Match score not available

Unlock Premium Benefits Today!
🚀 Elevate your career with priority access.
Stand out to top recruiters with Jobgether Priority Access:
  • ✅ Top Match: We help you identify job offers where you're a perfect fit.
  • ✅ Exclusive Referral Service: Connect directly with recruiters as a Jobgether Certified Premium User.
  • ✅ Personalized Feedback: Receive feedback and expert guidance on applications, and have your profile manually reviewed.

Start Your Free Trial Now!

Start my free trial

Attack Surface Management Engineer

extra holidays - fully flexible
Remote: 
Full Remote
Work from: 
United Kingdom

Offer summary

Qualifications:

Expert level engineering experience in IT security, Knowledge of networking standards and protocols, Understanding of risk frameworks like OWASP and NIST, Experience with cloud platforms like AWS or Azure.

Key responsabilities:

  • Respond to cybersecurity incidents and discover vulnerable assets
  • Perform asset discovery and validation testing for vulnerabilities
Experian logo
Experian Information Technology & Services XLarge http://www.experianplc.com/
10001 Employees
HQ: Costa Mesa
About Experian
Experian unlocks the power of data to create opportunities for consumers, businesses and society. During life’s big moments – from buying a home or car, to sending a child to college, to growing a business exponentially by connecting it with new customers – we empower consumers and our clients to manage data with confidence so they can maximize every opportunity. We gather, analyse and process data in ways others can’t. We help individuals take financial control and access financial services, businesses make smarter decision and thrive, lenders lend more responsibly, and organizations prevent identity fraud and crime. For more than 125 years, we’ve helped consumers and clients prosper, and economies and communities flourish – and we’re not done. Our 16,000 people in 37 countries believe the possibilities for you, and our world, are growing. We’re investing in new technologies, talented people and innovation so we can help create a better tomorrow. About Experian: Bringing data to life requires creativity, passion, flexibility and expertise. We want you to share in our success. That's why we offer rewards that recognise great performance. Working in a culture of collaboration, achievement and respect we will give you the support and encouragement you need to develop your skills and talents and progress your career. Everyday our people bring enthusiasm, innovation and inspiration to work and if this sounds like you connect with us at Experian. Read more at https://www.experianplc.com/careers/ Please note only shortlisted candidates will be contacted Our diverse workforce is part of the reason for our success. We want everyone to succeed, irrespective of their gender, ethnicity, sexuality, physical ability or age.
See more Experian offers

Job description

Company Description

Internal Grade D

Experian is a global data and technology company, powering opportunities for people and businesses around the world. We help to redefine lending practices, uncover and prevent fraud, simplify healthcare, create marketing solutions, and gain deeper insights into the automotive market, all using our unique combination of data, analytics and software. We also assist millions of people to realise their financial goals and help them save time and money.

We invest in people and new advanced technologies to unlock the power of data. As a FTSE 100 Index company listed on the London Stock Exchange (EXPN), we have a team of 22,500 people across 32 countries. Our corporate headquarters are in Dublin, Ireland.

Find out what its like to work for Experian by clicking here

Job Description

 

The Attack Surface Management Engineer is responsible for activities related to the full scope of attack surface management, with the goal to ensure comprehensive visibility and actionability of Experian's entire attack surface, exposures, and vulnerabilities, minimizing Experian's risk potential. You will work with the Cyber Fusion Centre to provide accurate attack surface management discovery to support incident-related activities.

Reports to our Director of Attack Surface Management

Responsibilities

  • Help with response to cybersecurity incidents, ensuring relevant vulnerable asset discovery.
  • Build and iteratively improve on Attack Surface Management processes to monitor and strengthen visibility and knowledge of the global attack surface.
  • Engage with partners to ensure ASM-related communication and reporting throughout the incident lifecycle
  • Perform verification/validation testing for vulnerabilities across all asset types; demonstrate exploitation steps and verify remediation/fixes
  • Perform programmatic and ad-hoc asset discovery to report on coverage gaps
  • Implement daily operations of the Attack Surface Mgmt program, including the interpretation of scanning results
  • Help identify internal and external risks based on scanning results
  • Support the attribution of findings to appropriate business owner
  • Identify improvements to scan coverage

Qualifications

Functional Requirements

  • Expert level engineering experience to support Attack Surface Management in one of the following: Networking/Protocols, Middleware, Network Infrastructure, Network Appliances, APIs, Cloud Infrastructure, Cloud Services, Mobile Devices, Mobile Applications, IoT, Endpoints, Operating Systems, Wireless networking, Third-party Integrations, Data Storage, Databases, CICD, Application Dependencies.
  • Working knowledge of network security principles, including segmentation, firewalls and VPNs.
  • Working knowledge of networking standards and protocols: IPv4, IPv6, TCP/IP, DNS, HTTPS, TLS, BGP, Firewalls and NAT, SMTP, VPN, ICMP, SSH, IPSec, etc.
  • Solid understanding of the application of some of the following frameworks and regulations, and how they are applied to identifying and rating risk: OWASP, SANS, NIST 800-61, CVSS, CIS, OSSTM, ISO 27001, MITRE ATT&CK, PCI, HIPAA, GDPR, CMMC, other.
  • Working knowledge of industry accepted AI security practices.
  • Knowledge of major cloud platforms (AWS, Azure, or GCP).
  • Experience with cloud security practices and tools and the ability to respond to incidents in cloud-based infrastructure.
  • Document all ASM aspects of incident response activities, including timelines, actions taken, and lessons learned.

Additional Information

Benefits package includes:

  • Flexible work environment, working hybrid or in the office if you prefer.
  • Great compensation package and discretionary bonus plan
  • Core benefits include pension, bupa healthcare, sharesave scheme and more
  • 25 days annual leave with 8 bank holidays and 3 volunteering days. You can purchase additional annual leave.

Experian is proud to be an Equal Opportunity and Affirmative Action employer. Innovation is an important part of Experian's DNA and practices, and our diverse workforce drives our success. Everyone can succeed at Experian and bring their whole self to work, irrespective of their gender, ethnicity, religion, colour, sexuality, physical ability or age. If you have a disability or special need that requires accommodation, please let us know at the earliest opportunity.

Find out what its like to work for Experian by clicking here

#LI-Remote

Experian Careers - Creating a better tomorrow together

Find out what its like to work for Experian by clicking here

Required profile

Experience

Industry :
Information Technology & Services
Spoken language(s):
English
Check out the description to know which languages are mandatory.

Hard Skills

Network SecurityCloud SecurityIncident ResponseAttack Surface ManagementNetwork InfrastructureEndpoint Engineering3rd Party Systems IntegrationApplication DependencygRPCAPI ManagementMiddlewareRelational DatabasesAmazon Web ServicesData StorageWireless LANCloud ServicesAI SecurityNetwork AppliancesMicrosoft NetworkingOperating SystemsCloud InfrastructureInternet Of Things (IoT)CI/CDMicrosoft AzureCVSNTConventional PCIGeneral Data Protection Regulation (GDPR)NIST 800-37ISO/IEC 27001

Other Skills

  • Communication
  • Problem Solving
Are you interested?

Cybersecurity Engineer Related jobs

See more Cybersecurity Engineer jobs
Sign in or sign up with Google or LinkedIn