GDS Consulting Cyber Detection & Response Senior

At EY, you’ll have the chance to build a career as unique as you are, with the global scale, support, inclusive culture and technology to become the best version of you. And we’re counting on your unique voice and perspective to help EY become even better, too. Join us and build an exceptional experience for yourself, and a better working world for all. 

 

 

The opportunity

 

In your role at EY, you’ll be inspired by a team of the brightest business and technical minds in cyber security. We are passionate champions for our clients and know from experience that the best solution for our clients’ needs come from working hard together. As part of our team, your voice matters, and you will do important work that has impact, on people, businesses, and nations. Our industry and our company move fast, and you can be sure that you will always have room to learn and grow. We’re proud of our team and the important work we do to build confidence for a more connected world.

 

Your key responsibilities

 

The Security Operations Center (SOC) Level 2 (L2) manages multiple Security technologies and produces enhancements that allow SOC team members to work collaboratively and efficiently while responding to threats. The individual in this role will work as part of a cybersecurity operations team responsible for carrying out 24x7 onsite security monitoring operations. Skills and attributes for success • Ability to manage multiple priorities simultaneously. • Moderate knowledge of networking fundamentals (TCP/IP, Network Layers, etc.) • Moderate knowledge of malware operation and indicators • Moderate knowledge of current threat landscape (threat actors, APT, cyber-crime, etc.) • Moderate knowledge of security related technologies and their functions (IDS, IPS, EDR, IRP, FW, WAF, SIEM, etc.) • Basic knowledge of audit requirements (PCI, HIPPA, SOX, etc.) • Basic programming skills in various disciplines including scripting language.

 

To qualify for the role, you must have:

 

• Generate Executive Summary report (high level)

• Ideal candidate will have 3+ years of security related experience in areas such as intrusion detection, incident response/handling, firewall administration, etc. Solid understanding of core security and infrastructure technologies, such as: firewall, VPN, IDS/IPS/SIEM, Antivirus, E-mail, DNS, Microsoft OS, & Linux OS

• Preferably 2 years Information Security (IS) experience required Analytical mindset & aptitude to learn quickly Reliable & willing to work in a 24/7 operations center (shift work required)

• Experience with command line interface and some level of exposure to administering systems and services for various operating systems (Windows PowerShell and Unix).

• Knowledge of security incident and event management, log analysis, network traffic analysis, malware investigation/remediation, SIEM correlation logic and alert generation

• Demonstrated ability to analyze, triage and remediate security incidents.

• Understanding of Security principles, techniques, and technologies such as SANS Top 20 Critical Security Controls and OWASP Top 10

• Knowledge and Experience of SIEM solution such as Splunk, RSA Security Analytics, ArcSight, LogRhythm, QRadar, Splunk or similar. Familiar in creating use cases in SIEM.

• Knowledge and Experience of XDR solution such as Cortex XDR, Crowdstrike XDR/EDR, Carbon Black XDR/EDR or similar • Knowledge and Experience of Email Security Solution such as Cofense and Proofpoint and the ability to analyse email threat, header analysis, attachments, and malicious link analysis.

 

Ideally, you’ll also have:

 

• Bachelor’s degree relevant to Information Technology

• Can work under pressure

• Related Certification: Example: CEH, Comptia A+, Sec+, ITILv3

 

What working at EY offers

 

• Support, coaching and feedback from some of the most engaging colleagues around

• Opportunities to develop new skills and progress your career

• The freedom and flexibility to handle your role in a way that’s right for you

 

About EY

 

As a global leader in assurance, tax, transaction and advisory services, we’re using the finance products, expertise and systems we’ve developed to build a better working world. That starts with a culture that believes in giving you the training, opportunities, and creative freedom to make things better. Whenever you join, however long you stay, the exceptional EY experience lasts a lifetime. 

 

Make your mark.

 

Join us in building a better working world. Build your legacy with us.

 

Apply now

 

EY | Building a better working world

 

EY exists to build a better working world, helping to create long-term value for clients, people and society and build trust in the capital markets.

 

Enabled by data and technology, diverse EY teams in over 150 countries provide trust through assurance and help clients grow, transform and operate.

 

Working across assurance, consulting, law, strategy, tax and transactions, EY teams ask better questions to find new answers for the complex issues facing our world today.