Cyber Triage and Forensics – Security Analyst II Today's world is fueled by vast amounts of information. Data is more valuable than ever before. Protecting data and information systems is central to doing business, and everyone in EY Information Security has a critical role to play. Join a global team of almost 950 people who collaborate to support the business of EY by protecting EY and client information assets!
Within Information Security we blend risk strategy, digital identity, cyber defense, application security and technology solutions as we consider the entire security lifecycle. You will join a team of hardworking, security-focused individuals dedicated to supporting, protecting and enabling the business through innovative, secure solutions.
The opportunity The Cyber Defense Response Center is responsible for monitoring and detecting information security events that could adversely impact EY information assets and resources.
A qualified candidate will have the opportunity to work with highly talented Cyber security experts to learn and develop new skills. Candidate will be exposed to many technologies and security tools whilst working with EY as well as career growth opportunity.
Your key responsibilities Detect and respond to information security incidents. Develop, maintain, and follow procedures for security event alerting. Participate in security investigations. Monitor, research, classify, and analyze security events on the network or endpoint. Identify threats and vectors that cause security events. Follow defined procedures for mitigating threats. Respond to network and host-based security events. Provide documentation and project support. Conduct detailed security event analysis to identify incidents. Provide feedback on security control capability gaps. Drive process improvements and identify gaps. Skills and attributes for success Information Security Principles, Technologies, and Practices. Experience with multiple security event detection platforms. Thorough understanding of TCP/IP. Understanding of IDS / IPS rules. Good social, communication and technical writing skills. Comfortable navigating and troubleshooting Linux and Windows systems. Ability to work independently. Identify areas for improvement within Cyber Triage and Forensics. To qualify for the role you must have Bachelors in computer science, Information Systems, Information Security or 3-4 years of related work experience.
Minimum of 3-4 years of experience in a Security Monitoring/Security Operations Center environment. Experience investigating security events, threats and/or vulnerabilities. Understanding of electronic investigation and log correlation. Scripting or programming experience (Shell scripting, Python, PowerShell, etc.). Desired skill: Previous leadership experience as a team lead or supervisor.
Ideally, you'll also have Desired Certifications - SSCP, CEH, GCIH, GCFA, GCIA, GSEC, GIAC, Security+. What we look for Under limited supervision, the CTF Analyst II will report to the US CTF Manager and will perform tasks including monitoring, research, classification and analysis of security events.
What we offer As part of this role, you will work in a highly coordinated, globally diverse team with the opportunity and tools to grow, develop and drive your career forward. Here's a snapshot of what we offer:
Continuous learning: You will develop the mindset and skills to navigate whatever comes next. Success as defined by you: We will provide the tools and flexibility, so you can make a significant impact, your way. Transformative leadership: We will give you the insights, coaching and confidence to be the leader the world needs. Diverse and inclusive culture: You will be accepted for who you are and empowered to use your voice. We ensure that individuals with disabilities are provided reasonable accommodations to participate in the job application or interview process. EY is committed to being an inclusive employer and we strive to achieve the right balance for our people.
If you can confidently demonstrate that you meet the criteria above, please contact us as soon as possible. Make your mark. Apply now.
#J-18808-Ljbffr