Cybersecurity Analyst – Attack Surface Management & Attack Path Analysis
Job Summary
Who We Are
Applied Materials is a global leader in materials engineering solutions used to produce virtually every new chip and advanced display in the world. We design build and service cutting-edge equipment that helps our customers manufacture display and semiconductor chips the brains of devices we use every day. As the foundation of the global electronics industry Applied enables the exciting technologies that literally connect our world like AI and IoT. If you want to push the boundaries of materials science and engineering to create next generation technology join us to deliver material innovation that changes the world.
What We Offer
Location:
BangaloreINDYoull benefit from a supportive work culture that encourages you to learn develop and grow your career as you take on challenges and drive innovative solutions for our customers. We empower our team to push the boundaries of what is possiblewhile learning every day in a supportive leading global company. Visit our Careers website to learn more.
At Applied Materials we care about the health and wellbeing of our employees. Were committed to providing programs and support that encourage personal and professional growth and care for you at work at home or wherever you may go. Learn more about our benefits.
Key Responsibilities
Attack Surface Management
Own and continuously evolve the enterprise external attack surface inventory internet-facing assets domains IP ranges cloud services third-party integrations and shadow IT
Proactively discover unauthorized unmanaged or impersonation-related assets and investigate exposed services SSL/TLS and DNS misconfigurations open ports cloud storage exposure and leaked credentials surfaced through EASM tooling
Track assets across the full discovery-to-remediation lifecycle and maintain authoritative records in the CAASM platform
Attack Path Analysis & Threat Exposure Modeling
Model attack paths across hybrid on-premises cloud and identity infrastructure (Active Directory Entra ID cloud IAM) using graph-based tooling to expose lateral movement and privilege escalation opportunities
Prioritize remediation by attack path criticality asset business value and exploitability beyond CVSS and identify choke points whose remediation eliminates the greatest number of paths
Partner with red team purple team and breach-and-attack simulation engagements to validate models mapping findings to MITRE ATT&CK and CTEM program metrics
Asset Intelligence & CAASM
Build and maintain a unified authoritative asset view by integrating telemetry across endpoints cloud APIs network scanners CMDBs and identity directories enriched with criticality ratings and business ownership
Drive asset criticality modeling and support EPM governance so the Vulnerability & Exposure Management team can prioritize remediation by business impact not volume
Automation Analytics & Reporting
Build dashboards for attack surface posture attack path risk remediation velocity and security KPIs for operational and executive audiences
Develop scripting and automation (Python REST APIs) and apply AI-assisted analytics to improve data collection enrichment risk correlation and predictive risk signals
Produce posture reports and executive summaries and manage cybersecurity exceptions risk acceptances and governance documentation per policy
Cross-Functional Partnership
Serve as the subject-matter expert on attack surface and attack path topics during architecture reviews onboarding and risk assessments partnering with Vulnerability & Exposure Management Cloud Security Network SOC Application Security and Governance teams to drive end-to-end risk reduction
Communicate technical risk findings and remediation recommendations clearly to both technical teams and non-technical business stakeholders
Required Qualifications
Bachelors degree in Cybersecurity Information Security Computer Science Engineering or a related field
5 years of progressive experience in Cybersecurity Security Operations Vulnerability/Exposure Management or Attack Surface Management
Hands-on experience acrossEASM(asset discovery and exposure analysis)CAASM(asset data integration and unified inventory)attack path / attack graph modelingacross hybrid environments andexposure-based prioritizationthat goes beyond basic CVSS
Working knowledge of MITRE ATT&CK adversary techniques (initial access lateral movement privilege escalation persistence)
Hands-on experience with cloud environments (AWS Azure or GCP) and cloud-specific exposure risks (storage misconfigurations IAM over-privilege exposed APIs)
Proficiency in scripting for automation and data analysis (Python preferred) and integrating security tools via APIs to build dashboards and workflows
Strong written and verbal communication; able to translate technical risk into clear business language for senior stakeholders
Certifications (Preferred)
CISSP CISM or CISA
Offensive/exposure-focused: CEH OSCP or GIAC (GPEN GWAPT GCIH)
Cloud security: AWS Security Specialty Microsoft AZ-500 or (ISC)² CCSP
Additional Information
Time Type:
Full timeEmployee Type:
Assignee / RegularTravel:
Yes 10% of the TimeRelocation Eligible:
YesApplied Materials is an Equal Opportunity Employer. Qualified applicants will receive consideration for employment without regard to race color national origin citizenship ancestry religion creed sex sexual orientation gender identity age disability veteran or military status or any other basis prohibited by law.
Required Experience:
IC
About Company
Applied Materials, Inc. is the global leader in materials engineering solutions for the semiconductor, flat panel display and solar photovoltaic (PV) industries.