Offensive Security Analyst
Ernst & Young Oman
The opportunity As an Offensive Security Analyst on the Attack Surface Management team, you will play a key role in evaluating and reducing EY’s digital exposure through hands‑on penetration testing and adversarial simulation. Working under the guidance of the Exposure Management Lead, you will identify, assess and help mitigate vulnerabilities across EY’s global attack surface. This role goes beyond traditional scanning by actively emulating threat actors, performing penetration testing and assessing the true impact of security weaknesses. Your responsibilities will include supporting the validation of third‑party risk assessments, identifying misconfigurations and exposed assets, and ensuring security standards are applied across EY’s digital ecosystem. You will also contribute to strengthening Continuous Threat Exposure Management and Attack Surface Management efforts by providing actionable insights that improve proactive defense and reduce overall business risk. Your key responsibilities The Analyst will apply offensive security techniques to assess EY’s external and internal attack surface, identifying vulnerabilities across web applications, APIs, cloud environments, networks, and infrastructure. This includes testing proof‑of‑concepts to validate exploitability and determine real‑world impact. The role involves emulating adversary tactics to test detection and response capabilities, as well as conducting reconnaissance and asset discovery to uncover unmanaged or exposed assets. The candidate will support third‑party and supply chain risk validation efforts by reviewing assessments or conducting targeted testing where required. Collaborating closely with security engineering, blue teams and business stakeholders, the analyst will help prioritize remediation efforts based on risk severity and exploitability. Additionally, the role will contribute to enhancing processes, playbooks and reporting standards within the Vulnerability Discovery and offensive security functions. Skills and attributes for success Capability to identify and exploit vulnerabilities beyond automated scanning tools like Qualys, Nessus etc. Strong attention to detail with a methodical approach to identifying complex attack paths Critical thinking and analytical skills to evaluate vulnerabilities in a business risk context Ability to manage high volumes of testing requests without compromising depth or quality Flexibility to work across diverse technologies, including cloud, applications and infrastructure Effective communication skills to convey technical findings to both technical and non‑technical audiences Familiarity with research techniques and threat intelligence to support proactive risk identification To qualify for the role you must have A minimum of 4 years of experience in penetration testing, red teaming, purple teaming or offensive security Hands‑on experience testing applications, APIs, cloud environments and network infrastructure Strong understanding of common vulnerability classes such as OWASP Top 10 and exploitation techniques Familiarity with offensive security methodologies and frameworks Experience supporting or performing third‑party risk assessments Strong analytical and problem‑solving skills with the ability to prioritize risks effectively Strong communication and stakeholder management skills Ideally, you’ll also have OWASP training Incident response experience What we look for We are looking for a developing Offensive Security Analyst that can operate with supervision and bring new approaches to discovering and evaluating the business’s externally‑exposed vulnerabilities. We are seeking a seasoned analyst to improve the organization’s ability to reduce the attack surface while enabling the business. The ideal candidate will seek to improve others while continuously learning and identifying ways to strengthen the organization. What we offer you We offer a comprehensive compensation and benefits package where you’ll be rewarded based on your performance and recognized for the value you bring to the business. The base salary range for this job in all geographic locations in the US is 76,400 to 138,600. The base salary range for New York City Metro Area, Washington State and California (excluding Sacramento) is 91,700 to 157,500. Individual salaries within those ranges are determined through a wide variety of factors including but not limited to education, experience, knowledge, skills and geography. In addition, our Total Rewards package includes medical and dental coverage, pension and 401(k) plans, and a wide range of paid time off options. Join us in our team‑led and leader‑enabled hybrid model. Our expectation is for most people in external, client‑serving roles to work together in person 40‑60% of the time over the course of an engagement, project or year. Under our flexible vacation policy, you’ll decide how much vacation time you need based on your own personal circumstances. You’ll also be granted time off for designated EY Paid Holidays, Winter/Summer breaks, Personal/Family Care, and other leaves of absence when needed to support your physical, financial and emotional well‑being. EY is building a better working world by creating new value for clients, people, society and the planet, while building trust in capital markets. EY provides equal employment opportunities to applicants and employees without regard to race, color, religion, age, sex, sexual orientation, gender identity/expression, pregnancy, genetic information, national origin, protected veteran status, disability status or any other legally protected basis, including arrest and conviction records, in accordance with applicable law. EY is committed to providing reasonable accommodation to qualified individuals with disabilities including veterans with disabilities. If you have a disability and either need assistance applying online or need to request an accommodation during any part of the application process, please call 1-800-EY-HELP3, select Option 2 for candidate related inquiries, then select Option 1 for candidate queries and finally select Option 2 for candidates with an inquiry which will route you to EY’s Talent Shared Services Team (TSS) or email the TSS at View email address on click.appcast.io. #J-18808-Ljbffr
- ...Security Analyst Managed Security Services Hybrid Remote Permanent Apply for this job About Bridewell One of the most exciting prospects in the UK cyber security sector today, Bridewell is a leading cyber security services company specialising in protecting and transforming...SuggestedPermanent employmentWork at officeRemote workFlexible hours
- ...option of extension, and is in Columbia, SC. Please send your rate and resume. W2 only. Our direct client has an opening for a Security Analyst 11196-1. The Office of Cybersecurity is tasked with securing the Agency cloud infrastructure and performing ongoing enterprise...SuggestedWork at office
- ...as an experienced cybersecurity consultant to SCDHHS leadership, business units, business partners, and vendors. Responsibilities Security Program & Compliance Provide leadership within FISMA/RMF-compliant programs, with strong preference for experience in: CMS MARS-E...SuggestedWork at office
- ...Skills BS degree in Computer Science, information systems, Cybersecurity, or related field; or 5+ years equivalent experien A network security centric certification such as PCNSE or CC 3-5 years of hands-on experience in network design, implementation, or suppo Experience...SuggestedContract workWork at officeRelocation
- » » Security Analyst – AdvancedLocationSouth Carolina, Columbia### Description**Job Description:**Develops and manages security for more than one IT functional area (e.g., data, systems, network and/or Web) across the enterprise. Assists in the development and implementation...Suggested
- ...truly BELIEVE in what they're doing! We're committed to bringing passion and customer focus to the business. Overview : The IT Security Analyst will support the Company’s ability to protect the confidentiality, integrity, and availability of its physical and information...
- ...Senior Security Analyst Managed Security Services Hybrid Remote Permanent Apply for this job About Bridewell One of the most exciting prospects in the UK cyber security sector today, Bridewell is a leading cyber security services company specialising in protecting and...Permanent employmentWork at officeRemote workFlexible hours
- ...Description Job Description This position is 100% on-site remote work is not available. Our direct client has an opening for a Security Analyst rec 10902-1This position is up to 12 months, with the option of extension, and is in Columbia, SC, W2 only. Corp to Corps are...Work at officeLocal areaRemote workFlexible hours
- ...Job Description Job Description W-2 ONLY No subs, No sponsorship Security Analyst Work Location: Fully Onsite Candidate Location: Candidate MUST be a SC resident. No relocation allowed. Required Skills ~ BS degree in Computer Science, information systems...Work at officeRelocation
- ...professionals with great opportunities. We made the Staffing Industry Analyst's 'Fastest Growing' list in 2013, 2014 and 2015. Job... ...Information Technology Services team members are responsible for securely managing information systems throughout their life-cycle, including...
- ...Job Description Job Description 100% on site. Our direct client has an opening for an Security Analyst 11299-1. This position is up to 12 months, with the option of extension, and is in the following locations in. Please send your rate and resume. W2 only....
- ...Job Description Job Description 100% on site. Our direct client has an opening for a Security Analyst 11585-1. This position is up to 12 months, with the option of extension, in Columbia, SC. Please send rates and a resume. W2 only, no Subs allowed. Preferred...
- ...Knowledge: Linux and Windows servers Network Firewalls, Intrusion Prevention Systems (IPS), Switching and Routing Infrastructure Security Information and Event Management (SIEM) solutions Identity and Access Management (IAM) solutions General Duties and Responsibilities...Work at officeLocal areaFlexible hours
- ...systems and corporate compliance culture. This position requires a security clearance which requires U.S. Citizenship to obtain.... ...System Security Certified Practitioner). CompTIA Cybersecurity Analyst+ (CySA+). Work Environment Fast paced, multi-platformed environment...For contractorsWork experience placementSecond jobWork at officeLocal area
- ...to candidates that are local to SC and are able to come onsite for project needs. Required Skills 2+ Years of Experience with Security Monitoring and Incident Response 2+ Years of Experience with MITRE ATT&CK framework. 2+ Years of Experience with dashboard...Local area
$81.07k - $129.71k
...Blue Cross and Blue Shield of North Carolina is seeking an Actuarial Analyst to support various actuarial functions like pricing, valuation, and financial forecasting. This role requires a Bachelor's degree, 2+ years of actuarial experience, and completion of at least...$68k - $101k
...Actuarial Analyst (JN -032026-290876) Columbia, South Carolina Salary: USD68000 - USD101000 per annum + profit sharing Our Client, a mutual insurance company which focuses on auto, property, business, and life Insurance, is looking for an Actuarial Analyst for their Columbia...Work experience placementFlexible hours- ...A financial services company is seeking a Senior Actuarial Analyst responsible for developing a robust pricing and reserving framework. This role involves leading projects, executing analytics, and mentoring junior staff. Candidates should have a Bachelor's degree in a...Remote workFlexible hours
$99k - $164.8k
A leading specialized insurer is seeking a skilled Senior Actuarial Analyst to perform complex pricing analyses and provide actuarial support. The ideal candidate will have over 4 years of experience in actuarial or quantitative pricing analysis with proficiency in Microsoft...Remote work$132.5k - $217k
...support of actuarial and underwriting leaders as well as be responsible for the pricing of Direct Markets accounts. The Senior Actuarial Analyst and team will partner with DirectMarkets Underwriting teams, Line of Business Pricing, Reserving, and Data Analytics, among others,...Full timeTemporary workApprenticeshipWork at officeLocal areaRemote workVisa sponsorship$18.85 per hour
...Job Description Job Description Overview Allied Universal®, North America’s leading security and facility services company, offers rewarding careers that provide you a sense of purpose. While working in a dynamic, welcoming, and collaborative workplace, you will...Part timeFor contractorsWork at officeLocal areaShift work- ...Job Title: Security & Law Enforcement (Master-at-Arms) Category / Component: Enlisted Active Overview Master-at-Arms (MA) Sailors provide the Navys core security, antiterrorism, and law enforcement capability, protecting people, installations, ships, and...ApprenticeshipOverseasNight shiftRotating shift
$128.1k - $239.6k
...and take your career wherever you want it to go. Join EY and help to build a better working world. EY Infosec is seeking a Cloud Security consultant with expertise in cloud security architecture, configuration, and governance across the Microsoft Azure platform with subject...Summer holidayFlexible hoursShift work$50 - $60 per hour
Data Annotation is committed to creating high-quality AI. Enjoy the flexibility of remote work and the freedom to set your own schedule. This is an opportunity to work with us as an independent contractor. We're currently expanding into an exciting new area – teaching ...Hourly payContract workFor contractorsWork experience placementRemote work$50 - $60 per hour
DataAnnotation is committed to creating high-quality AI. Join our team to help train the nextgeneration of AI while enjoying the flexibility of remote work and the freedom to set your ownschedule. This role is designed to fit a variety of lifestyles — whether you’re looking...Hourly payFull timeContract workPart timeWork experience placementRemote work$50 - $60 per hour
Data Annotation is committed to creating high-quality AI. Join our team to help train the nextgeneration of AI while enjoying the flexibility of remote work and the freedom to set your ownschedule. This role is designed to fit a variety of lifestyles — whether you’re looking...Hourly payFull timeContract workPart timeWork experience placementRemote work- NOTE: This position must be performed in Washington, DC so relocation to Washington, DC will be required. Recruitment Incentive: Applicants may be eligible for a $75,000 recruitment incentive in accordance with regulatory requirements. Click apply to view full details...Relocation
$50k
...including incident, citation, accident and information reports, case files, tow sheets, and field interview cards. Performs building security inspections. Responds to requests for assistance. Monitors parking areas and crosswalks and reports maintenance needs. Controls...RelocationNight shiftRotating shift$57k - $76.67k
Summary Employees in this position usually work in an armed, uniformed capacity to patrol the corporate limits of Surfside Beach and off‑site town‑owned properties to prevent and/or detect crime or disturbances of the peace, warn, cite, or arrest violators as appropriate...Contract workLocal areaImmediate startShift workRotating shift- ...Experience a fabulous career as a Police Officer (GS-0083-07) as part of America’s Federal Civil Service! Dive into the dynamic realm of security and law enforcement with this entry-level opportunity, beckoning those with at least 1 year of prior experience in the law...Full timeImmediate startRelocation package
Do you want to receive more vacancies?
Subscribe and receive similar vacancies to Offensive Security Analyst. Be the first to apply!
- bond analyst Columbia, SC
- senior security analyst Columbia, SC
- entry level security analyst Columbia, SC
- IT security analyst Columbia, SC
- security operations analyst Columbia, SC
- security analyst intern Columbia, SC
- network security analyst Columbia, SC
- information security analyst Columbia, SC
- junior security analyst Columbia, SC
- security analyst Columbia, SC


