POA&M/Vulnerability Analyst

POA&M/Vulnerability Analyst

Location: Arlington, VA (On-Site)

Citizenship: US only

Clearance: Active TS/SCI (DHS EOD Suitability required)

Company: Argo Cyber Systems, LLC - Service-Disabled Veteran-Owned Small Business (SDVOSB)

About Argo Cyber Systems

Argo Cyber Systems provides mission-critical cybersecurity support to U.S. Government agencies and critical infrastructure owners nationwide. Our teams deliver rapid incident response, advanced forensics, and coordinated recovery operations to protect vital systems from evolving cyber threats. We combine technical precision with operational agility-helping federal partners identify, contain, and recover from complex cyber incidents with speed and confidence.

Argo Cyber Systems is seeking a POA&M / Vulnerability Analyst to support cybersecurity governance, risk, compliance, and modernization activities in federal environments. The selected candidate will work collaboratively with technical teams, program leadership, and customer stakeholders to deliver high-quality cybersecurity support in alignment with contract requirements and organizational standards.

*This role is contingent upon successful contract bid win.

Role and Responsibilities

• Manage vulnerability findings, POA&M records, and remediation status across systems and enclaves.
• Review vulnerability scan outputs, validate findings, and prepare RMF vulnerability reports for ISSOs/ISSMs and leadership.
• Enter and maintain vulnerability and POA&M data in eMASS or equivalent GRC platforms.
• Coordinate with system administrators, engineers, and security teams to prioritize and track remediation activities.
• Produce status reports, aging reports, trend analysis, and risk-based remediation recommendations.

Qualifications, Education and Skills Requirements

• U.S. Citizenship is required.
• Bachelor's degree with 2+ years experience in vulnerability management or POA&M support.
• Experience with Tenable/Nessus/ACAS, Qualys, Rapid7, or similar scanning tools.
• Experience with POA&M administration, false-positive review, severity analysis, and remediation tracking.

Additional Desires and Considerations

• 3–6 years in vulnerability management / POA&M support.
• CAP, CISSP, CySA+, Security+.
• eMASS experience strongly preferred.
• STIG/SCAP/patching workflow familiarity.
• Experience assessing cloud, Zero Trust, and hybrid environments.
• Federal civilian or DoD A&A support experience.
• Experience with multiple operating systems to include Linux/Unix, Windows, & Splunk
• Practical experience with different scripting languages (e.g., Python, JavaScript, etc.)
• Practical experience with the Databricks Intelligence Platform
• Experience with system vulnerability assessments
• Knowledge of computer programming and scripting languages
• Excellent written and verbal communication skills
• Scaled Agile Framework (SAFe) experience
• CompTIA Security+ or higher certification level preferred

Company Benefits

ARGO Cyber Systems provides industry competitive employee benefits to include medical, dental, vision, life insurance, and 401K.

Argo Cyber Systems is a Federal Contractor and an Equal Opportunity Employer.

As part of Argo Cyber Systems, you will serve at the forefront of national cyber defense-protecting civilian agencies and high-value assets from persistent and emerging threats. You'll join a veteran-founded, mission-driven team dedicated to operational excellence, collaboration, and innovation in the cyber domain.