Vulnerability Analyst – Remote

About Company

At Career.zycto, we believe that robust security is built on meticulous analysis and forward-thinking strategies. We’re a dynamic, remote-first organization dedicated to safeguarding digital assets for a diverse client base, constantly evolving to stay ahead of emerging threats. For a Vulnerability Analyst, this means an environment rich with complex challenges and opportunities to make a tangible impact. Join our team where your keen eye for detail and problem-solving skills will directly contribute to protecting critical information, fostering a culture of innovation, continuous learning, and collaborative success in the cybersecurity domain.

Job Description

Career.zycto is seeking a highly skilled and proactive Vulnerability Analyst to join our expanding remote cybersecurity team. In this critical role, you will be instrumental in identifying, assessing, and prioritizing security vulnerabilities across our clients’ diverse IT infrastructures, applications, and networks. Leveraging cutting-edge tools and methodologies, you will provide actionable insights and recommendations to enhance our clients’ security posture. This position demands a keen analytical mind, a deep understanding of cyber threats, and the ability to communicate complex technical issues clearly to both technical and non-technical stakeholders. You’ll work closely with development teams, IT operations, and security architects to ensure vulnerabilities are remediated effectively and efficiently. We value continuous learning and encourage our team members to stay ahead of the latest security trends and exploits. If you’re passionate about making a real difference in the world of cybersecurity from the comfort of your home office, we encourage you to apply. This is an exceptional opportunity for a self-starter who thrives in an autonomous yet collaborative remote environment, contributing to the security of mission-critical systems and helping to build a more secure digital future for our clients. Your expertise will directly influence strategic security decisions and guide the implementation of protective measures across various industries.

Key Responsibilities

• Conduct comprehensive vulnerability assessments and penetration tests on networks, applications, and systems.
• Utilize automated scanning tools (e.g., Nessus, Qualys) and perform manual verification to identify security weaknesses.
• Analyze scan results, prioritize vulnerabilities based on risk (e.g., CVSS), and provide detailed, actionable remediation recommendations.
• Develop and implement security testing methodologies and procedures to ensure comprehensive coverage.
• Collaborate closely with development, operations, and IT teams to guide remediation efforts and ensure timely resolution of identified vulnerabilities.
• Stay current with the latest cybersecurity threats, attack vectors, exploits, and industry best practices.
• Prepare detailed technical and executive-level reports on assessment findings for various audiences, including technical teams and management.
• Participate in incident response activities as needed, providing expert analysis on potential exploitation vectors.

Required Skills

• 3-5 years of experience in vulnerability management, security analysis, or penetration testing.
• Proficiency with industry-standard vulnerability scanning tools (e.g., Nessus, Qualys, OpenVAS, Acunetix).
• Strong understanding of network protocols, operating systems (Windows Server, Linux distributions), and web application architectures.
• Experience with penetration testing methodologies and tools (e.g., Metasploit, Burp Suite, Nmap).
• In-depth knowledge of common security frameworks and standards (e.g., OWASP Top 10, MITRE ATT&CK, NIST CSF).
• Familiarity with scripting languages (e.g., Python, PowerShell, Bash) for automation and custom tool development.
• Excellent analytical, problem-solving, and critical thinking skills with a meticulous attention to detail.
• Strong written and verbal communication abilities for articulating complex technical issues to both technical and non-technical audiences.

Preferred Qualifications

• Relevant industry certifications such as OSCP, CEH, CompTIA Security+, CySA+, or CISSP.
• Experience with cloud security (AWS, Azure, GCP) vulnerability assessment and configuration auditing.
• Familiarity with compliance standards and regulations (e.g., GDPR, HIPAA, PCI DSS, SOC 2).
• Knowledge of secure coding principles and practices.

Perks & Benefits

• Fully remote work environment with flexible work hours to support work-life balance.
• Competitive salary and performance-based bonuses.
• Comprehensive health, dental, and vision insurance coverage.
• Generous paid time off, including vacation, sick leave, and company holidays.
• Dedicated budget for professional development, certifications, and ongoing training.
• Home office stipend and provision of necessary equipment to ensure a productive remote setup.
• Collaborative and supportive team culture with regular virtual team-building events.

How to Apply

Ready to make a significant impact in cybersecurity from anywhere? We encourage you to click on the application link below to submit your resume and cover letter. Please highlight your experience with vulnerability analysis, your preferred tools, and why a remote role at Career.zycto excites you.

Apply Now