Security Monitoring – Vulnerability Management & Compliance Engineer Today's world is fueled by vast amounts of information, which means that data is even more valuable than ever before. Protecting data and information systems is central to doing business, and therefore everyone in EY Information Security has an important role to play. Join a global team of almost 950 people who collaborate to support the business of EY by protecting EY and client information assets!
The opportunity As a Security Engineer for SIEM technologies within the Security Technology Services (STS) group, you will become part of a global team responsible for the complete life cycle of our solutions and services; design, engineering, implementation, and early life cycle support within our EY multi-cloud and on-premises environments. This role will work closely with Security Architects, Security Service Delivery, Security Operations, and Information Security teams for enablement of security solutions and services across various Security Domains.
Your key Responsibilities Articulate technology issues/concerns that may emerge at any level of the technical stack, and from any component across the ecosystem, to technology leaders. Engineer security solutions and services following all relevant EY standards and practices for On-Premise, Hybrid and Cloud-Based environments. Provide detailed input into the design and lead the implementation and testing of security solutions and services for large, complex projects from initial design to completion which includes production support and documentation. Take accountability for the design, delivery and maintenance of new and existing security solutions or services, driving compliance with and contributing to the development of relevant standards. Apply modern standards/principles, global product-specific guidelines, security standards, design standards, to security solutions and services as appropriate. Collaborate with Security Architecture, Service Owners, and Security Operations teams to promote automation and innovation throughout the security solutions that are being maintained. Represent the team in specific Project activities, including participating in projects and driving your deliverables towards successful completion. Work in a diverse global environment and build strong relationships across all levels of a matrixed, geographically and culturally dispersed organization. Skills and Attributes for Success We are seeking individuals with practical experience in functional and/or technical security engineering within a large enterprise setting, specifically in the implementation and maintenance of Compliance, Vulnerability and Response security solutions.
Advanced technical proficiency in designing and implementing security compliance and risk solutions within a very large enterprise. Communicate fluently in English, both written and verbal, and able to communicate technical concepts effectively. Excellent interpersonal communication and organizational skills and the ability to work within tight timeframes. Rapidly learn new and emerging technologies with the ability to define engineering standards quickly and efficiently. To qualify for the role, you must have Detailed knowledge of several of the following: EDR, AV/AM, Vulnerability Scanning, Cloud Operations, IPS/IDS, O365 Tenants, networking concepts & mechanisms, scripting in Python or another language, and other relevant technologies. At least 5 years of experience in Security, including demonstratable knowledge of Compliance and Vulnerability technologies. 3+ years demonstrated ability in an engineering function. Several years' experience working in a large global virtual environment and enterprise environments at scale. Excellent time management, organizational, and decision-making skills. The ability to design and document processes, procedures, and security designs clearly and accurately for distribution to internal teams and customers. Demonstrated experience in dealing with external vendors and suppliers in the security industry. Ideally, you'll also have A bachelor's degree in Computer Science, Engineering, IT, Mathematics or a related field, or equivalent work experience. GSEC/CISSP or other security related generalist certification from ISC2 or GIAC. Experience in project management, service introduction, and service readiness. What we look for This role is perfect for you, if you have excellent problem solving, decision making, and communication skills.
We are looking for people who are comfortable working with culturally diverse on/offshore team members, able to react appropriately during stressful and ambiguous situations.
What we offer As part of this role, you will work in a highly coordinated, globally diverse team with the opportunity and tools to grow, develop and drive your career forward. The EY benefits package goes above and beyond too, focusing on your physical, emotional, financial, and social well-being.
If you can confidently demonstrate that you meet the criteria above, please contact us as soon as possible. Join us in building a better working world. Apply now.
#J-18808-Ljbffr