About this role
Senior Cybersecurity Engineer focused on Attack Surface Management and security validation. Leads design, implementation, and maturation of EASM-based validation capabilities, conducts adversarial simulations, and delivers prioritized security improvements aligned with regulatory standards.
Key Responsibilities
- Lead EASM validation and engineering
- Perform Active/Passive Reconnaissance
- Advance EASM capabilities
- Design and execute BAS scenarios
- Analyze simulation results
Technical Overview
Covers EASM, BAS/CSV tooling, cloud security (AWS), CI/CD integration, scripting (Python/PowerShell/Bash), and integration with security infrastructure (SOAR, threat intelligence). Hands-on with Defender EASM, Cortex Xpanse, CyCognito, and related platforms; strong emphasis on risk-based recommendations.
Ideal Candidate
The ideal candidate is a senior cybersecurity engineer with 5+ years of hands-on experience in EASM/CSV/BAS, strong scripting, and cloud security expertise (AWS). They should have a demonstrated track record leading security validation efforts, conducting adversarial simulations, and translating results into actionable risk-reduction recommendations across cross-functional teams.
Must-Have Skills
Bachelor's degreefive years of experience in systems engineering or administrationexperience with firewallsintrusion detection/preventionnetwork operating systemsidentity managementdatabase activity monitoringencryptioncontent filteringand Mainframe securityexperience planning and managing IT projects
Nice-to-Have Skills
Experience with BAS or CSV toolsBachelor's degree and twelve years of experience or an equivalent combination of education and work experienceBanking or financial services experienceExperience in designing and executing Attack ScenariosRed Teaming and Blue TeamingCI/CD pipeline end to end lifecycleHands-on experience with EASM platforms (Defender EASMCortex XpanseCyCognito)Experience with penetration testingvulnerability managementand security toolsScripting for automation (PythonPowerShell)Knowledge of threat intelligence sources and frameworksExperience with NISTMITRE ATT&CK and D3FENDGRC engineeringCloud security (AWS/Azure)DNS hygieneExternal service postureThreat intelligence
Tools & Platforms
Defender EASMCortex XpanseCyCognitoAttackIQSafeBreachCymulateGitLabTerraformJenkinsGithubPythonPowerShellBash
Required Skills
Bachelor's degreefive years of experience in systems engineering or administrationknowledge of firewalls/IDS/IPSnetwork OSidentity managementdatabase activity monitoringencryptioncontent filteringmainframe securityIT project managementEASM/CSV/BASCI/CDautomation scripting (Python/PowerShell/Bash)AWS/Azurethreat intelligencevulnerability managementSOARred/blue/purple team collaboration
Hard Skills
External Attack Surface Management (EASM)EASMBreach and Attack Simulation (BAS)BASContinuous Security Validation (CSV)CSVCI/CDGitLabTerraformAmazon Web Services (AWS)JenkinsGithubPythonPowerShellBashDefender EASMCortex XpanseCyCognitoThreat HuntingVulnerability ManagementSOAR
Soft Skills
communicationproblem-solvingcollaborationanalytical thinkingindependenceattention to detailcross-functional collaborationstakeholder communication
Certifications
Preferred
Professional Engineer (PE) License (if applicable)SRO License (Active/Inactive) (if applicable)
Keywords for Your Resume
external attack surface managementEASMBreach and Attack SimulationBASContinuous Security ValidationCSVAWSAmazon Web ServicesPythonPowerShellBashCI/CDGitLabTerraformJenkinsGithubDefender EASMCortex XpanseCyCognitoThreat HuntingVulnerability ManagementSOARMITRE ATT&CKNISTD3FENDGRC engineeringCloud securityThreat intelligence
Deal Breakers
Bachelor's degree not in engineering or related field, Less than 5 years of relevant experience, No experience with EASM/CSV/BAS, No cloud security experience (AWS)
Get matched to jobs like this
Luna finds roles that fit your skills and career goals — no endless scrolling required.
Create a Free Profile