Cyber SDC - Attack Surface Monitoring Analyst - Senior - Consulting - Location OPEN

Join to apply for the Cyber SDC - Attack Surface Monitoring Analyst - Senior - Consulting - Location OPEN role at EY

3 days ago Be among the first 25 applicants

Get AI-powered advice on this job and more exclusive features.

At EY, you’ll have the chance to build a career as unique as you are, with the global scale, support, inclusive culture and technology to become the best version of you. We value your unique voice and perspective to help EY improve. Join us to create an exceptional experience for yourself and a better working world for all.

The exceptional EY experience. It's yours to build.

EY emphasizes high ethical standards and integrity among its employees and expects all candidates to demonstrate these qualities.

In an evolving IT landscape, EY is a trusted partner for clients across industries seeking reliable solutions to complex risks and vulnerabilities. As a key member of our Cloud Security team, you will help clients understand and manage their Enterprise Identity environments. Your role will involve evaluating, improving, and developing innovative solutions, processes, and policies tailored to each client's IAM needs. This is a chance to apply your technical skills and business insight to impact global cybersecurity.

We seek an experienced Attack Surface Monitoring professional to join our cybersecurity team as a Lead Engineer. You will be responsible for identifying and managing the attack surface through monitoring and analysis, requiring strong OSINT and reconnaissance skills and the ability to assess externally accessible resources.

• Conduct OSINT and reconnaissance to discover externally accessible resources.
• Review assets manually to confirm ownership.
• Collaborate with teams for accurate asset classification.
• Perform port scans, service discovery, and vulnerability scans.
• Analyze results to identify vulnerabilities.
• Verify vulnerabilities manually for accuracy.
• Compile detailed technical reports.

• Experience in cybersecurity, attack surface monitoring, penetration testing, and vulnerability management.
• Knowledge of OSINT techniques and reconnaissance methodologies.
• Proficiency with network scanning tools and frameworks.
• Strong analytical and problem-solving skills.
• Excellent documentation skills.

• Bachelor’s degree in a related field with about 4 years of experience, or a graduate degree with about 3 years of experience.
• Experience with attack surface monitoring, penetration testing, or vulnerability projects.
• Updated knowledge of exploits and security trends.
• Hands-on experience with OSINT and vulnerability scanners.
• Valid US driver’s license and/or passport; willingness to travel.

• Knowledge of major operating systems (Windows, Linux, Unix).
• Certifications such as OSCP, OSWP, GPEN, GWAPT, etc.
• Experience with scripting languages like Python or Bash.
• Familiarity with exploits, TTPs, vulnerability remediation, and security trends.
• Understanding of network security and attack vectors.
• Knowledge of web vulnerabilities (OWASP Top 10).
• Strong communication skills and team collaboration ability.

We value curious minds passionate about cybersecurity. Your broad ASM exposure will enable you to innovate and influence the industry. If you are confident in your presentation and technical skills and aspire to become a leading expert, this role is for you.

Our compensation includes a base salary ranging from $73,100 to $132,900 nationally, and higher in certain regions. Benefits include health coverage, 401(k), paid time off, and flexible work arrangements. We support your growth with continuous learning, leadership development, and a diverse, inclusive culture.

Applications are accepted ongoing. If you meet the criteria, contact us promptly.

EY aims to build a better working world, creating value for clients, people, and society, and fostering trust in capital markets. Our teams in over 150 countries leverage data and technology to provide assurance, help clients grow, and solve complex issues.

For California residents, additional information is available here.

We are an equal opportunity employer, committed to diversity and inclusion. We provide accommodations for applicants with disabilities. For assistance, contact 1-800-EY-HELP3 or email ssc.customersupport@ey.com.

• Senior level: Mid-Senior level
• Employment type: Full-time
• Job function: Business Development and Sales
• Industries: Professional Services