Fiserv

Threat Exposure Management Analyst

Fiserv$110K — $186K *
Information Technology
8 - 10 years of experience
Job Overview by Ladders

Qualifications

  • 8+ years in vulnerability or attack surface management, offensive security, or related fields.
  • Proven leadership in security programs with cross-team collaboration and governance.
  • Skilled in assessing attack paths and exploitability beyond traditional metrics.
  • Experience using threat intelligence in decision-making processes.
  • Strong grasp of vulnerabilities across various tech environments and their integration into attack paths.
  • Ability to influence remediation efforts across teams without direct authority.
  • Familiar with vulnerability prioritization standards like CVSS and MITRE ATT&CK.

Responsibilities

  • Analyze attack paths from exposures to critical assets, focusing on risk prioritization.
  • Develop a threat-informed model for ranking exposures by real-world risk.
  • Map exposures to critical business services for effective remediation prioritization.
  • Validate the exploitability of exposures through various analysis methods.
  • Evaluate existing controls for risk mitigation before mandating remediation actions.
  • Coordinate visibility across diverse attack surfaces, collaborating with relevant teams.
  • Drive remediation efforts by establishing ownership and escalation paths within security partners.

Benefits

  • Collaborative work environment with a focus on in-person interactions.
  • Opportunities for professional development and onboarding support.
  • Engagement with a diverse range of technology environments.
  • Chance to produce impactful reporting for governance and leadership audiences.
  • Participation in strategic decision-making around security postures.
Full Job Description
Job Title
Threat Exposure Management Analyst

About your role:

You will help advance our cybersecurity program from traditional vulnerability management to a more mature exposure management approach. Operating within the Attack Surface Management team, this role focuses on identifying the exposures that matter most to the business, validating exploitability, and driving measurable reduction of real risk to critical business services through strong technical analysis and cross-functional influence.

What you'll do:
  • Analyze how individual exposures chain into viable attack paths toward critical assets, shifting prioritization from isolated findings to path-based risk.
  • Build and operate a threat-informed prioritization model that incorporates exploit availability, active campaigns, and exploitation-in-the-wild indicators to rank exposures by real-world risk.
  • Map exposures to crown-jewel assets and critical business services so remediation priorities reflect business impact, not just technical severity; define and report metrics that demonstrate exposure reduction over time, including mean time to remediate by risk tier, attack-path closure, and reduction in exploitable exposure.
  • Validate whether prioritized exposures are exploitable and reachable using attack-path analysis, breach-and-attack simulation, and offensive security and penetration testing findings.
  • Assess whether existing compensating controls meaningfully reduce likelihood of impact before remediation is mandated; translate red-team, purple-team, and penetration-testing findings into validated exposure priorities.
  • Maintain visibility across external, cloud, SaaS, and identity attack surfaces, coordinating with peer teams that own the underlying platforms.
  • Drive remediation across infrastructure and security partner teams, including Endpoint, Network, Cloud, and IAM, by establishing ownership, SLAs, and escalation paths for risk that crosses organizational boundaries.
  • Produce technical and executive reporting on exposure trends and risk reduction, framed in business-risk terms for governance and senior leadership audiences.


Experience you'll need to have:
  • 8+ years of experience in vulnerability management, attack surface management, exposure management, offensive security, or closely related disciplines.
  • Demonstrated experience leading security programs or initiatives with governance, metrics, and cross-functional stakeholder engagement.
  • Strong ability to assess attack paths, exploitability, and business impact beyond CVSS scoring and ticket-based vulnerability tracking.
  • Practical experience incorporating threat intelligence and exploit data, including EPSS, CISA KEV, and exploitation-in-the-wild reporting, into prioritization decisions.
  • Solid understanding of vulnerabilities and exposures across operating systems, networks, cloud environments, identity platforms, and applications, and how they combine into attack paths.
  • Proven ability to drive remediation and influence cross-functional teams without direct authority while balancing security priorities and operational realities.
  • Familiarity with the Gartner CTEM model, MITRE ATT&CK, and vulnerability scoring and prioritization standards such as CVSS, EPSS, and CISA KEV.
  • Strong written and verbal communication skills with the ability to translate technical exposure into business risk for engineering, governance, and executive audiences.


Experience that would be great to have:
  • Experience working within an enterprise Attack Surface Management function.
  • Familiarity with breach-and-attack simulation platforms and offensive security validation techniques.
  • Experience managing exception and risk-acceptance processes with formal governance and time-bound review cycles.
  • Knowledge of exposure reporting practices for executive, governance, and board-adjacent audiences.
  • Experience coordinating remediation campaigns for systemic exposures across large, complex technology environments.


How you'll work:
  • This role is on-site Monday through Friday. Fiserv considers in-person collaboration to be an essential part of this role as in-person office experiences help you with your overall onboarding experience and leads to stronger productivity.


Travel:
  • Approximately 10% travel off-site or to other office locations is expected.


Sponsorship:
  • You must currently possess valid and unrestricted U.S. work authorization to be considered for this role. Individuals with temporary visas including, but not limited to, F-1 (OPT, CPT, STEM), H-1B, H-2, or TN, or any candidate requiring sponsorship, now or in the future, will not be considered.


#LI-RM1

Salary Range
$110,000.00 - $186,000.00

These pay ranges apply to employees in New Jersey and New York. Pay ranges for employees in other states may differ.

It is unlawful to discriminate against a prospective employee due to the individual's status as a veteran.

For incentive eligible associates, the successful candidate is eligible for an annual incentive opportunity which may be delivered as a mix of cash bonus and equity awards in the Company's sole discretion.

Thank you for considering employment with Fiserv. Please:

  • Apply using your legal name
  • Complete the step-by-step profile and attach your resume (either is acceptable, both are preferable).

About Fiserv

CashEdge(R) provides infrastructure that global financial institutions rely on to extend their online channels and enhance customer profitability. CashEdge delivers secure Online Money Movement and Advanced Account Aggregation platforms that power specialized retail banking and advisor applications. These proven solutions enable CashEdge's clients to create compelling online offerings that attract customers, generate revenues, and reduce costs. CashEdge serves top-tier financial institutions around the world. Clients and partners include Vanguard, RBC Financial Group, CIBC, Yahoo! Finance, Digital Insight, First Data, TD Canada Trust, NYCE, Laurentian Bank, Financial Fusion and Corillian. CashEdge has offices in New York and Silicon Valley.

Fiserv Careers

Join the Fiserv team today and be part of a dynamic company known for innovation, leadership, and a commitment to the professional growth of its employees. At Fiserv, we offer more than just job opportunities; we provide a platform where skills are honed, leadership is cultivated, and career aspirations are achieved. Work You’ll Do At Fiserv, we are constantly on the lookout for talented individuals eager to thrive in a culture that fosters growth and diversity. Our team is composed of professionals who lead the way in financial services technology. By joining us, you will collaborate with some of the brightest minds in the industry, working together to solve complex challenges and deliver innovative solutions that impact millions of people every day. Explore Our Job Opportunities Whether you're seeking an entry-level position or a more senior role, Fiserv offers a range of career paths in areas such as software development, project management, financial analysis, and client services. Our hiring process is designed to identify and attract individuals who are not only technically proficient but who also embody our values of integrity and responsibility. Internship Programs Kickstart your career with a Fiserv internship. Our internships provide invaluable workplace experience and networking opportunities that often lead to full-time employment. As an intern, you’ll gain hands-on experience while working on meaningful projects that directly contribute to the company’s goals. Benefits and Culture Fiserv is committed to the well-being and continuous development of our employees. We offer competitive benefits including health, dental, and vision insurance, as well as opportunities for professional development through leadership training and diversity programs. Our culture is one of inclusion, where every team member is valued and has the opportunity to contribute to our success. Career Growth and Development We believe in nurturing the potential of our employees through career development initiatives and continuous learning opportunities. At Fiserv, you will find a supportive environment where you can grow your career through on-the-job experiences, mentoring, and formal training. Stay Connected Join Our Team Search open positions that match your skills and interests. We look for passionate, curious, creative, and solution-driven team players. Start your journey with Fiserv today and help shape the future of financial services. Keep Up to Date Stay ahead with career tips, insider perspectives, and industry-leading insights you can put to use today—all from the people who work here. Job Alert Emails Personalize your subscription to receive job alerts, latest news, and insider tips tailored to your preferences. Discover the exciting and rewarding career opportunities that await at Fiserv. Explore, innovate, and grow with Fiserv. Let your career journey begin here, where you can make a real difference in the world of finance.
Learn more about Fiserv
Size
44,000 employees
Market Cap
$63.4 billion
Industry
Net Income
$958 million
Founded
1984
5 Year Trend
+24.1%
Revenue
$14.8 billion
NASDAQ

Similar Jobs

More Jobs at Fiserv

More Information Technology Jobs

Find similar Threat Exposure Management Analyst jobs: