Back to search:Attack Surface / Jakarta (south)

[HIRING] Attack Surface & Risk Protection Analyst

We're looking for an experienced
Attack Surface & Risk Protection Analyst
to join our cybersecurity team

This role is responsible for monitoring, analyzing, and mitigating risks across the organization's internal and external digital footprint.

Key Responsibilities

  • Monitor and analyze changes in internal and external attack surfaces.
  • Identify vulnerabilities, exposed assets, and security anomalies from various sources (web surface, deep web, dark web, social media).
  • Follow up on findings from
    External Attack Surface Discovery (ASD)
    and
    Digital Risk Protection Service (DRPS)
    platforms.
  • Manage external security incidents such as data leaks, domain abuse, phishing, and digital fraud.
  • Conduct
    takedown
    of malicious domains/accounts in coordination with internal and external stakeholders.
  • Provide mitigation recommendations and support the Blue Team in responding to digital threats.
  • Perform third-party risk assessments related to partners' or contractors' digital asset exposure.
  • Analyze digital threat trends to support strategic security decisions.

Qualifications

  • Minimum
    4 years of experience
    in cybersecurity, including at least
    2 years
    in
    penetration testing
    ,
    red teaming
    , or
    digital risk protection
    .
  • Strong understanding of
    CVE
    and common vulnerabilities.
  • Hands-on experience with
    ASD platforms
    (e.g.,
    , SentinelOne, Mandiant
    ) and
    DRPS platforms
    (e.g.,
    Group-IB, Brandefense, Cyble Vision, SOCRadar, CybelAngel, Digital Shadows
    ).
  • Deep knowledge of
    brand protection
    ,
    domain abuse
    , and
    third-party risk management
    .
  • Proficient in
    incident reporting
    and
    digital takedown processes
    .
  • Excellent communication and collaboration skills with both internal teams and external partners.

Preferred Certifications

  • EC-Council:
    CEH, CTIA, CSA
  • GIAC:
    GCTI, GCFA, GCIH
  • OffSec:
    OSDA, OSIR, OSTH, OSCP
  • CompTIA:
    PenTest+, CySA+, SecurityX

Interested? Send your CV to or DM for more info

CyberSecurity #DigitalRiskProtection #AttackSurfaceManagement #ThreatIntelligence #BlueTeam #RedTeam #IncidentResponse #CyberThreats #InfoSecJobs #HiringNow #CyberSecurityJobs #SecurityAnalyst #OffSec #GIAC #EthicalHacking #PenTest #DataProtection #RiskManagement #JoinOurTeam
Apply on the website