Y-Axis Jobs Logo
Send us feedback
telephone  +91 7670 800 001
Log in Sign up Try Premium
External Attack Surface Management Analyst at BAE Systems
Preston, England, United Kingdom -
Full Time

Start Date

Immediate

Expiry Date

05 Oct, 25

Salary

45000.0

Posted On

23 Aug, 25

Experience

5 year(s) or above

Remote Job

Yes

Telecommute

Yes

Sponsor Visa

No

Skills

Legacy Systems, Cyber Security, Vulnerability, Windows Server, Ips, Ids, Cloud, Linux, Active Directory, Endpoint Protection, Operating Systems

Industry

Information Technology/IT

Description

Job title: External Attack Surface Management Analyst
Location: Preston or Frimley. We offer a range of hybrid and flexible working arrangements – please speak to your recruiter about the options for this particular role.
Salary: Circa 45k dependant on skills and experience

YOUR SKILLS AND EXPERIENCES:

Essential

  • A extensive technical background with a detailed knowledge of cyber security, computer networks and operating systems
  • Broad and detailed experience of technologies including but not limited to DNS, Certificate Transparency, firewalls, IDS/IPS, Active Directory, endpoint protection, Windows Server, Linux, TCP/IP, Networks, Cloud, CDN’s and Vulnerability Management
  • Good knowledge of technologies contributing to external risk, including publicly accessible services, user interfaces, and legacy systems
  • Analytical background and is comfortable analysing and interpreting large and complex data sets and articulating the story behind any observations along with providing conclusions and recommendations

Desirable

  • Good knowledge of technologies contributing to external risk, including publicly accessible services, user interfaces, and legacy system
Responsibilities
  • Supporting the Senior Attack Surface Management Analyst in maintaining the Global Attack Surface Management service to ensure BAE Systems perimeter assets are known and tested, and Shadow-IT assets are discovered and brought into governance
  • Identifying and prioritising vulnerabilities across BAE Systems managed external assets as part of ongoing external attack surface management, coordinating remediation with resolver teams
  • Reviewing and validating vulnerabilities detected by SaaS-based scanning tools, confirming exploitability and severity to inform accurate remediation
  • Supporting vulnerability management across cloud and SaaS environments, identifying risks and coordinating remediation to safeguard externally hosted services
  • Proactively detects external-facing security gaps and misconfigurations, ensuring timely escalation to relevant resolver teams for remediation