Senior Attack Surface Analyst

Nordstrom

Senior Attack Surface Analyst at Nordstrom managing high-risk exposures and automating security processes. Collaborating with technology teams to enhance operational efficiency and secure deployments.

Posted 6/6/2026full-timeSeattle • Washington • 🇺🇸 United StatesSenior💰 $166,000 - $258,000 per yearWebsite

Tech Stack

Tools & technologies

CloudCyber SecurityPython

About the role

Key responsibilities & impact

The Attack Surface Analyst Sr 2 champions reduction of Nordstrom’s attack surface through continuous identification, assessment, and escalation of the highest-risk exposures, along with the actions needed to manage that risk.
Collaborates closely with cybersecurity and technology partner teams to prioritize risk, execute remediation activities, and automate processes that secure the technology landscape.
Lead the growth of the attack surface management program, develop and implement solutions to improve visibility into exposures, and contribute to the design and implementation of net-new capabilities.
Continuously drive improvements in attack surface management processes, methodologies, and security toolsets to enhance operational effectiveness, automating where possible.
Maintain Cybersecurity Standards, Attack Surface Management standard operating procedures, and runbooks.
Collaborate with AppSec, DevOps, and cloud platform teams to secure deployments and integrate security best practices into the design of software and related systems, ensuring a secure-by-design approach.
Maintain a map of Nordstrom’s attack surface through collaboration with network and offensive security teams, conducting regular assessments and reconnaissance activities, and leveraging dark web monitoring resources.
Lead data-driven, risk-prioritized, enterprise-wide initiatives to reduce vulnerabilities and exposures across Nordstrom’s technologies; identify opportunities and champion architectural changes that reduce attack surface.
Develop and present metrics to measure operational efficiency and attack surface risk.
Maintain domain expertise by completing trainings, attending industry presentations, obtaining certifications, engaging with the cybersecurity community, and consuming threat intelligence sources.
Support the growth of teammates’ domain expertise through mentorship, presentations, and knowledge-sharing sessions.
Lead compliance activities for the domain, including evidence validation and submission, proactive control evaluation and mitigation of gaps, and assessments (e.g., PCI).

Requirements

What you’ll need

6+ years in security operations, vulnerability management, or offensive security domains, including experience in a senior or lead capacity.
Deep knowledge of the MITRE ATT&CK framework, threat actor tactics, techniques, and procedures (TTPs), and common attack vectors.
Experience implementing cloud security controls in a multi-cloud environment.
Proficiency in enterprise information technology (IT) architecture principles and practices.
Knowledge of offensive security methodologies and ethical hacking principles and practices.
Deep understanding of system landscape and data flow within the domain and across adjacent domains.
Expertise in scripting languages (e.g., Python, PowerShell) for process automation.
Advanced knowledge of networking, system administration, cloud services, asset management, and cybersecurity principles.
Deep understanding of the processes and controls needed to satisfy relevant regulatory and compliance requirements (e.g., PCI) for vulnerability and attack surface management.
Strong leadership and communication skills.
Bachelor’s or Master’s degree in Information Technology, Computer Science, Cybersecurity, or a related field; equivalent experience will be considered in lieu of a degree.

Benefits

Comp & perks

Medical/Vision, Dental, Retirement and Paid Time Away
Life Insurance and Disability
Merchandise Discount and EAP Resources
Performance-based incentives/bonuses
401k, medical/vision/dental/life/disability insurance options, PTO accruals, Holidays, and more

ATS Keywords

✓ Tailor your resume

Applicant Tracking System Keywords

Tip: use these terms in your resume and cover letter to boost ATS matches.

Hard Skills & Tools

MITRE ATT&CK frameworkcloud security controlsscripting languagesPythonPowerShellnetworkingsystem administrationcybersecurity principlesvulnerability managementoffensive security methodologies

Soft Skills

leadershipcommunicationmentorshipcollaborationknowledge-sharingrisk prioritizationprocess improvementpresentation skillsdomain expertiseteam growth

Certifications

Cybersecurity certificationsPCI compliance certificationethical hacking certificationcloud security certificationinformation security certificationnetwork security certificationsystem administration certificationvulnerability management certificationoffensive security certificationrisk management certification