GMS-Senior-Attack Intelligence Lab Specialist-TechOps

At EY, you’ll have the chance to build a career as unique as you are, with the global scale, support, inclusive culture and technology to become the best version of you. And we’re counting on your unique voice and perspective to help EY become even better, too. Join us and build an exceptional experience for yourself, and a better working world for all. 

Cyber Managed Service -Senior – TDR/SOC Attack Intelligence Lab (AIL) Specialist

TDR/SOC (Security Operations Center) attack intelligence lab maintenance job typically involves the upkeep and management of the technical environment used for security monitoring, analysis, and response. This role is crucial for ensuring that the SOC has a reliable and efficient infrastructure to support its operations

Job Summary: The SOC Infrastructure Lab Maintenance Specialist is responsible for maintaining and improving the SOC's technical lab environment. This includes managing the hardware, software, and network components that comprise the SOC's lab infrastructure. The specialist ensures that the lab is operational, secure, and up to date with the latest technologies and security measures.

Key Responsibilities:

• Infrastructure Management:
  • Install, configure, and maintain SOC lab hardware and software, in a highly virtualized environment, including servers, workstations, network devices, and security appliances.
  • Perform regular system updates, patches, and upgrades to ensure security and performance.
  • Monitor system performance and troubleshoot issues to minimize downtime.
• Lab Environment Configuration:
  • Set up and maintain a variety of security tools and platforms used for training, testing, and simulation purposes.
  • Create and manage virtual environments to emulate different network configurations and scenarios for training and testing.
• Security and Compliance:
  • Implement and enforce security policies and procedures within the lab environment.
  • Conduct regular security audits and vulnerability assessments to identify and mitigate risks.
  • Ensure compliance with industry standards and regulatory requirements.
• Technical Support and Training:
  • Provide technical support to SOC analysts and other staff using the lab environment.
  • Assist in the development and delivery of training programs for SOC personnel on new tools, technologies, and procedures.
• Documentation and Reporting:
  • Maintain detailed documentation of the lab infrastructure, including network diagrams, configuration settings, and inventory lists.
  • Prepare reports on lab usage, performance metrics, and maintenance activities.
• Collaboration and Innovation:
  • Work closely with SOC analysts, engineers, and management to understand their needs and incorporate feedback into lab improvements.
  • Stay informed about emerging technologies and security trends to propose and implement innovative solutions in the lab.

Qualifications:

• Bachelor’s degree in computer science, Information Technology, Cybersecurity, or a related field.
• Relevant certifications (e.g., CompTIA Network+, Security+, Cisco CCNA, RHCE) are a plus.
• Experience with network administration, system administration, and security technologies.

• VMware Virtualization and vCenter server appliance and Virtual Networking

• Experience with both Linux and Windows Server/Desktop Operating Systems and Cloud services (Azure, AWS)
• Strong problem-solving skills and attention to detail.
• Excellent communication and interpersonal skills.

EY | Building a better working world 

 
EY exists to build a better working world, helping to create long-term value for clients, people and society and build trust in the capital markets.  

 
Enabled by data and technology, diverse EY teams in over 150 countries provide trust through assurance and help clients grow, transform and operate.  

 
Working across assurance, consulting, law, strategy, tax and transactions, EY teams ask better questions to find new answers for the complex issues facing our world today.