Sign up to access all features of our service.
  • Job search
  • Favorites
  • Create a CV
    New
  • Salaries
  • Subscriptions

Offensive Security Analyst

Ernst & Young Oman

The opportunity As an Offensive Security Analyst on the Attack Surface Management team, you will play a key role in evaluating and reducing EY’s digital exposure through hands‑on penetration testing and adversarial simulation. Working under the guidance of the Exposure Management Lead, you will identify, assess and help mitigate vulnerabilities across EY’s global attack surface. This role goes beyond traditional scanning by actively emulating threat actors, performing penetration testing and assessing the true impact of security weaknesses. Your responsibilities will include supporting the validation of third‑party risk assessments, identifying misconfigurations and exposed assets, and ensuring security standards are applied across EY’s digital ecosystem. You will also contribute to strengthening Continuous Threat Exposure Management and Attack Surface Management efforts by providing actionable insights that improve proactive defense and reduce overall business risk. Your key responsibilities The Analyst will apply offensive security techniques to assess EY’s external and internal attack surface, identifying vulnerabilities across web applications, APIs, cloud environments, networks, and infrastructure. This includes testing proof‑of‑concepts to validate exploitability and determine real‑world impact. The role involves emulating adversary tactics to test detection and response capabilities, as well as conducting reconnaissance and asset discovery to uncover unmanaged or exposed assets. The candidate will support third‑party and supply chain risk validation efforts by reviewing assessments or conducting targeted testing where required. Collaborating closely with security engineering, blue teams and business stakeholders, the analyst will help prioritize remediation efforts based on risk severity and exploitability. Additionally, the role will contribute to enhancing processes, playbooks and reporting standards within the Vulnerability Discovery and offensive security functions. Skills and attributes for success Capability to identify and exploit vulnerabilities beyond automated scanning tools like Qualys, Nessus etc. Strong attention to detail with a methodical approach to identifying complex attack paths Critical thinking and analytical skills to evaluate vulnerabilities in a business risk context Ability to manage high volumes of testing requests without compromising depth or quality Flexibility to work across diverse technologies, including cloud, applications and infrastructure Effective communication skills to convey technical findings to both technical and non‑technical audiences Familiarity with research techniques and threat intelligence to support proactive risk identification To qualify for the role you must have A minimum of 4 years of experience in penetration testing, red teaming, purple teaming or offensive security Hands‑on experience testing applications, APIs, cloud environments and network infrastructure Strong understanding of common vulnerability classes such as OWASP Top 10 and exploitation techniques Familiarity with offensive security methodologies and frameworks Experience supporting or performing third‑party risk assessments Strong analytical and problem‑solving skills with the ability to prioritize risks effectively Strong communication and stakeholder management skills Ideally, you’ll also have OWASP training Incident response experience What we look for We are looking for a developing Offensive Security Analyst that can operate with supervision and bring new approaches to discovering and evaluating the business’s externally‑exposed vulnerabilities. We are seeking a seasoned analyst to improve the organization’s ability to reduce the attack surface while enabling the business. The ideal candidate will seek to improve others while continuously learning and identifying ways to strengthen the organization. What we offer you We offer a comprehensive compensation and benefits package where you’ll be rewarded based on your performance and recognized for the value you bring to the business. The base salary range for this job in all geographic locations in the US is 76,400 to 138,600. The base salary range for New York City Metro Area, Washington State and California (excluding Sacramento) is 91,700 to 157,500. Individual salaries within those ranges are determined through a wide variety of factors including but not limited to education, experience, knowledge, skills and geography. In addition, our Total Rewards package includes medical and dental coverage, pension and 401(k) plans, and a wide range of paid time off options. Join us in our team‑led and leader‑enabled hybrid model. Our expectation is for most people in external, client‑serving roles to work together in person 40‑60% of the time over the course of an engagement, project or year. Under our flexible vacation policy, you’ll decide how much vacation time you need based on your own personal circumstances. You’ll also be granted time off for designated EY Paid Holidays, Winter/Summer breaks, Personal/Family Care, and other leaves of absence when needed to support your physical, financial and emotional well‑being. EY is building a better working world by creating new value for clients, people, society and the planet, while building trust in capital markets. EY provides equal employment opportunities to applicants and employees without regard to race, color, religion, age, sex, sexual orientation, gender identity/expression, pregnancy, genetic information, national origin, protected veteran status, disability status or any other legally protected basis, including arrest and conviction records, in accordance with applicable law. EY is committed to providing reasonable accommodation to qualified individuals with disabilities including veterans with disabilities. If you have a disability and either need assistance applying online or need to request an accommodation during any part of the application process, please call 1-800-EY-HELP3, select Option 2 for candidate related inquiries, then select Option 1 for candidate queries and finally select Option 2 for candidates with an inquiry which will route you to EY’s Talent Shared Services Team (TSS) or email the TSS at View email address on click.appcast.io. #J-18808-Ljbffr

Vacancy posted 5 days ago
Similar jobs that could be interesting for youBased on the Offensive Security Analyst in Sacramento, CA vacancy
  • Ernst & Young Oman is seeking an Offensive Security Analyst to evaluate and mitigate digital vulnerabilities across its attack surface. This role requires at least 4 years of experience in penetration testing and offensive security methodologies, with responsibilities... 
    Suggested

    Ernst & Young Oman

    Sacramento, CA
    19 hours ago
  •  ...IT Security Analyst Sacramento, CA 3+ years Required Skills: Must provide resumes which describe in detail...  ...Researcher and Advanced Penetration Tester (GXPN) o Offensive Security Experienced Penetration Tester (OSEP) o GIAC... 
    Suggested

    West Advanced Technologies

    Sacramento, CA
    19 hours ago
  •  ...Security Analyst Sacramento, CA 18+ months Mandatory Qualifications: A minimum of seven (7) years' experience within the last 10 years, providing security vulnerability and risk assessment services directly or through a partner relationship... 
    Suggested

    West Advanced Technologies

    Sacramento, CA
    1 day ago
  • $124.2k - $186.2k

     ...About the team: The Information Security organization advances the overall state of security at Rubrik through purposeful initiatives and coordination of large security projects. Information Security builds technologies, tools, and processes to better enable teams... 
    Suggested
    Local area
    Remote work

    Rubrik

    Sacramento, CA
    1 day ago
  • $85k

    Summary The Senior Security Operations Center Analyst will be responsible for planning and implementing security measures to protect computer systems...  ...more experience in information security administration, offensive tactics, monitoring, and IR. required Three (3) years... 
    Suggested
    Work at office

    Ryder

    Sacramento, CA
    4 days ago
  •  ...Security Applications Analyst Sacramento, CA 12+ months Required Skills/Experience: Implement, configure, and maintain Information Security and Risk Management software platforms and computing systems. Provide customer service support... 

    West Advanced Technologies

    Sacramento, CA
    3 days ago
  •  ...Job Title Bachelor's degree in Cyber Security or related field, or equivalent work experience 4-years of experience in Security Operation...  ...Network+, ISC2 CC, ISSAP, CCSP, SANS GIAC Certified Intrusion Analyst (GCIA) or SANS GIAC Network Forensic Analyst (GNFA) or SANS... 
    Work experience placement

    Samprasoft

    Sacramento, CA
    4 days ago
  •  ...Information Security Analyst Sacramento, CA 12+ months As an information security analyst, Consultant’s duty is to ensure that the organization’s digital assets are secure and protected from unauthorized access. This includes protection of on-premises infrastructure... 

    WATI

    Sacramento, CA
    3 days ago
  • $30 per hour

     ...the Oracle Government, Defense & Intelligence team supporting Federal Compliance and Federal Sales Teams. The Information Security Compliance Analyst is expected to work with the GDI Performance Management team to ensure documentation, processes and policies up to date... 
    Hourly pay
    Temporary work
    Internship
    Flexible hours

    Oracle

    Sacramento, CA
    3 days ago
  • $145.6k - $209.3k

    Role Overview As a Senior Staff SOC Analyst, you will be part of UKG’s Global Security Operations team. This team is responsible for detecting, investigating, responding to, and leading containment of sophisticated cyber threats and major security incidents. Your role... 

    UKG (Ultimate Kronos Group)

    Sacramento, CA
    1 day ago
  • $50k - $70k

     ...The Operations Security Analyst/Specialist protects client, employee, and company data across our cloud stack (Google Workspace, Slack, Dropbox, etc.) by owning identity, device, and data controls. You’ll make access simple and secure, keep laptops healthy, tighten how... 
    Work at office
    Immediate start
    Weekend work
    Afternoon shift
    3 days per week
    Early shift

    Unearth Campaigns LLC

    Sacramento, CA
    19 hours ago
  • Healthcare | Compliance | Cloud | Enterprise Security We are seeking a Senior Information Security Analyst to support security governance, compliance, and operational security delivery across large, regulated healthcare and government client environments. This is a senior... 

    ARK Strategies

    Rancho Cordova, CA
    2 days ago
  • Oracle in Sacramento, CA is seeking a Business Analyst for Global Physical Security to support supplier management, contracts, RFPs, and requisition/purchase processes. You will optimize spending, review invoices, mitigate risk, and improve GPS operations through cross... 

    null

    Sacramento, CA
    1 day ago
  •  ...Job Title - Information Security Analyst - Engineer Req Id- 24-143433 Duration: 06+ Months with possible extensions Location: Sacramento, CA Hybrid Role Overview: We are seeking a skilled and detail-oriented Governance and Compliance... 
    Work at office

    HonorVet Technologies

    Sacramento, CA
    19 hours ago
  • $78.9k - $123.3k

     ...system authorization and continuous monitoring activities within a Federal environment. This role is responsible for managing the security authorization lifecycle for one or more information systems, ensuring compliance with Federal cybersecurity requirements, and maintaining... 
    Permanent employment
    Full time
    Part time
    Work at office
    Local area
    Remote work

    Noblis

    Sacramento, CA
    1 day ago
  •  ...Armed Services Vocational Aptitude Battery for enlisted roles or officer qualification tests for officer programs Eligibility for a security clearance when required for your rating or designator Additional qualifications can include specific skills, education, licensure... 
    Apprenticeship
    Night shift

    US Navy

    Sacramento, CA
    10 hours ago
  • $50 - $60 per hour

    DataAnnotation is committed to creating high-quality AI. Enjoy the flexibility of remote work and the freedom to set your own schedule. This is an opportunity to work with us as an independent contractor.   We're currently expanding into an exciting new area – teaching...
    Hourly pay
    Contract work
    For contractors
    Work experience placement
    Remote work

    Data Annotation

    North Highlands, CA
    more than 2 months ago
  • $18.85 - $29.6 per hour

     ...confidential information and investigations Detail-oriented Preferred Prior experience or education in Loss Prevention, security or law enforcement Knowledge of surveillance and apprehension techniques Knowledge of or ability to learn Google applications... 
    Full time
    Temporary work
    Part time
    Local area
    Flexible hours
    Shift work

    Kohl's

    Sacramento, CA
    3 days ago
  • $10.16k

     ...relating to the apprehension of offenders and the investigation of offenses; prepares reports on arrests made, activities performed and unusual incidents observed; checks buildings for physical security; serves warrants and subpoenas; requests and retrieves information... 

    City of West Sacramento, CA

    West Sacramento, CA
    19 hours ago
  • $18.85 - $29.6 per hour

     ...Uphold confidential information and investigations. Detail-oriented. Preferred Prior experience or education in Loss Prevention, security or law enforcement. Knowledge of surveillance and apprehension techniques. Knowledge of or ability to learn Google applications and... 
    Full time
    Temporary work
    Part time
    Local area
    Flexible hours

    FashionUnited

    Sacramento, CA
    14 hours ago
  • $22 - $23 per hour

    Job Description - Overview Do you have EXPERIENCE IN RETAIL LOSS PREVENTION and want to work for a company that still believes in apprehending and prosecuting criminals? The Loss Prevention Department for Hobby Lobby is currently seeking a full time In-Store ...
    Full time
    Local area
    Flexible hours
    Weekend work

    Hobby Lobby

    Sacramento, CA
    1 day ago
  • $24.5 per hour

     ...times. Assist with special projects, as assigned. Qualifications: Strong knowledge of computer applications; including Security Software, CCTV equipment, Excel, Word, and PowerPoint Strong verbal and written communication skills Knowledge of federal,... 
    Full time
    Temporary work
    Local area
    Immediate start
    Flexible hours
    Night shift
    Afternoon shift

    Uniqlo

    Sacramento, CA
    12 hours ago
  • $102.5k - $158.85k

     ...relating to the apprehension of offenders and the investigation of offenses; prepares reports on arrests made, activities performed and unusual incidents observed; checks buildings for physical security; serves warrants and subpoenas; requests and retrieves information... 
    Full time
    Work experience placement

    City of West Sacramento, CA

    Sacramento, CA
    1 day ago
  •  ...cutoff dates may be set as departmental needs warrant.** Next Cutoff Date: 7/3/2026 Under the direction of the Supervisor I, the Analyst II is responsible for monitoring the fiscal management of a wide range of multifamily properties financed by the Agency, keeping... 
    Permanent employment
    Full time
    Work experience placement
    Work at office
    Remote work
    Visa sponsorship
    Work visa
    Monday to Friday

    California Correctional Health Care Services

    Sacramento, CA
    1 day ago
  • $16.9 - $20.4 per hour

     ...with peers and supervisors to accomplish tasks ~ Able to work a flexible schedule to support business needs ~0-2 years retail or security experience Benefits include: Associate discount; EAP; smoking cessation; bereavement; 401(k) Associate contributions; child... 
    Hourly pay
    Temporary work
    Local area
    Home office
    Flexible hours

    TJX

    Sacramento, CA
    3 days ago
  •  ...of cash management and cash flow analysis for a large organization; short and long term investments including bonds, government securities, certificates of deposit, commercial paper, etc.; investment/financial terminology and techniques; principles and practices of accounting... 
    Full time
    Temporary work
    Part time
    Work at office
    Local area
    Immediate start

    GovernmentJobs.com

    Sacramento, CA
    19 hours ago
  • $10,681 per month

     ...overall Investment Portfolio by seeking investment strategies and security types that would protect it against inflation, generate...  ...possesses a professional certification as a Chartered Financial Analyst (CFA) may receive a 5% monthly base pay differential. In July... 
    Permanent employment
    Full time
    Seasonal work
    Work at office
    Remote work
    Flexible hours

    CalSTRS

    Sacramento, CA
    3 days ago
  •  ...opportunities be, too? The Opportunity This role is Detroit Hybrid preferred; however, remote option possible. The Senior Actuarial Analyst is responsible for developing and supporting a robust reserving framework at Ally Insurance. The Senior Actuarial Analyst will be... 
    Permanent employment
    Work experience placement
    Remote work
    Flexible hours

    Ally

    Sacramento, CA
    1 day ago
  • $129.3k - $177.8k

    Become a part of our caring community The Actuary, Analytics/Forecasting analyzes and forecasts financial, economic, and other data to provide accurate and timely information for strategic and operational decisions. Establishes metrics, provides data analyses, and works...
    Bi-weekly pay
    Full time
    Temporary work
    Apprenticeship
    Work experience placement
    Remote work
    Work from home
    Home office
    Shift work

    Humana

    Sacramento, CA
    1 day ago
  • $129.3k - $177.8k

    A healthcare services provider is seeking an Actuary for Analytics/Forecasting to provide crucial insights for strategic decisions. Responsibilities include collaborating with stakeholders, analyzing financial data, and advising executives. The ideal candidate holds a ...
    Remote work

    Humana

    Sacramento, CA
    14 hours ago

Do you want to receive more vacancies?

Subscribe and receive similar vacancies to Offensive Security Analyst. Be the first to apply!