Security Analyst

We are seeking a Senior Security Analyst to join a team of mission-focused professionals. This role is pivotal in safeguarding and strengthening the security posture of a major platform by performing security analysis, vulnerability assessments, and compliance monitoring. The position supports ongoing system maintenance, platform enhancements, and modernization activities by providing expert security guidance and ensuring alignment with enterprise and federal security standards., * Perform security analysis, vulnerability assessments, and compliance monitoring.

• Review, interpret, and validate security scan results from tools such as Tenable, Qualys, or similar platforms.
• Prioritize remediation efforts and track vulnerability resolution against established timelines.
• Coordinate with development, operations, and infrastructure teams to ensure timely remediation and secure configuration management.
• Support internal and external audit activities, including evidence collection and control validation.
• Review system and application security configurations to ensure alignment with enterprise standards, NIST guidelines, and Zero Trust principles.
• Provide actionable security recommendations to technical teams and participate in design reviews.
• Monitor compliance with security policies, procedures, and regulatory requirements.
• Assist in the development and continuous improvement of security processes and documentation.
• Support incident response activities by analyzing potential vulnerabilities and threat vectors.
• Must be eligible to obtain and maintain a Public Trust clearance.

• A Bachelor's degree with 5 years of experience, a Master's degree with 3 years of experience, or a PhD with 0 years of experience.
• 5 to 8 years of experience in security analysis, vulnerability management, or cybersecurity operations in a large enterprise or federal environment.
• Hands-on experience with vulnerability scanning platforms (e.g., Tenable.sc, Tenable Nessus, Qualys) and understanding of CVE and CVSS.
• Demonstrated ability to analyze scan data, identify false positives, and translate findings into actionable tasks.
• Familiarity with security frameworks and standards including NIST 800-53, NIST CSF, RMF, and CIS benchmarks.
• Experience supporting compliance and audit activities for federal or large enterprise systems.
• Strong understanding of secure configuration principles for operating systems, cloud platforms, and application environments.
• Ability to communicate effectively with both technical and non-technical stakeholders.
• Ability to obtain and maintain a Public Trust clearance., * Security-related certifications such as Security+, CySA+, GSEC, CEH, CISSP, or CISM.
• Experience with cloud environments (AWS, Azure, or Google Cloud Platform) and associated security services.
• Experience supporting large modernization efforts or legacy-to-cloud migrations.
• Knowledge of SIEM platforms, security automation workflows, and log analysis.
• Experience working in Agile or DevSecOps environments.
• Familiarity with federal healthcare systems or related compliance requirements.
• Experience generating security reports and presenting findings to leadership.
• Active or prior Public Trust or other security clearance.

Everforth Apex is a world-class IT services company that serves thousands of clients across the globe. When you join Everforth Apex, you become part of a team that values innovation, collaboration, and continuous learning. We offer quality career resources, training, certifications, development opportunities, and a comprehensive benefits package. Our commitment to excellence is reflected in many awards, including ClearlyRateds Best of Staffing in Talent Satisfaction in the United States and Great Place to Work in the United Kingdom and Mexico. Everforth Apex uses a virtual recruiter as part of the application process. Click for more details. By applying for this job, you agree to receive calls, AI-generated calls, text messages, or emails from Everforth Apex and its affiliates, and contracted partners. Frequency varies for text messages. Message and data rates may apply. Carriers are not liable for delayed or undelivered messages. You can reply STOP to cancel and HELP for help. You can access our privacy policy at