Senior Technical Analyst-Attack Service Analyst

Location: IN - Bangalore 24/7, IN - Bangalore | Job-ID: 215744 | Contract type: Standard | Business Unit: Cyber Security

Life on the team

Operates the cyber compliance framework to ensure Computacenter is continually compliant to our cybersecurity obligations, helping us to achieve our business goals and build customer trust.

What you’ll do

As a Senior Attack Surface Management Analyst, you will play a critical role in safeguarding Computacenter’s global digital footprint. You will not only operate as a front-line defender but also lead in shaping processes, mentoring junior analysts, and driving proactive risk reduction strategies.

This role requires a combination of technical expertise, analytical thinking, and strong stakeholder engagement, ensuring that external exposures are identified, prioritized, and remediated efficiently. 

Attack Surface Management

• Asset Discovery (external): By means of a tool, you will oversee the continuous discovery, monitoring, and assessment of Computacenter’s attack surface, including all internet-facing assets, including domains, subdomains, IP addresses, cloud resources, APIs, and any other externally accessible infrastructure and validate newly discovered assets against CMDB for ownership and validation.
• External Attack Vector Identification: Mapping potential pathways an attacker could use to penetrate Computacenter's defenses from the outside. This includes open ports, exposed services, misconfigurations, third-party dependencies, and shadow IT. Escalate newly discovered exposures into vulnerability management and SOC workflows.
• External Risk Assessment: Evaluation of the security posture of external assets, using techniques like external vulnerability scanning, digital foot printing, and threat intelligence, Correlate ASM findings with threat intelligence feeds to assess likelihood of exploitation, apply scoring models (CVSS, EPSS, business context) to prioritize exposures, Support CSOC peers and Cyber Ops Heads of in triaging high-risk findings.
• Remediation & Support: Create tickets in ITSM (e.g., Remedy & ServiceNow) with clear ownership, context, and SLA, Track remediation progress and highlight SLA breaches to Cyber SMO, provide evidence to GRC / BISO for risk acceptance or mitigation decisions.
• Prioritization based on External Exposure & Risk: Integrate threat intelligence into attack surface management to enhance proactive risk mitigation, ranking risks based on their potential impact and ease of exploitation from an external attacker's perspective.
• Collaboration with Platform Owners and Managers & Security Teams: Working with Computacenter teams (including Vulnerability Management, Threat Management, Risk Management, Red Teams, BISO, CISM, Application, Infrastructure and Network Teams) to prioritize and remediate identified external risks. 
• Monitoring: Continuously monitoring the external attack surface for new assets or changes that could introduce vulnerabilities.
• Third-Party Risk (External Focus): Assessing the external attack surface introduced by third-party vendors and their integrations.

What you’ll need

• 6-8 years of experience of working in role in Security, Infrastructure, Information Technology or Operational role.
• Ability to provide detailed verbal briefings to key stakeholders.
• Strong understanding of ASM lifecycle (discovery → prioritization → remediation → reporting).
• Proven ability to brief senior stakeholders and influence them towards proactive security decisions.
• High-level communication skills (verbal, written, reporting).
• Strong written and spoken English skills. 
• Excellent communicator and able to influence and persuade stakeholders to prioritize security within their decision-making and strategy. 
• Understanding of the Attack Surface Management, from collection through to feedback. 
• Experience of producing high-quality documentation for a variety of audiences. 
• Familiarity with common cyber threats, threat actors, attack vectors, and vulnerabilities. 
• Knowledge of information assurance standards and frameworks including CIS, NIST, ISO 27001, Cyber Essentials/Essentials Plus and GDPR.
• Hands on experience with ASM Platforms, Vulnerability tools (Nessus, Tenable), and endpoint/security tooling (Tanium, AD, Intune) and SIEM/SOAR
• Knowledge of cloud security (AWS, Azure, GCP), DevSecOps practices.
• Flexibility to work Out of Hours

About us

Computacenter is a leading independent provider of IT infrastructure services, with about 20,000 employees worldwide. We work at the heart of digitisation, advising organisations on IT strategy, implementing the most appropriate technology and managing our customers’ infrastructures.

We offer a friendly, open working environment without too much fuss about hierarchy. We are looking for professionals with diverse competencies, personalities and strengths who want to live our shared value of teamwork and performance.

Interested in joining a company with a strong sense of community?

We’re growing. We’re hiring. We encourage. We empower. We support.
#winningtogether #peoplematter