Credential Protection Senior Security Analyst - EY Global Delivery Services
CABA, B, AR, 1001
EY
Tarjoamme palveluita, jotka auttavat ratkaisemaan asiakkaidemme vaikeimmat haasteetToday’s world is fueled by vast amounts of information, which means that data is even more valuable than ever before. Protecting data and information systems is central to doing business, and therefore everyone in EY Information Security has a critical role to play. Join a global team of almost 900 people who collaborate to support the business of EY by protecting EY and client information assets! Information Security professionals enable EY to work securely and deliver secure products and services, as well as detect and quickly respond when things go wrong. Together, the efforts of our dedicated team helps protect the EY brand and build client trust.
Within Information Security we blend risk strategy, digital identity, cyber defense, application security and technology service solutions as we consider the entire security lifecycle. You will join a team of hardworking, security-focused individuals dedicated to supporting, protecting and enabling the business through innovative, secure solutions that provide speed to market and business value.
The opportunity
The Supervising Security Analyst within the Identity & Access Management domain will be responsible for the operation, maintenance, and security of an Active Directory forest supporting multiple enterprise forests as part of a 24x7 Follow-the-Sun Operating Model. The Supervising Analyst will be responsible for protecting the highly privileged accounts and their associated credentials. The Supervising Analyst will also work with team members to enhance security monitoring tools with contextual information. You must be able to review vulnerability scans and provide an assessment of the vulnerabilities as they relate to the environment. The Supervising Analyst must be very proactive taking ownership to review various sources for security information and threats and determine the potential impact to the environment. Risk assessment techniques are a plus.
Your key responsibilities
- Ability to manage and maintain an Active Directory forest infrastructure
- Ability to address and resolve common Windows and Active Directory issues
- Ability to locate and assimilate new information to provide context for security events
- Identifies and resolves complex issues on the engagement/ project, demonstrating a broad technical skillset.
- Solid understanding of security incident/ problem and change management and vulnerability management processes
- Executes Daily health check of security platforms and publishing health check report
- Execute Maintenance Procedures to keep the security systems patched and up to date
Analytical/Decision Making Responsibilities:
- Ability to recognize and research attacks and attack patterns
- Ability to prioritize events so that the most impactful are addressed first
- Ability to work effectively with clients, management staff members, vendors and consultants
- Ability to deliver projects on time and on budget
- Perform advanced analysis, troubleshooting, problem isolation of customers and partners issues and requests
- Evaluate and supervise control deficiencies and provide guidance to management related to improvement of existing policies, procedures, documentation and review processes.
- Demonstrated creative problem-solving skills including defining and resolving issues.
- Communicates critical areas of risk to the team and manager on a timely basis, consulting where appropriate to help resolve issues.
- Can quickly understand fast- moving situations, rapidly understands the context of different situations and responds to new challenges and demands effectively.
Skills and attributes for success
- Strong network and/or system admin background
- TCP/IP network expertise
- Strong knowledge of Windows Server technologies and Active Directory
- Experience with scripting languages especially PowerShell
- Experience with CyberArk Privileged Account Security Solution
- Security monitoring experience with one or more SIEM (SPLUNK/SCOM) and intrusion detection technologies
- Knowledge of IPsec/PKI desired
- Knowledge of PowerBroker desired
- Solid understanding of information security technologies
- Excellent team skills and integrity in a professional environment
- Exceptional social, communication, and technical and general writing skills
- Applies a deep knowledge of subject matter and a constant desire to improve to deliver best in class quality.
- Seeks out relevant internal and external learning resources and effectively applies learning to address and resolve technical issues.
Supervision Responsibilities:
- Must be self-motivated and able to work independently, often unsupervised
- Shift Supervisory responsibility over a team of 3-4 L3 specialists, engineers of varying skills and experience
- Responsible for providing guidance to colleagues/subordinates where required through established coaching and feedback processes
- Generates a shared sense of purpose through individual contribution and by fostering team collaboration.
- Leads complex engagements/ projects, and/or delivers outstanding quality results in complex and challenging environments.
To qualify for the role you must have
Education:
Bachelors or Masters Degree in Computer Science, Information Systems, Engineering or related field.
Experience:
- 5+ years’ experience in one or more of the following:
- Active Directory configuration, administration, and troubleshooting
- Windows Server platform administration, including knowledge of 2012 R2/2016/2019 Core
- Scripting and writing PowerShell Cmdlets
- Reviewing security events and threats
- Deep understanding of the TCP/IP protocol stack
- Understanding of Public Key Infrastructure (PKI)
- Experience with programming languages such as Java, Java script, C, C++, C#, ASP, .NET, Visual Basic and is a plus (perl, python as well)
- On call with ability to work flexible schedule as needed to provide 24x7 support coverage
- Experience with ServiceNow IT Service Management system
Ideally, you’ll also have
MCSA, CISSP, CISM or CISA, Cyberark certifications desirable
What we offer
As part of this role, you will work in a highly coordinated, globally diverse team with the opportunity and tools to grow, develop and drive your career forward. Here, you can combine global opportunity with flexible working. The EY benefits package goes above and beyond too, focusing on your physical, emotional, financial and social well-being. Your recruiter can talk to you about the benefits available in your country. Here’s a snapshot of what we offer:
- Continuous learning: You will develop the mindset and skills to navigate whatever comes next.
- Success as defined by you: We will provide the tools and flexibility, so you can make a significant impact, your way.
- Transformative leadership: We will give you the insights, coaching and confidence to be the leader the world needs.
- Diverse and inclusive culture: You will be accepted for who you are and empowered to use your voice to help others find theirs.
We ensure that individuals with disabilities are provided reasonable accommodations to participate in the job application or interview process, to perform essential job functions and to receive other benefits and privileges of employment. Please contact us to request accommodations.
EY is committed to being an inclusive employer, and we are happy to consider flexible working arrangements. We strive to achieve the right balance for our people, enabling us to deliver excellent client service whilst allowing you to build your career without sacrificing your personal priorities. While our client-facing professionals can be required to travel regularly, and at times be based at client sites, our flexible working arrangements can help you to achieve a lifestyle balance.
If you can confidently demonstrate that you meet the criteria above, please contact us as soon as possible.
Make your mark.
Apply now.
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Active Directory Application security C CISA CISM CISSP Computer Science Cyberark Cyber defense Intrusion detection Java Monitoring Perl PKI PowerShell Python Risk assessment Scripting SIEM Splunk Strategy TCP/IP Vulnerabilities Vulnerability management Vulnerability scans Windows
Perks/benefits: Career development Flex hours Health care Team events Travel
More jobs like this
Explore more career opportunities
Find even more open roles below ordered by popularity of job title or skills/products/technologies used.