assigned.

Requirements:

Associate's degree or higher (equivalent experience/military will be considered) 4 years of direct cybersecurity or Information Technology experience are required. Must have a Lead CMMC Certified Assessor (CCA). Must have one or more of the following certifications: Cybersecurity & Infrastructure Security Agency (CISA). Certified Information Systems Security Professional (CISSP). Certified Cloud Security Professional (CCSP). Certified Information Security Manager (CISM). CompTIA Advanced Security ...For full information see follow application link. Boston Government Services, LLC is an Equal Opportunity employer. All qualified applicants are encouraged to apply and will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or veteran status. General Requirements (Outer) Skills (Inner) Specialized (Center) 0% Occupation 0% Education 0% Work Experience 0% Location 0% Salary N/A Job Skills N/A Shift N/A Min. Age N/A Drivers Lic. N/A DL Endorsements N/A Typing N/A Security Clearance N/A Language This chart is used to compare your background against this job to help to determine if you would be a good fit for this position. You match 0% of the General Job Requirements. You match 0% of the Skills Required, and you match 0% of the Specialized Job Requirements. End of interactive chart. View Share See all jobs from Boston Government Services, LLC Location/Work Site Information Help for Location/Work Site Information. Opens a new window. Cost of Living Calculator Help for Cost of Living Calculator. Opens a new window. Job Type and Required Hours Help for Job Type and Required Hours. Opens a new window. Specialized Job Requirements Help for Specialized Job Requirements. Opens a new window. This job was posted at https://workforcenow.adp.com/ on 03/11/2026 12:45:13 PM. Change Job Search Criteria Print Job Order Opens in new window [ Do you have a comment or concern about this job posting? ]