Exposure Intelligence – CTEM Consultant
Allstate · United States · 3 wk ago
RemoteRemoteConsultingFull-time
Key Responsibilities
- Own and manage CTEM platforms and supporting tooling (e.g., exposure management, vulnerability correlation, attack path tools).
- Maintain platform health, configuration, and access controls.
- Manage user onboarding, permissions, and adoption across security and engineering teams.
- Design, build, and maintain integrations across - Vulnerability management tools, EDR/XDR platforms, cloud/security platforms (AWS, Azure, Entra, etc.), and application/asset inventories.
- Ensure data ingestion, normalization, and correlation across sources.
- Identify and resolve data quality gaps, duplication, and enrichment issues.
- Agregate and correlate security findings into meaningful exposure insights.
- Maintain logic that supports exploitability-based prioritization.
- Continuously improve signal quality and reduce noise.
- Design and maintain CTEM dashboards and reporting views for different audiences: Executive (risk + trends), Engineering (actionable fixes), Security (coverage + effectiveness).
- Ensure reporting reflects: Real exposure (attack paths), Risk reduction progress, SLA/MTTR performance.
- Partner with leadership (CISO, service managers) to align reporting with KPIs.
- Build and optimize workflows that connect CTEM insights to remediation execution.
- Automate prioritization, ticket creation, and tracking where possible.
- Reduce manual effort in exposure triage and reporting.
- Serve as the bridge between CTEM data and execution teams (VM, AppSec, DFIR, Cloud Security).
- Enable teams to consume CTEM intelligence effectively through dashboards and integrations.
- Drive adoption and proper usage of CTEM capabilities.
Required Qualifications
- 3+ years in security engineering, exposure management, vulnerability management, or platform engineering.
- Experience integrating security tools and working with APIs/data pipelines.
- Strong understanding of how security data translates into risk and prioritization.
- Experience with CTEM platforms (e.g., Zafran, Nagomi, Pantera, etc.).
- Background in data engineering, automation, or scripting (Python, APIs).
- Familiarity with vulnerability management, asset inventory, and identity data.
- Experience building dashboards (Power BI, Tableau, or platform-native).
Compensation
Compensation offered for this role is $100,000.00 – $170,500.00 annually and is based on experience and qualifications.