Attack Surface Management Senior Analyst - Afternoon Shifts

What success looks like in this role:

The Attack Surface Management (ASM) team plays a pivotal role in reducing the organization's attack vectors and surfaces. We are currently seeking a seasoned analyst to lead and execute ASM processes effectively. This position involves close collaboration with other security teams to manage the enterprise's attack surface through various tools, including scorecard platforms, external exposure management solutions, threat detection, EDR, SOAR, and privilege management tools.

Additionally, the role encompasses managing the organization's cloud security posture, requiring in-depth expertise in AWS, GCP, Azure, and a solid understanding of CIS security controls for cloud environments.

Please note: This role requires working afternoon shifts from 3:00 PM to 11:00 PM.

Key Responsibilities

• Monitoring and Detection: Oversee IT systems and network activity, identifying irregularities and anomalies to ensure the organization's assets and data remain secure from suspicious activities and potential attacks.

• Threat Analysis: Investigate identified threats, determine the root cause of anomalies, and implement preventative measures to avoid future occurrences.

• Incident Response: Manage complex security incidents, conduct in-depth investigations, review logs, and focus on containment and remediation efforts. Participate in root cause analyses, system restoration activities, and produce comprehensive security reports.

• Policy Articulation: Clearly communicate security policies, guidelines, and standards to relevant stakeholders.

• Proactive Security: Stay up to date with emerging security threats, working independently to strengthen the organization’s defenses.

• System Evaluation: Evaluate, test, recommend, and maintain information systems and cybersecurity policies and procedures.

• Audit Participation: Assist in security audits by preparing materials and reviewing data to ensure compliance and address findings.

You will be successful in this role if you have:

• Strong foundation in networking, operating systems, and cybersecurity tools and techniques.

• Familiarity with common web vulnerabilities, such as XSS, XXE, SQL Injection, Deserialization Attacks, Path Traversal, Remote Execution Flaws, and Authentication Flaws.

• Expertise in Cloud Infrastructures and Services (AWS, GCP, Azure) and implementing CIS security controls in cloud environments.

• Knowledge of common web application frameworks and web-based APIs.

• Experience with scripting languages such as Bash, Python, Perl, or PowerShell.

• Proficiency in Open-Source Intelligence (OSINT) gathering techniques, including subdomain discovery, service and application enumeration, and content discovery.

• Strong analytical skills to manage, organize, and present large volumes of data effectively.

• Ability to work autonomously within an established framework.

• Solid understanding of OWASP vulnerabilities and testing methodologies.

• Strong communication skills to articulate risks associated with web-based application vulnerabilities.

• Fluent in English, both written and verbal.

What We Offer

• Monthly Gross Cafeteria: 44,200 HUF (available regardless of weekly working hours).

• Private Health Insurance: Premium package provided for all Unisys associates after 1 year of tenure.

• Home Office Allowance to support remote work.

• A collaborative team environment, with extensive learning and development opportunities.

• Salary: 41.300 - 55.120 EUR

Join our team and make a meaningful impact in safeguarding our organization while growing your expertise in Attack Surface Management!

#LI-KB2

Unisys is proud to be an equal opportunity employer that considers all qualified applicants without regard to age, caste, citizenship, color, disability, family medical history, family status, ethnicity, gender, gender expression, gender identity, genetic information, marital status, national origin, parental status, pregnancy, race, religion, sex, sexual orientation, transgender status, veteran status or any other category protected by law.

This commitment includes our efforts to provide for all those who seek to express interest in employment the opportunity to participate without barriers. If you are a US job seeker unable to review the job opportunities herein, or cannot otherwise complete your expression of interest, without additional assistance and would like to discuss a request for reasonable accommodation, please contact our Global Recruiting organization at GlobalRecruiting@unisys.com or alternatively Toll Free: 888-560-1782 (Prompt 4).  US job seekers can find more information about Unisys’  EEO commitment here.