Attack Surface Management Analyst

Job Title Attack Surface Management Analyst Job Location UniOps Bangalore ABOUT UNILEVER Be part of the world s most successful purpose-led business Work with brands that are well-loved around the world that improve the lives of our consumers and the communities around us We promote innovation big and small to make our business win and grow and we believe in business as a force for good Unleash your curiosity challenge ideas and disrupt processes use your energy to make this happen Our brilliant business leaders and colleagues provide mentorship and inspiration so you can be at your best Every day nine out of ten Indian households use our products to feel good look good and get more out of life - giving us a unique opportunity to build a brighter future Every individual here can bring their purpose to life through their work Join us and you ll be surrounded by inspiring leaders and supportive peers Among them you ll channel your purpose bring fresh ideas to the table and simply be you As you work to make a real impact on the business and the world we ll work to help you become a better you ABOUT UNIOPS Unilever Operations UniOps is the global technology and operations engine of Unilever offering business services technology and enterprise solutions UniOps serves over 190 locations and through a network of specialized service lines and partners delivers insights and innovations user experiences and end-to-end seamless delivery making Unilever Purpose Led and Future Fit Unilever is one of the world s leading consumer goods companies with operations in over 190 countries and serving 3 4 billion consumers every day Unilever delivers best in class performance with market making unmissably superior brands which include Dove Knorr Domestos Hellmann s Marmite and Lynx Our strategy beings with a purpose that places our consumers at the heart of everything we do Brighten everyday life for all Role Purpose This role supports the Threat Intelligence EASM Lead in identifying monitoring and managing Unilever s external digital footprint The EASM Analyst will leverage open-source intelligence OSINT commercial EASM platforms and reconnaissance tools to discover assess and reduce Unilever s exposure to external cyber threats Role Summary The External Attack Surface Management EASM Analyst plays a critical role in Unilever s proactive cybersecurity strategy by continuously identifying analyzing and mitigating risks associated with the organization s internet-facing assets As digital transformation accelerates and cloud adoption expands the external attack surface becomes increasingly dynamic and complex This role is designed to provide visibility into that evolving landscape and ensure that Unilever s digital perimeter is secure monitored and well-managed The analyst will be responsible for leveraging a combination of commercial EASM platforms such as Mandiant Wiz and Qualys and open-source reconnaissance tools like Shodan FOFA and Censys to discover unknown or unmanaged assets detect misconfigurations and identify potential vulnerabilities This includes domains IP addresses cloud services APIs and third-party integrations that may be exposed to the internet The EASM Analyst will work closely with Threat Intelligence Vulnerability Management and Incident Response teams to contextualize findings prioritize risks and support remediation efforts They will also contribute to the development of automated discovery and alerting mechanisms ensuring that new exposures are detected in near real-time In addition to technical responsibilities the role requires strong communication and collaboration skills to engage with asset owners IT teams and business stakeholders across the organization The analyst will help drive awareness of external risks support secure asset lifecycle management and contribute to the overall maturity of Unilever s cyber defense capabilities Main Accountabilities External Asset Discovery Mapping Use EASM tools e g Mandiant Wiz Qualys to identify and catalog Unilever s external-facing assets Perform continuous monitoring to detect changes in the external attack surface Reconnaissance Threat Identification Utilize OSINT and reconnaissance tools e g Shodan FOFA Censys to identify exposed services misconfigurations and potential vulnerabilities Correlate findings with threat intelligence to assess risk and prioritize remediation Risk Assessment Reporting Collaborate with vulnerability management and security operations to triage and remediate high-risk exposures Provide regular reports and dashboards on EASM findings trends and KPIs Collaboration Process Improvement Work with IT and cloud teams to validate asset ownership and ensure secure configurations Contribute to the development of EASM processes playbooks and automation strategies Key Skills and Relevant Experience Skills Strong understanding of internet protocols DNS SSL TLS and cloud infrastructure Proficiency with EASM and OSINT tools e g Mandiant Wiz Qualys Shodan FOFA Ability to analyze large datasets and identify patterns or anomalies Excellent communication skills to convey technical findings to non-technical stakeholders Familiarity with vulnerability management and threat intelligence workflows Experience 3-5 years of experience in cybersecurity with at least 1-2 years in EASM threat intelligence or vulnerability management Experience with cloud platforms Azure AWS GCP and their security configurations Knowledge of security frameworks such as MITRE ATT CK NIST CSF or CIS Controls Relevant certifications e g CEH OSCP Security GIAC GOSI are a plus Note All official offers from Unilever are issued only via our Applicant Tracking System ATS Offers from individuals or unofficial sources may be fraudulent please verify before proceeding