Job Description
Title: Cybersecurity Analyst ( Attack Surface Management) Location: Seattle, WA- 98101 Duration:3 Months Job type: Temporary Assignment Work Type: Onsite Pay Rate: $55.00 - 55.00/hr Overview: TekWissen is a global workforce management provider headquartered in Ann Arbor, Michigan that offers strategic talent solutions to our clients world-wide. The below job opportunity is to one of Our clients Who is a fashion specialty retailer founded on a simple idea: offer each customer the best possible service, quality, value, and selection. We are looking for an individual to provide specialized Information Technology support for our strategic business partners within the client Corporate Center. Summary: The Lead Attack Surface Analyst champions reduction of client’s attack surface through continuous awareness and escalation of the highest risk exposures and vulnerabilities, and the actions needed to manage that risk. This role is in constant collaboration with cybersecurity and technology partner teams to prioritize risk, execute remediation activities, and automate processes where feasible to secure the technology landscape. Key Responsibilities: Lead the growth of attack surface management program, develop and implement solutions to resolve identified gaps, and contribute to the design and implementation of net new capabilities. Continuously drive improvements in attack surface management processes, methodologies, and security toolsets to enhance operational effectiveness, automating where possible Maintain Cybersecurity Standards, Attack Surface Management standard operating procedures, and runbooks. Assist in refining the incident response process and actively contribute to investigations and mitigation efforts when incidents arise. Collaborate with AppSec, DevOps and cloud platform teams to secure deployments and integrate security standard methodologies into the design of software, and related systems, ensuring a secure-by-design approach. Maintain map of client’s attack surface through collaboration with network and offensive security teams, conducting regular OSINT and reconnaissance activities, and dark web monitoring resources. Lead data-driven and risk-prioritized enterprise-wide initiatives to reduce vulnerabilities and exposures across client’s technologies. Identify opportunities and champion architectural changes to reduce attack surface. Develop and present metrics to measure operational efficiency and attack surface risk. Maintain domain expertise by completing trainings, attending industry presentations, obtaining certifications, engaging with cybersecurity community and consuming threat intel sources. Automate operational processes and tool integrations Support growth of domain expertise of teammates through mentorship, presentations, and hosting knowledge sharing sessions. Lead compliance activities for domain, including evidence validation and submission, proactive control evaluation and mitigation of gaps, and assessments (e.g. PCI and SOC2) Skills: 6+ years in security operations, red teaming, or threat hunting. Deep knowledge of MITRE ATT&CK framework, threat actor tactics, techniques, and procedures (TTPs), and common attack vectors. Experience implementing cloud security controls in a multi-cloud environment. Proficiency of enterprise information technology (IT) architecture principles and practices Knowledge of ethical hacking principles and practices Deep understanding of system landscape and data flow within domain and across adjacent domains Knowledge of offensive security methodologies Expertise in scripting languages (Python, PowerShell) for process automation Experience with developing attack surface management capabilities and coaching more junior analysts. Advanced knowledge of networking, system administration, cloud services, asset management and cyber security principles. Expertise in cybersecurity domains including vulnerability management, cloud security, attack surface management, network security, and cyber hygiene Experience with OSINT techniques and reconnaissance methodologies. Deep understanding of processes and controls needed to satisfy relevant regulatory and compliance requirements (e.g. PCI, SOC2) for vulnerability and attack surface management. Experience with implementing cybersecurity controls in multi-cloud environments (AWS, Azure, GCP). Thought leader on how to apply emerging AI technologies within the ASM domain Strong leadership and communication skills. <