Offensive Security Analyst
Ernst & Young Oman
The opportunity As an Offensive Security Analyst on the Attack Surface Management team, you will play a key role in evaluating and reducing EY’s digital exposure through hands‑on penetration testing and adversarial simulation. Working under the guidance of the Exposure Management Lead, you will identify, assess and help mitigate vulnerabilities across EY’s global attack surface. This role goes beyond traditional scanning by actively emulating threat actors, performing penetration testing and assessing the true impact of security weaknesses. Your responsibilities will include supporting the validation of third‑party risk assessments, identifying misconfigurations and exposed assets, and ensuring security standards are applied across EY’s digital ecosystem. You will also contribute to strengthening Continuous Threat Exposure Management and Attack Surface Management efforts by providing actionable insights that improve proactive defense and reduce overall business risk. Your key responsibilities The Analyst will apply offensive security techniques to assess EY’s external and internal attack surface, identifying vulnerabilities across web applications, APIs, cloud environments, networks, and infrastructure. This includes testing proof‑of‑concepts to validate exploitability and determine real‑world impact. The role involves emulating adversary tactics to test detection and response capabilities, as well as conducting reconnaissance and asset discovery to uncover unmanaged or exposed assets. The candidate will support third‑party and supply chain risk validation efforts by reviewing assessments or conducting targeted testing where required. Collaborating closely with security engineering, blue teams and business stakeholders, the analyst will help prioritize remediation efforts based on risk severity and exploitability. Additionally, the role will contribute to enhancing processes, playbooks and reporting standards within the Vulnerability Discovery and offensive security functions. Skills and attributes for success Capability to identify and exploit vulnerabilities beyond automated scanning tools like Qualys, Nessus etc. Strong attention to detail with a methodical approach to identifying complex attack paths Critical thinking and analytical skills to evaluate vulnerabilities in a business risk context Ability to manage high volumes of testing requests without compromising depth or quality Flexibility to work across diverse technologies, including cloud, applications and infrastructure Effective communication skills to convey technical findings to both technical and non‑technical audiences Familiarity with research techniques and threat intelligence to support proactive risk identification To qualify for the role you must have A minimum of 4 years of experience in penetration testing, red teaming, purple teaming or offensive security Hands‑on experience testing applications, APIs, cloud environments and network infrastructure Strong understanding of common vulnerability classes such as OWASP Top 10 and exploitation techniques Familiarity with offensive security methodologies and frameworks Experience supporting or performing third‑party risk assessments Strong analytical and problem‑solving skills with the ability to prioritize risks effectively Strong communication and stakeholder management skills Ideally, you’ll also have OWASP training Incident response experience What we look for We are looking for a developing Offensive Security Analyst that can operate with supervision and bring new approaches to discovering and evaluating the business’s externally‑exposed vulnerabilities. We are seeking a seasoned analyst to improve the organization’s ability to reduce the attack surface while enabling the business. The ideal candidate will seek to improve others while continuously learning and identifying ways to strengthen the organization. What we offer you We offer a comprehensive compensation and benefits package where you’ll be rewarded based on your performance and recognized for the value you bring to the business. The base salary range for this job in all geographic locations in the US is 76,400 to 138,600. The base salary range for New York City Metro Area, Washington State and California (excluding Sacramento) is 91,700 to 157,500. Individual salaries within those ranges are determined through a wide variety of factors including but not limited to education, experience, knowledge, skills and geography. In addition, our Total Rewards package includes medical and dental coverage, pension and 401(k) plans, and a wide range of paid time off options. Join us in our team‑led and leader‑enabled hybrid model. Our expectation is for most people in external, client‑serving roles to work together in person 40‑60% of the time over the course of an engagement, project or year. Under our flexible vacation policy, you’ll decide how much vacation time you need based on your own personal circumstances. You’ll also be granted time off for designated EY Paid Holidays, Winter/Summer breaks, Personal/Family Care, and other leaves of absence when needed to support your physical, financial and emotional well‑being. EY is building a better working world by creating new value for clients, people, society and the planet, while building trust in capital markets. EY provides equal employment opportunities to applicants and employees without regard to race, color, religion, age, sex, sexual orientation, gender identity/expression, pregnancy, genetic information, national origin, protected veteran status, disability status or any other legally protected basis, including arrest and conviction records, in accordance with applicable law. EY is committed to providing reasonable accommodation to qualified individuals with disabilities including veterans with disabilities. If you have a disability and either need assistance applying online or need to request an accommodation during any part of the application process, please call 1-800-EY-HELP3, select Option 2 for candidate related inquiries, then select Option 1 for candidate queries and finally select Option 2 for candidates with an inquiry which will route you to EY’s Talent Shared Services Team (TSS) or email the TSS at View email address on click.appcast.io. #J-18808-Ljbffr
- ...ECS is seeking a Senior Security Analyst to work in our Scott AFB, IL office. As a leading managed cybersecurity services provider, ECS delivers highly tailored cybersecurity solutions aligned to each customer’s mission needs. The Professional Services Team partners with...SuggestedWork at office
$78.9k - $123.3k
...system authorization and continuous monitoring activities within a Federal environment. This role is responsible for managing the security authorization lifecycle for one or more information systems, ensuring compliance with Federal cybersecurity requirements, and maintaining...SuggestedPermanent employmentFull timePart timeWork at officeLocal areaRemote work- ...The Information Security Analyst is responsible for safeguarding the organization's information assets by identifying, assessing, and mitigating security risks. This role monitors security systems, investigates potential threats, evaluates IT controls, and partners...SuggestedFull timeWeekend work
- ...place where your contributions truly matter, we invite you to consider joining us. GENERAL DESCRIPTION OF POSITION The SAP GRC Security Lead Analyst is crucial to business operations, as they focus on protecting SAP systems, applications, and sensitive business data from...SuggestedFull timeWork at office
$50 - $60 per hour
DataAnnotation is committed to creating high-quality AI. Enjoy the flexibility of remote work and the freedom to set your own schedule. This is an opportunity to work with us as an independent contractor. We're currently expanding into an exciting new area – teaching...SuggestedHourly payContract workFor contractorsWork experience placementRemote work- ...in court as needed. Prepares reports: # Completes field interrogation card. # Keeps reference notebook. # Completes Offense Report, Traffic Accident Report, Curfew Violation Report, Truancy Violation Report, and other required reports and forms. #...Local areaShift work
- ...things by protecting, defending, and upholding the law. MPs support battlefield operations through circulation control, providing area security, conducting prisoner of war operations, supervising civilian internee operations, and carrying out law and order operations. MPs...Part timeWeekend work
$50 - $60 per hour
DataAnnotation is committed to creating high-quality AI. Enjoy the flexibility of remote work and the freedom to set your own schedule. This is an opportunity to work with us as an independent contractor. We're currently expanding into an exciting new area – teaching...Hourly payContract workFor contractorsWork experience placementRemote work- ...Summary About the Position: This is a Security Specialist, GS-0080-09/11 position with the U.S. Army Corps of Engineers, Little Rock District, Emergency Management & Security Office. This is a developmental position which can be filled at the GS-09 level with promotion...Permanent employmentFull timePart timeFor contractorsWork at officeLocal area
$105k - $130k
...mission of creating opportunities for people where they live, learn, and work. CampusGuard, a Nelnet company, provides information security and privacy consulting and compliance services primarily for campus-based organizations including higher education institutions,...Temporary workFixed term contractLocal areaRemote workWork from homeHome office$17.25 per hour
...Target here. ALL ABOUT ASSETS PROTECTION Assets Protection (AP) teams function to keep our guests, team and brand secure and lead through crisis events. They protect profitable sales by mitigating shortage risks, preventing, and resolving theft and...Hourly payLocal areaFlexible hoursShift workNight shiftDay shift- ...be determined. This position is designated as a safety and security sensitive position pursuant to the Arkansas Medical Marijuana Act... ...other security units in a timely manner. Assist victims of offenses. Provide or request other services as needed (i.e. police, fire...Work at officeLocal areaShift workWeekend work
- ...Information security analyst • little rock ar Last updated: 4 days ago Full-time A Security Officer I (SOI) is an entry level position for the Baptist Health Security Department. An SOI performs basic security duties in an in-house capacity to include: protection of guests...Full timePart timeRemote workShift work
- ...career. Join our team of dedicated professionals and contribute to creating memorable experiences for our guests. Overview Are you a security professional with a strong sense of responsibility and a commitment to ensuring the safety and well‑being of others? Join our team...Work at office
$84.5k - $187k
Job Description As OCI’s power portfolio evolves beyond traditional grid procurement into onsite generation, renewable PPAs, battery storage, and hedging structures, this role will be at the center of modeling those emerging commercial arrangements and quantifying their...Contract workTemporary workLocal areaFlexible hours$84.5k - $187k
...Job Description Principal Financial Analyst to support Capital expenditure for Oracle Cloud Infrastructure Oracle Cloud Infrastructure (OCI) is growing rapidly, and we are looking for a financial leader to support our capital expenditure and Supply Chain organization...Temporary workFlexible hours$60k - $75k
...Financial Planning Analyst Little Rock, Arkansas, United States $ 60,000.00 - 75,000.00 (US Dollar) Very unique opportunity for the Little Rock Market. This is a special department that has an unsaid motto of developing operational leaders and has the track record...Permanent employment$38.1 per hour
...Join our force and become a guardian of our city's streets, where every action you take makes a lasting impact on the safety and security of our community. Embrace the challenge, uphold justice, and be the steadfast hero our city needs. Dare to make a difference as a...Remote work- ...FinancialAnalystis a criticalFinance position;responsible fordaily accounting, reconciliation, generalfinancialanalysis. Financial Analyst Key Responsibilities: Support and promote a safe work environment at the plant. Financial Analyst will assist the Controller with plantfinancialactivities...Work experience placement
$27.85 - $42.44 per hour
...placement, promotion, termination, layoff, recall, transfer, leaves of absence, compensation, and training. Job Objective & Safety/Security Sensitive Designation Job Objective: To patrol an assigned district in the City of Little Rock in order to enforce laws and...Hourly payFull timeLocal areaImmediate startShift work- Current University of Arkansas System employees, including student employees and graduate assistants, need to log in to Workday via MyApps.Microsoft.com, then access Find Jobs from the Workday search bar to view and apply for open positions. Students at University of Arkansas...Work at officeVisa sponsorshipShift work
$55.07k
...interrogation card. # Keeps reference notebook. # Completes Offense Report, Traffic Accident Report, Curfew Violation Report,... ...01/01/1995) 07 Human Resources requires your Social Security Number in order to assign you a test for the Written Exam. We MUST...Bi-weekly payFull timeTemporary workPart timeLocal areaFlexible hoursShift work$74.24k
...district in the City of Little Rock in order to enforce laws and ordinances. Safety Sensitive: This position is designated as a safety/security sensitive position and is subject to random drug and alcohol screening. Essential functions include: Hiring Incentive of...Immediate startShift work- ...police duties by following and executing rules, regulations, or procedures covering law and rules enforcement, physical and personal security operations, patrol duties, control desk duty, coordination with local courts, and/or crime prevention activities for the local...Temporary workLocal areaRelocation packageShift workRotating shiftWeekend work
- ...Financial Operations Analyst We are seeking a highly analytical and detail-oriented Financial Operations Analyst to join our finance team. In this role, you will be responsible for monitoring, analyzing, and optimizing the financial and operational performance of the...
- NOTE: This position must be performed in Washington, DC so relocation to Washington, DC will be required. Recruitment Incentive: Applicants may be eligible for a $75,000 recruitment incentive in accordance with regulatory requirements. Click apply to view full details...Relocation
- ...Convergint is looking for a full-time, enthusiastic, results driven and forward-thinking Security Technician to join our amazing culture. In this role, you will install, program, system start-up/check-out, certify, and customer train on assigned projects including small...Full timeWork from homeNight shift
$57.93k
...Applicants must keep their account username and password, and contact information up to date on the application portal at Additional Information This position is designated as safety/security sensitive and is subject to random drug and alcohol screening. #J-18808-Ljbffr...Hourly payPermanent employmentRemote work$100k - $140k
...supported with exceptional mentorship and resources to grow your career, come build with us. The Role Apptegy is seeking a Lead Financial Analyst to join our FP&A team as a trusted partner and play a key role in driving financial clarity and strategic decision‑making across...Seasonal workImmediate startFlexible hours$40 per hour
A cybersecurity firm is seeking experienced cybersecurity professionals to evaluate AI-generated security content and solve technical problems. This role requires 2+ years of hands-on experience in various cybersecurity fields and some coding skills. Candidates should...Hourly payRemote workFlexible hours
Do you want to receive more vacancies?
Subscribe and receive similar vacancies to Offensive Security Analyst. Be the first to apply!
- security systems specialist Little Rock, AR
- network security consultant Little Rock, AR
- security consultant Little Rock, AR
- security specialist Little Rock, AR
- security coordinator Little Rock, AR
- security advisor Little Rock, AR
- data security analyst
- info security analyst
- stock market analyst
- physical security analyst


