Principal Attack Surface Management Lead (Remote- West Region) - Mandiant Denver, CO Bookmark Share Print 165 0 0

Listing Description

Job Description

Mandiant Security Consulting Services ensures the long-term success of our clients by providing talented, passionate, and specialized security expertise. Our Consultants partner with clients to evaluate, create, develop, improve, and mature information security operations and programs. By utilizing the latest industry standards and combining experience and knowledge gained from Mandiant Incident Response, Intelligence and Managed Defense practices, we are able to develop defense forward information security programs for our clients.

As an Attack Surface Management Lead, you will lead projects, workstreams, and transformation initiatives. You will lead and support the development and delivery of a diverse range of attack surface management consulting and operations service programs to a number of clients. The Team Lead is a technical position that requires advanced skills and experience in security architecture, security governance, risk management, and cyber defense. The ability to be a humble expert and a strong focus on teamwork is a must.

What You Will Do:

•  
• Perform root cause analysis on identified vulnerabilities and attack surface weaknesses to determine feasible technical solutions, help triage risks, and prioritize remediation activities.
• Collaborate with a team that delivers cybersecurity attack surface management, vulnerability management, security testing, and application security capability development programs.
• Develop solutions to enterprise customers in support of their overall Cyber Defense programs.
• Perform vulnerability attack surface assessments and threat modeling to identity control weaknesses and assess the effectiveness of existing controls.
• Lead the development of validation processing, taking output from the purple team assessments and building processes, procedures and a program based off those results.
• Strong communication skills and experience in leading consulting teams to develop security governance, security risk management, security operations, and/or cyber incident response programs.
• Confirm and document attack surface management, as well as threat and vulnerability management improvements based on assessment, operations, and analysis work.

Minimum Requirements:

• 7+ years of experience with vulnerability management, Cybersecurity operations, or similar
• 3+ years of experience with vulnerability management platforms
• Experience with databases, CSV files, and other large data sources
• Experience with API testing knowledge
• Knowledge of general Cybersecurity concepts and methods, including vulnerability management, application security, incident response, governance, risk or compliance, or security architecture
• Must be able to work in the U.S. without sponsorship

Desired Qualifications:

• 3+ years of experience with attack surface reduction or attack surface management
• 1+ years of experience with penetration testing or ethical hacking
• Experience with secure coding and software development
• Experience with server application and network security hardening
• Experience with attack surface management (ASM) or vulnerability management (VM) platforms
• Possession of excellent oral and written communication skills, including presenting to technical and non-technical clients

As a U.S. federal contractor, Mandiant has adopted a COVID-19 Vaccination Policy to comply with our obligations under applicable laws and requirements. This position may be covered under Mandiant’s COVID-19 Vaccination Policy, as required in order to support federal contracts, access company offices and/or attend in-person meetings and work events. If covered under this policy, proof of vaccination against COVID-19 may be required as a condition of hire.

At Mandiant we are committed to our #OneTeam approach combining diversity, collaboration, and excellence. All qualified applicants will receive consideration for employment without regard to race, sex, color, religion, sexual orientation, gender identity, national origin, protected veteran status, or on the basis of disability.

Minimum Salary: $145,000. Final salary will be determined commensurately with cost of living, experience level, and/or any other legally permissible considerations. 

Incentive Compensation: Eligibility for annual bonus subject to individual and company performance; eligibility for award of Restricted Stock Units subject to eligibility requirements, approval from Mandiant’s Compensation Committee, and vesting terms  

Benefits: Employer subsidized benefits include Medical, Dental, Vision, Life, and Disability Insurance. Subject to eligibility requirements, Mandiant also offers the ability to participate in 401(k), Flexible Spending Accounts, Health Savings Accounts, Dependent Care Spending Accounts, and Employee Stock Purchase Program. Mandiant also provides Paid Time Off, Flexible Paid Sick Time, and Paid Holidays.  

*Disclosure as required by sb19-085 (8-5-20)