Be on Alert – Fraudulent Employment Offers. Learn More

Multiple locations
Fairfax, Virginia, United States of America
Boston, Massachusetts, United States of America
Jefferson City, Missouri, United States of America
Austin, Texas, United States of America
JOB #R2204634

Cyber Security Vulnerability Manager - Remote

*We are open to supporting 100% remote work anywhere within the US. *

ICF’s Digital Modernization Division is a leading provider of Digital Transformation services for Federal agencies. Our services focus on enabling agency mission and business transformation using industry-leading low-code platforms, mobile applications, robotics process automation and data analytics platforms. We are partnered with some of the world’s leading and most innovative companies like Salesforce, ServiceNow, Microsoft and UiPath. We focus on offering a full range of architecture and planning, system implementation, integration, analytics and O&M for our customers.

We are seeking a Cyber Security Vulnerability Manager to support our Federal customer’s CIO Cyber Security organization and manage all vulnerability remediation activities, including Binding Operational Directive (BOD) compliance.


  • Perform Security Impact Analyses on application releases and provide recommendations to federal leadership

  • Perform software vulnerability scans, interpret the results, and provide vulnerability mitigation recommendations

  • Support and develop analyses of alternatives and decisions on courses of action by providing security insights to project teams and federal leadership

  • Review and provide recommendations on requests for AWS policy changes

  • Work with development teams and other stakeholders to review code and accurately flag False Positives in SonarQube and improve the overall utility of the tool

  • Perform new software evaluation for cyber compliance and mitigation, section 508 compliance and privacy reviews of the software for authorization Approved Software list.

  • The ability to write and review policy documentation based on industry standards.

  • Support regular updates to secure coding standards documentation and the ongoing assessment of the customer organization against the NIST Cyber Security Framework

  • Support Information Security Center vulnerability management groups by performing asset inventory, secure configurations and continuous monitoring, tracking and reporting and vulnerability service catalog.

  • Support Vulnerability Management activities related specifically to Cloud systems, High Value Assets (HVAs), Mobile Device, and Internet of Things (IoT) assets including testing, certifying, verification and authorization activities.


  • 5+ years of Cyber/Network security management activities, including developing, writing and implementing procedures to ensure compliance with FISMA and NIST requirements, 508 compliance and other Federal IT security management guidelines.

  • 1+ years of Experience with software vulnerability scanning tools such as Fortify WebInspect and SonarQube, and familiarity of AWS policy.

  • 1+ years of Experience with Cloud Security

  • 1+ years of Experience with Automating Security in CI/CD Pipelines

  • 1+ years of Experience managing others

  • Preferred:

  • B.S. degree in Computer Science, Engineering or similar discipline

Working at ICF

Working at ICF means applying a passion for meaningful work with intellectual rigor to help solve the leading issues of our day. Smart, compassionate, innovative, committed, ICF employees tackle unprecedented challenges to benefit people, businesses, and governments around the globe. We believe in collaboration, mutual respect, open communication, and opportunity for growth.

We can only solve the world's toughest challenges by building an inclusive workplace that allows everyone to thrive. We are an equal opportunity employer, committed to hiring regardless of any protected characteristic, such as race, ethnicity, national origin, color, sex, gender identity/expression, sexual orientation, religion, age, disability status, or military/veteran status. Together, our employees are empowered to share their expertise and collaborate with others to achieve personal and professional goals. For more information, please read our EEO & AA policy.

COVID-19 Policy: New or prospective U.S. employees must provide proof of complete vaccination on the date of their commencement of employment. If selected for employment, you will provide proof of your full vaccination status, defined as vaccinated two weeks after receiving the requisite number of doses of a COVID-19 vaccine approved or authorized for emergency use by the FDA.

Reasonable Accommodations are available, including, but not limited to, for disabled veterans, individuals with disabilities, and individuals with sincerely held religious beliefs, in all phases of the application and employment process. To request an accommodation please email and we will be happy to assist. All information you provide will be kept confidential and will be used only to the extent required to provide needed reasonable accommodations. Read more about non-discrimination:  EEO is the law and  Pay Transparency Statement.

Pay Range - There are multiple factors that are considered in determining final salary for a position, including, but not limited to, relevant work experience, skills, certifications and competencies that align to the specified role, geographic location, education and certifications as well as contract provisions regarding labor categories that are specific to the position. The salary range for Colorado is -


Nationwide Remote Office (US99)

Who is ICF?

A global consulting services company with approximately 8,000 people across 75+ countries, but we are not your typical consultants.

More jobs you might like

Sep 9, 2022
Austin, Texas, United States of America
Sep 9, 2022
Kansas City, Missouri, United States of America
Sep 9, 2022
Atlanta, Georgia, United States of America
See All Jobs

Join our talent network

ICF is growing, and we add new open roles to our site regularly. If you're waiting for that perfect opportunity at ICF or want an inside look at what it's like to do world-changing work, join our talent network to stay updated.

Join our talent network

ICF is growing, and we add new open roles to our site regularly. If you're waiting for that perfect opportunity at ICF or want an inside look at what it's like to do world-changing work, join our talent network to stay updated.