Vulnerability Analyst Mid / SBOM & Supply Chain Risk Management Specialist

Tangent Technologies is seeking a Mid-Level Information Vulnerability Analyst with experience in Software Bill of Materials (SBOM) and Supply Chain Risk Management to support a federal customer environment.

The selected candidate will support cybersecurity activities across information systems, networks, applications, and security tools. This role will assist with identifying and analyzing security vulnerabilities, reviewing and validating SBOM data, supporting software supply chain risk management efforts, and helping implement cybersecurity solutions that strengthen the security posture of government systems.

The ideal candidate will have practical, hands-on experience supporting information system security, vulnerability analysis, security testing, software supply chain reviews, and cybersecurity documentation. While prior SBOM and supply chain risk management experience is preferred, Tangent’s Senior Analysts will provide training and guidance to help the selected candidate grow into the role and successfully support customer requirements.

This position requires strong attention to detail, the ability to manage deadlines, and a commitment to helping deliver secure and reliable systems for federal customers.

• Support vulnerability analysis, security assessments, and risk identification across systems, applications, and networks.
• Assist with SBOM review, validation, and documentation to support software supply chain risk management.
• Help identify security weaknesses, misconfigurations, and potential supply chain risks.
• Support the implementation and tracking of cybersecurity controls, findings, and remediation activities.
• Work with technical teams to gather information, document risks, and support security recommendations.
• Assist with security testing, reporting, and preparation of cybersecurity artifacts.
• Support federal cybersecurity requirements, policies, and best practices.

• Bachelor’s Degree.
• Minimum of 3 years of experience in cybersecurity, information assurance, information security engineering, systems security, or related technical support.
• Current Security+, Network+, A+, SSCP, or equivalent certification.
• Experience with SBOM review, SBOM validation tools, or software supply chain risk management.
• Understanding of government and industry cybersecurity policies, standards, and best practices.
• Experience supporting security technologies such as firewalls, intrusion detection systems, SIEM tools, or network security platforms.
• Ability to analyze technical problems and recommend practical security solutions.
• Strong written and verbal communication skills.
• Ability to work independently and as part of a team.
• Ability to manage competing priorities and meet deadlines.

• Mid-level experience supporting cybersecurity, vulnerability management, information assurance, or related security functions.
• Familiarity with SBOMs, software supply chain risk management, vulnerability scanning, and security testing.
• Experience working in or supporting a federal customer environment preferred.
• Ability to review technical information and communicate findings clearly.
• Strong organizational skills and ability to work under deadlines.
• Security+, Network+, CySA+, or similar certification preferred.