Overview
Identifies, classifies, and assesses security weaknesses (vulnerabilities) in systems and applications using scanning tools and manual analysis, managing the remediation process.
Responsibilities
- Identify
- assess
- and prioritize vulnerabilities in systems
- networks
- and applications using scanning tools and manual techniques
- manage vulnerability lifecycle
- report findings to system owners
- track remediation efforts
- configure and maintain vulnerability scanners
Required Skills
- Vulnerability scanning tools (Nessus, Qualys, Rapid7 Nexpose, OpenVAS)
- understanding of CVSS scoring
- network protocols
- operating systems
- web application basics
- reporting
- basic scripting
Salary Expectations
$70,000 - $120,000+ USD
Relevant Certifications
No specific certifications listed for this role yet.
Common Career Pathway
Can be an entry-level role or a specialization for Security Analysts. Often works closely with system administrators and developers.
Learning Roadmap
IT Fundamentals -> Networking/OS basics -> Security+ -> Learn Vulnerability Scanning Tools -> Understand CVSS -> Practice reporting/prioritization -> CySA+/CEH.