Back to all jobs

Attack Surface Management Lead

Booz Allen

May 13

Attack Surface Management Lead

Key Role:

Work as an Attack Surface Management Lead, including leading and supporting the development and delivery of a diverse range of attack surface management consulting and operations service programs to a portfolio of our commercial clients. Collaborate with a team that delivers world-class Cybersecurity attack surface management, vulnerability management, security testing, and application security capability development programs and solutions to large enterprise customers. Deliver vulnerability management and attack surface management security services to our large enterprise clients in support of their overall Cyber Defense programs. Confirm and document attack surface management, as well as threat and vulnerability management improvements based on assessment, operations, and analysis work. Perform vulnerability attack surface assessments and threat modeling to identify control weaknesses and assess the effectiveness of existing controls. Perform root cause analysis on identified vulnerabilities and attack surface weaknesses to determine feasible technical solutions, help triage risks, and prioritize remediation activities. This position is open to remote delivery anywhere within the U.S., to include the District of Columbia.

Basic Qualifications:

  • 5+ years of experience with vulnerability management and Cybersecurity operations
  • 3+ years of experience with vulnerability management platforms
  • 2+ years of experience with databases, CSV files, and other large data sources
  • Knowledge of general Cybersecurity concepts and methods, including vulnerability management, application security, incident response, governance, risk or compliance, or security architecture
  • Bachelor's degree

Additional Qualifications:

  • 3+ years of experience with attack surface reduction or attack surface management
  • 1+ years of experience with penetration testing or ethical hacking 
  • Experience with secure coding and software development
  • Experience with server application and network security hardening 
  • Experience with ASM or VM platforms
  • Possession of excellent oral and written communication skills, including presenting to technical and non-technical clients


The proposed salary range for this position in Colorado is 100,000 to 170,000. Final salary will be determined based on various factors.

At Booz Allen, we celebrate your contributions, provide you with opportunities and choice, and support your total well-being. Our comprehensive benefit offerings include healthcare, retirement plan, insurance programs, commuter program, employee assistance program, paid and unpaid leave programs, education assistance, and childcare benefits.

We’re an EOE that empowers our people—no matter their race, color, religion, sex, gender identity, sexual orientation, national origin, disability, veteran status, or other protected characteristic—to fearlessly drive change.

#LI-AH1, #LI-Remote, DH1, ID15-CMCL