Sign up to access all features of our service.
  • Job search
  • Favorites
  • Create a CV
    New
  • Salaries
  • Subscriptions

External Attack Surface Management Analyst

$99k - $225k
Full-time

Booz Allen Hamilton

External Attack Surface Management Analyst The Opportunity: As an External Attack Surface Management (EASM) Analyst on our team, you’ll continuously identify, monitor, and manage the company’s internet-facing risk exposure. This role focuses on discovering all external assets, including known and shadow IT systems, assessing their security posture, and proactively identifying, prioritizing, and mitigating vulnerabilities and misconfigurations based on risk and potential impact. The EASM Analyst plays a critical role in protecting Booz Allen from external threats by delivering real-time visibility, risk prioritization, and actionable remediation guidance. Working closely with threat intelligence, digital risk protection, and security engineering teams, this position ensures that external exposures are rapidly identified and addressed before they can be exploited. Due to the nature of work performed within this facility, U.S. citizenship is required. Join us. The world can’t wait. You Have: 4+ years of experience in vulnerability management, security operations, or incident response Experience with an Attack Surface Management discovery tool such as Defender EASM Experience with securing cloud infrastructure such as AWS, Azure, or GCP Experience with automation and data analysis such as Python preferred Experience with API integrations to connect disparate systems, automate processes, and improve operational efficiency Knowledge of networking fundamentals including TCP, IP, DNS, SSL, and TLS Associate’s degree and 7+ years of experience supporting IT projects and activities, Bachelor’s degree and 5+ years of experience supporting IT projects and activities, Master’s degree and 3+ years of experience supporting IT projects and activities, or 12+ years of experience supporting IT projects and activities in lieu of a degree Nice If You Have: Experience with data analytics including data manipulation, visualization, and reporting Experience partnering with system owners to identify mitigations or compensating controls when remediation is not immediately feasible Experience triaging vulnerabilities and determining risk-based prioritization Experience with IT service management platforms such as ServiceNow Knowledge of Configuration Management Database (CMDB) concepts and implementation Knowledge of security frameworks such as NIST CSF, MITRE ATT&CK, or CIS Controls Ability to translate technical findings into business risk for non-technical stakeholder Compensation At Booz Allen, we celebrate your contributions, provide you with opportunities and choices, and support your total well-being. Our offerings include health, life, disability, financial, and retirement benefits, as well as paid leave, professional development, tuition assistance, work-life programs, and dependent care. Our recognition awards program acknowledges employees for exceptional performance and superior demonstration of our values. Full-time and part-time employees working at least 20 hours a week on a regular basis are eligible to participate in Booz Allen’s benefit programs. Individuals that do not meet the threshold are only eligible for select offerings, not inclusive of health benefits. We encourage you to learn more about our total benefits by visiting the Resource page on our Careers site and reviewing Our Employee Benefits page. Salary at Booz Allen is determined by various factors, including but not limited to location, the individual’s particular combination of education, knowledge, skills, competencies, and experience, as well as contract-specific affordability and organizational requirements. The projected compensation range for this position is $99,000.00 to $225,000.00 (annualized USD). The estimate displayed represents the typical salary range for this position and is just one component of Booz Allen’s total compensation package for employees. This posting will close within 90 days from the Posting Date. Identity Statement As part of the hiring process, we will ask you to complete an identity verification process that leverages advanced biometrics and artificial intelligence to ensure authenticity and protect against identity fraud. You are expected to be on camera during interviews and assessments. We reserve the right to take your picture to verify your identity and prevent fraud. Candidate AI Usage Policy AI is a part of our daily work at Booz Allen, and we are committed to the responsible and ethical use of AI tools. However, we want to ensure a fair candidate process based on your own skills and knowledge. As part of this commitment, the use of artificial intelligence (AI) or other tools to assist with responses during interviews (whether in-person or virtual) is prohibited unless permission is explicitly provided. Work Model Our people-first culture prioritizes the benefits of collaboration, whether it occurs in person or virtually. To support engagement and effective communication, employees working virtually are generally expected to have their cameras on during meetings. Remote: If this position is listed as remote, there may still be occasions when you are required to work in person at a Booz Allen or customer facility. Hybrid: If this position is listed as hybrid, you will be expected to work from a Booz Allen facility frequently, in alignment with leadership expectations and the needs of the role. You may also be required to work from or visit a customer facility. Onsite: If this position is listed as onsite, work will primarily be performed at a Booz Allen office or customer facility, where employees will collaborate directly with colleagues and customers as required by the role. Commitment to Non-Discrimination All qualified applicants will receive consideration for employment without regard to disability, status as a protected veteran or any other status protected by applicable federal, state, local, or international law. Note: Microsoft Internet Explorer is not fully compatible with Workday and users may experience systems issues with this browser. We recommend that you use one of the following browsers to avoid problems: Google Chrome, Mozilla Firefox, Microsoft Edge, Apple Safari, Opera Browser or Blackberry Browser. If you continue to experience issues, it is sometimes necessary to reset your browser by clearing your cache. About Booz Allen Hamilton Booz Allen is an advanced technology company delivering outcomes with speed for America’s most critical defense, civil, and national security priorities. We build technology solutions using AI, cyber, and other cutting-edge technologies to advance and protect the nation and its citizens. By focusing on outcomes, we enable our people, clients, and their missions to succeed—accelerating the nation to realize our purpose: Empower People to Change the World®. Commitment to Non-Discrimination All qualified applicants will receive consideration for employment without regard to disability, status as a protected veteran or any other status protected by applicable federal, state, local, or international law. Know Your Rights Poster Accommodations If you are an individual with a disability and would like to request a reasonable workplace accommodation for any part of our employment process, please contact the Booz Allen Help Desk by calling View phone number on click.appcast.io or sending an email to View email address on click.appcast.io. This option is reserved only for individuals who are requesting a reasonable workplace accommodation. It is not intended for other purposes or inquiries. Data Privacy For more information on how Booz Allen uses your information, please see our Careers Privacy Policy.

Vacancy posted 1 day ago
Similar jobs that could be interesting for youBased on the External Attack Surface Management Analyst in McLean, VA vacancy
  • Ernst & Young Oman is seeking an Offensive Security Analyst for the Attack Surface Management team to evaluate and reduce digital exposure through penetration testing. You will identify and assess vulnerabilities across EY’s global attack surface, working to improve security... 
    Suggested
    Flexible hours

    Ernst & Young Oman

    Washington DC
    2 days ago
  •  ...Management Analyst CeLeen, an operating firm of Command Holdings, is seeking a Management Analyst...  ...analyst coordinates with internal and external stakeholders to support development and...  ..., and mitigating UAS enabled cyber-attacks on connected systems. Advise on the... 
    Suggested
    Full time
    Contract work
    For contractors
    Work at office
    Local area
    Visa sponsorship
    Work visa
    Flexible hours

    Command Holdings, a Pequot Company

    Arlington, VA
    20 hours ago
  • $90k - $125k

     ...highly motivated and skilled Vulnerability Management Analyst to join our team. We build mission...  ...remediation of vulnerabilities. Monitor external threat intelligence and evaluate emerging...  ..., security controls, and common attack vectors. Excellent analytical and problem... 
    Suggested
    Interim role

    Sherpa 6, Inc.

    Springfield, VA
    2 days ago
  • $191k - $253k

    Director, Business Development, Maritime (surface Platform) Lead growth and capture efforts for Anduril’s Surface Platform with US Navy...  ...changing competitive landscape. You will plan, initiate, and manage continuous engagements with current clients and prospective customers... 
    Suggested
    Full time
    Contract work
    Work experience placement

    jobs.frontdoordefense.com - Jobboard

    Washington DC
    1 day ago
  • $191k - $253k

     ...Business Development to lead growth efforts in a dynamic and innovative environment. You will capture business opportunities for the Surface Platform portfolio and grow existing client relationships. Ideal candidates demonstrate proven leadership in defense acquisitions,... 
    Suggested

    Neura Market

    Washington DC
    13 hours ago
  • $90k - $96k

     ...oriented Technical Business Analyst to join our dynamic team in Rockville...  ...for both, internal and external delivery. # Identify...  ...analytical, organizational and time management skills. # Working knowledge...  ...risks associated with cyber attacks from nation-states. Our wealth... 
    Work experience placement
    Local area
    Flexible hours

    IMAGINEEER LLC

    Rockville, MD
    2 days ago
  •  ...Consultant, Business Analyst / Project Manager About Infinitive Infinitive is a data and AI consultancy...  ...needs, pain points, and aspirations, surfacing findings to leadership Client &...  ...skills that distinguish internal vs. external topics Demonstrate a high-level understanding... 

    Infinitive

    McLean, VA
    3 days ago
  •  ...Program Support and Data Management Analyst BryceTech is a trusted leader in complex technology domains, delivering data-driven solutions...  ...This task will also require the careful sharing of data to external stakeholders to support programmatic and technical communication... 
    Full time
    Contract work
    For contractors
    Work at office

    BryceTech

    Washington DC
    3 days ago
  •  ...asset owners affected by cyber‑attacks. This role supports the rapid...  ...determine key questions for external entities about incident...  ...and escalate to specialized analysts. Required Skills U.S. Citizenship...  ...experience in cyber incident management or cybersecurity operations.... 
    Contract work
    Shift work

    Nightwing

    Arlington, VA
    1 day ago
  •  ...owners who experience cyber-attacks, providing immediate investigation...  ...is seeking a Cyber Incident Manager to support this critical...  ...analysis of log data Monitoring external data sources to maintain...  ...), escalating to specialized analysts Required Skills U.S. Citizenship... 
    Contract work
    Immediate start
    Shift work
    Night shift
    Weekend work

    Nightwing

    Arlington, VA
    3 days ago
  • ## (Cyber) Incident Management Analyst - HybridApplylocations: Arlington, VAtime type: Full timeposted...  ...asset owners who experience cyber-attacks, providing immediate investigation and...  ...and recognizing the key elements to ask external entities when learning the background and... 
    Contract work
    Immediate start
    Shift work

    Nightwing Group

    Arlington, VA
    13 hours ago
  •  ...Senior Business Analyst Location(s) Atlanta, Georgia | Dallas,...  ...-sprint when new information surfaces, while protecting scope and timelines...  ...• Partner with Product Management on roadmap definition,...  ...engineering leadership and our external development partner to ensure... 
    Remote work

    Koch Industries

    Washington DC
    3 days ago
  • $80k - $120k

     ...documentation standards across internal and external teams. Quantify value and success metrics...  ..., comms inputs, training outlines); surface interdependencies/risks early and secure...  ...decisions with clear owners and timelines. Manage issue triage within project scope; distinguish... 
    Work experience placement
    Local area

    Indeed

    Washington DC
    13 hours ago
  •  ...TMB has an exciting opportunity for a Data Management Analyst to provide support to a U.S. Navy program office. Responsibilities...  ...technical and analytical support to the NAVSEA Director for Surface Ship Maintenance, Modernization, and Sustainment (SEA 21).... 
    Temporary work
    Work at office
    Flexible hours

    Tech Marine Business

    Washington DC
    20 hours ago
  •  ...will plan and develop new processes and methods for implementing management policies and controls. You will conduct analyses of...  ...program and develop improved procedures, such as internal and external controls, to prevent fraud, waste, and abuse. You will coordinate... 
    Remote work

    U.S. Marine Corps

    Arlington, VA
    20 hours ago
  •  ...assigned areas. Communicates goals and objectives to executives and management to determine potential impacts on Taxpayer Services operations...  ...revision. Conducts complex analysis of internal and external initiatives affecting Taxpayer Services and operational continuity... 

    Internal Revenue Service

    Washington DC
    4 days ago
  • $115k - $125k

     ...Management Analyst MELE Associates, Inc. is seeking to add an experienced Management Analyst to support the National Nuclear Security Administration...  ...Salaries are determined based on several factors including external market data, internal equity, and the candidate's related... 
    Full time
    Contract work
    For contractors
    For subcontractor

    MELE Associates

    Washington DC
    4 days ago
  •  ...Management Analyst II - Arlington, VA Kent, Campa and Kate Incorporated (KCK) is a federal contracting company that provides professional...  ...situations identified by the Bureau, Department, or external audit organizations. Gathers facts and analyzes results relevant... 
    Full time
    Work at office
    Local area
    Immediate start
    Overseas

    Kent, Campa, and Kate Inc.

    Arlington, VA
    3 hours ago
  •  ...Management Analyst Washington, DC US Citizenship required to obtain a security clearance. Teracore is a Service Disabled Veteran...  ...develop long-term plans, develop and implement internal and external performance metrics, develop the agency acquisition strategy... 
    Local area

    Teracore

    Washington DC
    2 days ago
  • $230k - $290k

     ...intelligence reports on new attack vectors, vulnerabilities, and...  ...maintain relationships with external threat intelligence partners,...  ...tracking threat actors across surface, deep, and dark web environments...  ...etc.). Have strong project‑management skills and ability to build... 
    Visa sponsorship
    Flexible hours
    Weekend work

    Menlo Ventures

    Washington DC
    2 days ago
  •  ...Management Analyst I DOS OCS Washington DC - Washington, DC 20006 Duties/Tasks: Support OCS staff with research analysis as directed...  ...; Establish and maintain positive relationships with external stakeholders; Assist in presentations and outreach to... 
    For contractors
    Work at office
    Immediate start

    One Federal Solution

    Washington DC
    13 hours ago
  • $28.79 per hour

     ...Management Analyst II Category: Administration Main location: United States, District of Columbia, Washington Position ID: J1025-0322 Employment...  ...to work with financial data Communication with internal and external stakeholders MS Office experience Hourly Rate: $28.79/hour... 
    Hourly pay
    Full time
    Local area

    CGI

    Washington DC
    2 hours ago
  •  ...Management Analyst Position N4 Solutions, LLC offers our public and private sector clients the collective intellectual knowledge, expertise...  ..., meeting summaries, and status updates for internal and external stakeholders. Lead compilation, analysis, and organization... 
    Work at office
    Remote work

    N4 Solutions, LLC

    Bethesda, MD
    2 hours ago
  • $85k - $115k

     ...Overview Nakupuna Consulting is looking for a Management Analyst to join our team of talented consultants providing professional services...  ...to appropriately triage, address, and record internal and external correspondence. Directly manage, maintain, and... 
    Contract work
    Work at office
    Monday to Friday

    Na Ali'i Consulting & Sales, LLC.

    Arlington, VA
    13 hours ago
  •  ...closely with internal technical teams and external partners to design innovative solutions...  ...needs. Collaborate with Proposal Managers to deliver compelling, winning proposals...  ...Referral Bonuses. Undersea, on the surface, or in the air, SEACORP leverages its software... 
    Temporary work
    Work at office
    Local area
    1 day per week

    Seacorp Inc

    Washington DC
    2 days ago
  •  ...Technical Data queries from internal and external customers are answered correctly and in...  ...Experience in customer facing (Airlines) and managing expectations Physical Requirements...  ...office and production areas including uneven surfaces. Personal Protective Equipment required:... 
    Contract work
    Work at office
    Local area
    Remote work
    Visa sponsorship
    Flexible hours

    Airbus

    Herndon, VA
    1 day ago
  •  ...Inc has an exciting contingent opportunity for a Contracts Management Analyst to provide support to a Navy project office. Responsibilities...  ...communication skills. Ability to perform frequent internal and external customer interface including regularly scheduled and ad hoc... 
    Temporary work
    Work at office
    Flexible hours

    Tech Marine Business

    Washington DC
    4 days ago
  •  ...Asset Management Analyst Summit Ridge Energy ("SRE") is seeking an entry-level Asset Management Analyst who is interested in breaking into...  ..., loss waterfall, etc.) Coordinate with internal and external teams to facilitate payments of quarterly tax equity investor... 
    Work at office

    Summit Ridge Energy

    Arlington, VA
    3 days ago
  • $50k - $290k

     ...engineers, cyber experts, linguists, and analysts are dedicated to empowering our clients,...  ...executing communications strategies, managing digital platforms, and creating high quality...  .... Manage and maintain internal and external communication platforms, including websites... 
    Contract work
    Work experience placement

    The Swift Group, LLC

    Bethesda, MD
    3 days ago
  • $115k - $135k

     ...and transportation safety. We have a near‑term need for a Data Management Specialist to assist with systems engineering (SE) and testing...  ...OTE SharePoint sites and developing libraries; serving as external and internal site administrator; and tracking and assisting the... 
    Work at office

    Systems Planning & Analysis

    Alexandria, VA
    13 hours ago

Do you want to receive more vacancies?

Subscribe and receive similar vacancies to External Attack Surface Management Analyst. Be the first to apply!