Principle External Attack Surface Management Consultant jobs in United States
cer-icon
Apply on Employer Site
company-logo

Matlen Silver · 3 days ago

Principle External Attack Surface Management Consultant

positionCharlotte, NC
timeContract
remoteOnsite
senioritySenior Level, Lead/Staff

Matlen Silver is a company with over 40 years of experience in delivering technology solutions for Fortune 500 companies. They are seeking a Cybersecurity Senior Engineer to design, implement, and mature security validation capabilities, focusing on External Attack Surface Management and collaborating with cross-functional teams to enhance cyber resilience.

Information TechnologyRecruitingStaffing Agency
badNo H1BnoteU.S. Citizen Onlynote
Hiring Manager
Tyreik Lyles
linkedin

Responsibilities

Lead EASM Validation and Engineering: Investigate and reproduce findings from EASM platforms (e.g., exposed services, misconfigurations, weak crypto, DNS issues, leaked assets)
Perform Active/Passive Reconnaissance: Familiarity with open-source techniques and tools for profiling attack surface
Advance EASM Capabilities: Develop tuning logic for discovery seeds and asset correlation. Continuously improve signal fidelity and automate common validation tasks
Design and Execute BAS Scenarios: Plan and conduct realistic cyberattack simulations that mirror real-world threat actor TTPs across enterprise environments
Analyze Simulation Results: Assess BAS outcomes to identify security control gaps, vulnerabilities, and opportunities for improved detection and response
Provide Actionable Recommendations: Develop and communicate prioritized recommendations to strengthen security policies, procedures, and technical controls
Collaborate Across Teams: Work with red, blue, and purple teams, as well as incident response and threat intelligence groups, to adjust alerts, rules, and detection logic
Threat Hunting and Intelligence: Leverage threat intelligence to inform EASM scenarios and proactively address emerging threats
Vulnerability Management Support: Contribute to the identification, prioritization, and remediation of vulnerabilities based on simulation and testing results
Documentation and Reporting: Maintain detailed documentation of ASM & BAS methodologies, procedures, and findings; communicate technical results clearly to both technical and non-technical stakeholders
Continuous Integration/Continuous Deployment (CI/CD): Design, develop and maintain CI/CD Pipeline(s) (e.g., Gitlab, Terraform, AWS, Jenkins, Github)
Automation/Scripting: Design and Execute automation scripts (e.g., Python, Powershell, Bash, etc.)

Qualification

Python ScriptingMITRE ATT&CK MappingBAS Tool ExperienceAutomationCI/CD Pipeline

Required

Python Scripting
MITRE ATT&CK Mapping
Automation
Experience with any BAS tool (safebreach, mandiant, cymulate, scythe, attackIQ)

Benefits

Health, vision, and dental insurance (single and family coverage)
401(k) plan (employee contributions only)

Company

Matlen Silver

twittertwittertwitter
company-logo
Matlen Silver is a staffing agency for IT firms.
dateFounded in 1980
location
Somerville, New Jersey, USA
people-size1001-5000 employees
web-link
https://www.matlensilver.com/

Funding

Current Stage
Late Stage

Leadership Team

leader-logo
Michele Beilman
Chief Executive Officer
linkedin
leader-logo
Jimmy De Silver
President & Owner
linkedin

Recent News

PR Newswire
Monument Consulting Announces 2025 Strategic Suppliers
2025-11-19
Morningstar
Matlen Silver Names Michele Beilman as First Female Chief Executive Officer
2024-05-30
Morningstar
Sompo Horizon Introduces CareGo as a Caregiving Benefit to Matlen Silver
2023-12-10
Company data provided by crunchbase