Assistant Manager - Cybersecurity - Forensics and Integrity Services - Amman

The exceptional EY experience. It's yours to build.
 
We are a team of Cybersecurity and Privacy professionals that helps organizations address the challenges on cybersecurity and privacy in a way that is in line with their business strategy.

We provide independent and impartial assistance in IT and business in industry and government organizations. Our security professionals possess diverse industry knowledge, along with unique technical expertise and specialized skills to support our clients and to growth their own career.
  
The opportunity: Your Next Adventure Awaits?
 
We have ambitious plans to expand our market leading Cybersecurity practice. We continue to build our Cybersecurity practice and are looking for a strong Assistant Manager with experience and expertise in cyber.
 
You will join a team of experts providing cybersecurity services to a wide range of clients in industry and government, both nationally and internationally. You will lead or deliver engagements related to security strategy and governance. Depending on your level of experience also develop and support our go-to-market and solutions in this domain.
 
By joining us now you will be part of our exciting growth strategy where you will get the opportunity to shape your career it in line with your own interests and aspirations.
 
Your Key Responsibilities
 
Taking into account your experience and maturity, your involvement will vary from

• Experience developing custom threat detection analytics and behavioral anomaly detection rules.
• Experience with deception technologies, honeypots, and adversary engagement techniques.
• Experience in assessing or implementing cybersecurity process and governance, and experience in working independently or as part of a large team to delivery cybersecurity services on its own or within large complex projects.
• Proven experience in building and maintaining Information Security Management Systems (ISMS) of Business Continuity Management Systems (BCMS) is considered a plus.
• You have knowledge of and experience with relevant industry security standards and frameworks, such as ISO 2700x, ISF, NIST, WebTrust, OWASP, COBIT, GAPP, SABSA, …
• Knowledge of general IT and business processes and familiarity with organizational technology landscapes. 
• Understanding of cyber risk assessment and risk management, and familiarity with cybersecurity and privacy-related regulatory compliance requirements, industry standards and frameworks (DORA, NIS2, PCI DSS, ISO 27k, etc.), and key technical concepts (e.g., networking, protocols, cloud technologies). 
• Hands-on experience with SIEM, SOAR, EDR, NDR, email security and security monitoring platforms.
• Strong understanding of network security, cloud security (AWS, Azure, GCP), and endpoint protection strategies.
• Experience with log analysis, network traffic analysis, and behavioral analytics for identifying suspicious activity.
• Strong scripting and automation skills in Python, PowerShell, or Bash to streamline security operations.
• Demonstrated experience with common intelligence standards such as STIX/TAXII, DHS TLP, ICD203 & ICD206.
• Strong ability to research, validate, and analyze threat data from open and closed-source intelligence feeds.
• Expertise in MITRE ATT&CK, intelligence tradecraft, structured analytic techniques, and cyber threat modeling.
• Deep understanding of Active Directory security, Kerberos attacks, and lateral movement techniques.
• Experience working in Cloud/Container environments.
• Penetration Testing experience.
• Application Security experience.
• Attack Surface Management experience.
• assisting in delivering these projects,
• leading a team towards excellent client experience.
• Familiarity with cloud-native security monitoring tools (AWS GuardDuty, Azure Security Center, Google Chronicle).
• furthermore, you may be involved in pro-actively identifying and pursuing opportunities for further business and team growth.

Activities during project delivery: 

• Understanding client’s risk exposure and developing appropriate information and cybersecurity strategies.
• Assessing the maturity of clients’ current cybersecurity program and identifying areas for improvement.
• Building a prioritized roadmap for project investments and organizational change initiatives and validating that the client’s security investments have improved its security posture.
• Defining and implementing cybersecurity related frameworks, supported by policies, standards and procedures, in line with internal and/or external (compliance) requirements.
• Supporting the client’s team by acting as an interim team member (e.g. CISO, cybersecurity officer, cybersecurity manager, …).
• Monitoring progress, manage risk and ensure key stakeholders are kept informed about progress and expected outcomes. Stay abreast of current business and industry trends relevant to our clients.
• Use knowledge of the current IT environment and industry trends to identify engagement and client service issues and communicate this information to the engagement team and client management.  
• Demonstrating and applying a thorough understanding of complex information systems.
• Establishing relationships with client personnel at appropriate levels.
• Helping identify and developing business opportunities and delivering quality client services.

 
Your Profile
 

• You have a Bachelor's or Master’s Degree with a strong affinity with information and IT security/governance.
• Possession of relevant qualifications such as CISM, CRISC, CISSP and/or CISA, as well as involvement in industry related organizations (e.g. ISACA, L-SEC, ISF… ) are an asset.
• Must be willing to work on-site as needed by the client 
• Must be able to communicate effectively with both IT and business people about information security matters.
• Full  proficiency in English.

 
What's In It For You
 

• EY Family – you become part of the EY Family providing you with all the necessary skills, training and opportunities; enabling you to grow to your fullest potential.
• Attractive remuneration package - We offer an attractive remuneration package; including a company car and charging card , iPhone plus subscription, health insurance, pension plan, meal vouchers, and eco vouchers.  Thanks to our flex plan it is possible to choose what you value most. 
• Flexible working arrangements - We are proud of our flexible working arrangements. We will actively support you in building a successful career and delivering excellent client service without sacrificing your personal priorities. We offer flexible working hours and working from home multiple days per week is possible.
• Inspiring work environment - At EY we are dedicated to providing you with an inspiring work environment. A work environment that allows you to further develop your skills and enables you to fulfill your true potential.
• Learning & personal growth - You will benefit from an onboarding program, receive extensive training and will be coached by a counselor. We offer a clear career path tailored to your unique skills with necessary guidance.  
• Sustainability - We have a fleet of hybrid and electric cars. Our flex plan makes it possible for you to choose the most sustainable option for you. You can also opt for a train subscription or lease a bike.
• Diversity & Inclusion - At EY we are passionate about the inclusion and support of individuals of all groups; we do not discriminate on the basis of race, religion, gender, sexual orientation, or disability status.
• Location - All of our offices are easily accessible by public transport and/or by car and have parking space. They all have parking spaces and charging stations are provided.
• Best Workplace – You will be part of the 2023 number one rated Best Workplace (Great Place to Work).

Here at EY, you’ll have the chance to build a truly exceptional experience. We’ll empower you with the latest technology, surround you with high-performing teams, and provide the global scale and diverse and inclusive culture you need to discover your full potential. Through our coaching and training programs, you’ll develop the skillsets you need to stay relevant today and in the future – all while building a network of colleagues, mentors, and leaders who will be on the journey with you at EY and beyond