Job Title: Cyber Attack Surface Management Analyst
Location: UniOps Bangalore
ABOUT UNILEVER:
Be part of the world’s most successful, purpose-led business. Work with brands that are well-loved around the world, that improve the lives of our consumers and the communities around us. We promote innovation, big and small, to make our business win and grow; and we believe in business as a force for good. Unleash your curiosity, challenge ideas and disrupt processes; use your energy to make this happen. Our brilliant business leaders and colleagues provide mentorship and inspiration, so you can be at your best. Every day, nine out of ten Indian households use our products to feel good, look good and get more out of life – giving us a unique opportunity to build a brighter future.
Every individual here can bring their purpose to life through their work. Join us and you’ll be surrounded by inspiring leaders and supportive peers. Among them, you’ll channel your purpose, bring fresh ideas to the table, and simply be you. As you work to make a real impact on the business and the world, we’ll work to help you become a better you.
Role Summary:
The External Attack Surface Management (EASM) Analyst plays a critical role in Unilever’s proactive cybersecurity strategy by continuously identifying, analyzing, and mitigating risks associated with the organization’s internet-facing assets. As digital transformation accelerates and cloud adoption expands, the external attack surface becomes increasingly dynamic and complex. This role is designed to provide visibility into that evolving landscape and ensure that Unilever’s digital perimeter is secure, monitored, and well-managed.
The analyst will be responsible for leveraging a combination of commercial EASM platforms (such as Mandiant, Wiz, and Qualys) and open-source reconnaissance tools (like Shodan, FOFA, and Censys) to discover unknown or unmanaged assets, detect misconfigurations, and identify potential vulnerabilities. This includes domains, IP addresses, cloud services, APIs, and third-party integrations that may be exposed to the internet.
The EASM Analyst will work closely with Threat Intelligence, Vulnerability Management, and Incident Response teams to contextualize findings, prioritize risks, and support remediation efforts. They will also contribute to the development of automated discovery and alerting mechanisms, ensuring that new exposures are detected in near real-time.
In addition to technical responsibilities, the role requires strong communication and collaboration skills to engage with asset owners, IT teams, and business stakeholders across the organization. The analyst will help drive awareness of external risks, support secure asset lifecycle management, and contribute to the overall maturity of Unilever’s cyber defense capabilities.
Main Accountabilities
External Asset Discovery & Mapping:
Use EASM tools (e.g., Mandiant, Wiz, Qualys) to identify and catalog Unilever’s external-facing assets.
Perform continuous monitoring to detect changes in the external attack surface.
Reconnaissance & Threat Identification:
Utilize OSINT and reconnaissance tools (e.g., Shodan, FOFA, Censys) to identify exposed services, misconfigurations, and potential vulnerabilities.
Correlate findings with threat intelligence to assess risk and prioritize remediation.
Risk Assessment & Reporting:
Collaborate with vulnerability management and security operations to triage and remediate high-risk exposures.
Provide regular reports and dashboards on EASM findings, trends, and KPIs.
Collaboration & Process Improvement:
Work with IT and cloud teams to validate asset ownership and ensure secure configurations.
Contribute to the development of EASM processes, playbooks, and automation strategies.
Key Skills and Relevant Experience
Skills:
Strong understanding of internet protocols, DNS, SSL/TLS, and cloud infrastructure.
Proficiency with EASM and OSINT tools (e.g., Mandiant, Wiz, Qualys, Shodan, FOFA).
Ability to analyze large datasets and identify patterns or anomalies.
Excellent communication skills to convey technical findings to non-technical stakeholders.
Familiarity with vulnerability management and threat intelligence workflows.
Experience:
3–5 years of experience in cybersecurity, with at least 1–2 years in EASM, threat intelligence, or vulnerability management.
Experience with cloud platforms (Azure, AWS, GCP) and their security configurations.
Knowledge of security frameworks such as MITRE ATT&CK, NIST CSF, or CIS Controls.
Relevant certifications (e.g., CEH, OSCP, Security+, GIAC GOSI) are a plus.
Note: "All official offers from Unilever are issued only via our Applicant Tracking System (ATS). Offers from individuals or unofficial sources may be fraudulent—please verify before proceeding."
