External Attack Surface Management Analyst
The Opportunity
As an External Attack Surface Management (EASM) Analyst on our team, you’ll continuously identify, monitor, and manage the company’s internet-facing risk exposure. This role focuses on discovering all external assets, including known and shadow IT systems, assessing their security posture, and proactively identifying, prioritizing, and mitigating vulnerabilities and misconfigurations based on risk and potential impact. The EASM Analyst plays a critical role in protecting Booz Allen from external threats by delivering real-time visibility, risk prioritization, and actionable remediation guidance. Working closely with threat intelligence, digital risk protection, and security engineering teams, this position ensures that external exposures are rapidly identified and addressed before they can be exploited. Due to the nature of work performed within this facility, U.S. citizenship is required. Join us. The world can’t wait.
Key Responsibilities
Continuously identify, monitor, and manage the company’s internet-facing risk exposure. Focus on discovering all external assets, including known and shadow IT systems, assessing their security posture, and proactively identifying, prioritizing, and mitigating vulnerabilities and misconfigurations based on risk and potential impact. Work closely with threat intelligence, digital risk protection, and security engineering teams to ensure external exposures are rapidly identified and addressed before they can be exploited. U.S. citizenship is required.
Required Qualifications
- 4+ years of experience in vulnerability management, security operations, or incident response
- Experience with an Attack Surface Management discovery tool such as Defender EASM
- Experience with securing cloud infrastructure such as AWS, Azure, or GCP
- Experience with automation and data analysis such as Python
- Experience with API integrations to connect disparate systems, automate processes, and improve operational efficiency
- Knowledge of networking fundamentals including TCP, IP, DNS, HTTP, HTTPS, SSL, and TLS
- Associate’s degree and 7+ years of experience supporting IT projects and activities
- Bachelor’s degree and 5+ years of experience supporting IT projects and activities
- Master’s degree and 3+ years of experience supporting IT projects and activities
- 12+ years of experience supporting IT projects and activities in lieu of a degree
Nice If You Have
- Experience with data analytics including data manipulation, visualization, and reporting
- Experience partnering with system owners to identify mitigations or compensating controls when remediation is not immediately feasible
- Experience triaging vulnerabilities and determining risk-based prioritization
- Experience with IT service management platforms such as ServiceNow
- Knowledge of Configuration Management Database (CMDB) concepts and implementation
- Knowledge of security frameworks such as NIST CSF, MITRE ATT&CK, or CIS Controls
- Ability to translate technical findings into business risk for non-technical stakeholder
Compensation and Benefits
Salary range: $99,000.00 to $225,000.00 (annualized USD). Compensation is determined by location, education, experience, and other factors. Other benefits include health, life, disability, financial, retirement benefits, paid leave, professional development, tuition assistance, work-life programs, and dependent care. Full-time and part-time employees working at least 20 hours a week are eligible to participate in benefit programs. This posting will close within 90 days from the Posting Date.
EEO Statement
All qualified applicants will receive consideration for employment without regard to disability, status as a protected veteran or any other status protected by applicable federal, state, local, or international law.