Job Description

MetTel is a global communications solutions provider with the most complete suite of fully managed services that focus on secure connectivity, and network and mobility services. We simplify communications and networking for business and government agencies. Our customers include many of the Fortune 500, and Gartner recognizes us as an industry leader. We have the broadest portfolio of technology and integrated partnerships, as well as our private network, which we use to create tailored solutions design, deployment, and ongoing management, driving cost savings, efficiency, innovation, and the ability to focus on core objectives.

We believe that each team member is a key to the success and sustainability of the group. In order to achieve this, we offer an environment where all professionals can grow and develop their skills and competencies, collaborate with diverse professionals, share knowledge and enjoy a rewarding career.

MetTel is looking for a Cybersecurity Analyst to join our Security and Compliance Team!

ROLE AND RESPONSIBILITIES:

The Cybersecurity Analyst is responsible for identifying, assessing, and reporting security vulnerabilities across the organization's IT infrastructure, applications, and systems. This role serves as a key contributor to the organization's overall security posture by proactively discovering weaknesses before they can be exploited by threat actors.

The ideal candidate has a strong understanding of common vulnerability frameworks (CVE, CVSS, OWASP), network protocols, operating systems, and cloud environments. They stay current on emerging threats and zero-day vulnerabilities, contribute to patch management processes, and help refine scanning policies and procedures. Experience with risk-based prioritization, asset inventory management, and experience with SIEM and ticketing platforms is highly valued.

This role requires extreme attention to detail, strong analytical and communication skills, the ability to work cross-functionally, and a commitment to continuous improvement in the organization's security defenses.

**The position is open to U.S. citizens and requires a favorably adjudicated GSA Fitness Review for Public Trust Positions**

RESPONSIBILITIES:

• Configure and maintain scheduled and ad-hoc vulnerability scans using Tenable.io and Nessus Professional, ensuring comprehensive coverage across all network segments, endpoints, and cloud assets
• Create and manage scan policies tailored to organizational requirements, including credentialed and non-credentialed scan configurations
• Develop and maintain asset tagging strategies using dynamic and static asset groups to support targeted scanning and reporting
• Monitor scan health and troubleshoot scan failures and credential issues
• Interpret CIS benchmark audit results and translate compliance findings into actionable remediation guidance for system administrators and engineering teams
• Track and validate remediation efforts to confirm that hardening actions achieve the desired compliance posture
• Assist in developing and maintaining organizational hardening standards and gold image configurations based on CIS benchmarks
• Generate and distribute recurring vulnerability and compliance reports
• Create team-specific remediation reports that clearly identify asset owners, severity levels, aging metrics, and required actions
• Track and report on SLA adherence for vulnerability remediation timelines based on criticality ratings
• Analyze vulnerability and compliance data to identify systemic issues, recurring misconfigurations, and areas requiring additional attention
• Present findings and risk trends to leadership, auditors, and cross-functional stakeholders in both technical and non-technical formats
• Maintain documentation of scanning processes, reporting schedules, and escalation procedures
• Facilitate exception and risk acceptance processes for findings that cannot be remediated due to operational constraints
• Create and test detections written in advanced Splunk Programming Language (SPL).
• Develop rules, alerts and dashboards based on business and security requirements in Splunk.
• Correlate event or incident data to identify specific vulnerabilities and make recommendations that enable expeditious remediation.

COMPETENCIES:

• Configure and manage vulnerability and compliance scans in Tenable, including scan policies, asset tagging, and credential management.
• Collaborate with technical teams to remediate findings, implement hardening standards aligned with CIS benchmarks, and manage risk exceptions.
• Develop and deliver vulnerability and compliance reports, dashboards, and executive summaries that communicate risk posture, remediation progress, and SLA adherence to stakeholders.
• SIEM experience with Splunk
• Experience using ticketing systems such as ServiceNow.

DESIRED QUALIFICATIONS:

• Bachelor’s degree in computer science. (Computer Security/Information Security degree preferred), in lieu of a degree, additional experience will be considered.
• Relevant certifications such as CompTIA Security+, CEH, or CISSP are preferred.
• 3–5 years of experience in cybersecurity with a focus on vulnerability management, including hands-on experience with Tenable.io, CIS benchmark hardening, compliance scanning, and cross-functional remediation coordination.
• Experience working with Splunk and ServiceNow.
• Knowledge of and experience with EDR/EDR products a plus.
• Experience analyzing network and host-based security events.
• Knowledge of various security methodologies and processes, and technical security solutions.
• Knowledge of incident response life cycle and steps.
• Initiative-taking and able to work in an independent manner.

*The salary range reflected is a good faith estimate of base pay for the primary location of the position. Our compensation reflects the cost of labor across several U.S. geographic markets, and we pay differently based on those defined markets. The U.S. pay for this position is up to $125,000.00 annually. Pay varies by work location and may also depend on job -related knowledge, skills, experience and abilities of the successful candidate. Your recruiter can share more about the specific salary range for the job location during the hiring process.

Keywords: Cybersecurity Analyst, #Cybersecurity Analyst, #Vulnerability Frameworks, Vulnerability Frameworks, #CVE, CVE, #CVSS, CVSS, #OWASP, OWASP, #Cybersecurity, #CybersecurityAnalyst, Cybersecurity Jobs Near Me, LinkedIn, Telecommunications, #TelecommunicationJobs, #SIEM, SIEM, #NetworkSecurity, Cybersecurity Compliance, #CybersecurityCompliance, #Utah, #New York, #New Jersey, #WashingtonD.C., Indeed, Google

MetTel is an Equal Opportunity Employer and considers applicants for all positions without regard to race, color, religion or belief, sex, age, national origin, citizenship status, marital status, military/veteran status, genetic information, sexual orientation, gender identity, physical or mental disability or any other characteristic protected by applicable laws.

To learn more about our company visit us at www.mettel.net