✦ Luna Orbit — Cybersecurity

Cybersecurity Engineer (ASM)

at Truist Financial

📍 4 Locations Unknown Posted April 02, 2026
Apply Now → ← Browse All Jobs

Position Details

Type Full-Time
Experience mid
Exp. Years 5+ years
Education Bachelor's degree and five years of experience in security engineering or administration
Category Cybersecurity

About this role

Cybersecurity Engineer focused on external attack surface validation, EASM tooling, BAS simulations, and cloud security across banking environments. The role includes threat hunting, vulnerability management, and collaboration with cross-functional security teams to strengthen the organization's cyber resilience.

Key Responsibilities

  • EASM validation and engineering; Plan and conduct BAS simulations; Collaborate with red, blue, and purple teams; Threat hunting and intelligence; Vulnerability management and remediation

Technical Overview

Hands-on with EASM platforms (Defender EASM, Cortex Xpanse, CyCognito), BAS, CI/CD tooling (GitLab, Terraform, Jenkins), scripting (Python, PowerShell, Bash), and cloud security (AWS/Azure). Proficient in threat intelligence, MITRE ATT&CK, NIST, D3FEND, and service mesh concepts with OPA for policy-driven controls.

Ideal Candidate

The ideal candidate is a cybersecurity engineer with 5+ years of experience focusing on attack-surface validation, EASM automation, BAS simulations, and cloud security. They should be proficient with modern EASM tools, threat intel, and proactive threat-hunting practices, and be able to collaborate across red/blue/purple teams and risk functions.

Must-Have Skills

Bachelor's degree and five years of experience in systems engineering or administration or an equivalent combination of education and work experienceKnowledge in applied enterprise information security technologies including firewallsIDS/IPSnetwork operating systemsidentity managementdatabase activity monitoringencryptioncontent filteringand Mainframe securityPrevious experience in planning and managing IT projects

Nice-to-Have Skills

Experience with Breach and Attack (BAS) or Continuous Security Validation (CSV) toolsBanking or financial services experienceExperience in designing and executing Attack ScenariosExperience with automated development and operations (DevSecOps) in cloud environmentsHands-on experience with EASM platforms (e.g.Defender EASMCortex XpanseCyCognito)Experience with detection engineering and SOARExperience with cloud security (AWS/Azure)Threat intelligence integrationRed/Blue/Purple team participation

Tools & Platforms

Defender EASMCortex XpanseCyCognitoGitLabTerraformAWSJenkins

Required Skills

Bachelor's degree and five years of systems engineering or administration experience; External Attack Surface Management; EASM platforms; BAS; Defender EASM; Cortex Xpanse; CyCognito; CI/CD pipeline end-to-end; GitLab; Terraform; AWS; Jenkins; Python; PowerShell; Bash; Threat hunting; Vulnerability management; SOAR; Threat intelligence; MITRE ATT&CK; NIST; D3FEND; Open Policy Agent; Service mesh; DNS hardening; PKI/TLS hygiene; GRC engineering; Red Team; Blue Team; Purple Team

Hard Skills

External Attack Surface ManagementActive reconnaissancePassive reconnaissanceBAS (Breach and Attack Simulation)Defender EASMCortex XpanseCyCognitoCI/CD pipeline end-to-end lifecycleGitLabTerraformAWSJenkinsPythonPowerShellBashThreat huntingVulnerability managementSOARThreat intelligenceMITRE ATT&CKNISTD3FENDOpen Policy AgentService meshDNS hardeningPKI/TLS hygieneGRC engineeringRed TeamBlue TeamPurple Team

Soft Skills

Analytical thinkingCommunicationProblem-solvingCollaborationTeamworkIndependent work

Certifications

Preferred

CISSPCISMCEH

Industry & Role

Industry Banking
Job Function Cybersecurity engineer focusing on attack surface management, validation, and threat-driven security improvements.
Role Subtype Security Engineer

Keywords for Your Resume

cybersecurity engineerattack surface managementeasmexternal attack surface managementbasbreach and attack simulationdefender easmcortex xpansecycognitoci/cdgitlabterraformawsjenkinspythonpowershellbashthreat huntingvulnerability managementsoarthreat intelligencenistmitre attackd3fendopaservice meshdns hardeningpki/tls hygienegrc engineeringred teamblue teampurple teamcloud security

Deal Breakers

No experience with EASM or BAS, Lack of cloud security experience (AWS/Azure), Insufficient scripting or automation skills

Apply for this Position →

Get matched to jobs like this

Luna finds roles that fit your skills and career goals — no endless scrolling required.

Create a Free Profile