EY Jobs

Job Information

EY GDS Consulting_Cybersecurity Incident Responder in Philippines

GDS Consulting_Cybersecurity Incident Responder

Consulting

Requisition # PHI004VZ

Post Date Apr 07, 2021

Cybersecurity Incident Responder (Engineer Level 3)

EY Global Delivery Services is seeking a Cybersecurity Incident Responder (Level 3) to protect sensitive data and systems from threats by implementing and monitoring the appropriate security controls. In this role, you will assess potential systems and process vulnerabilities to determine security infrastructure requirements, make recommendations, and make changes to enhance systems security. You will develop security policies and procedures and communicate security requirements and procedures to users.

Required Qualifications

  • 5+ years of relevant senior incident response, threat hunting, or security operations experience

  • Bachelor’s in Computer Science, Information Security, Business, Management, Information Technology, or related field or compensating experience

  • Hands-on experience in the detection, response, mitigation, and/or reporting of cyberthreats affecting networks, computer intrusion detection, analysis, and incident response

  • Previous security experience with a variety of security technologies

Preferred Qualifications

Certifications including but not limited to:

  • CISSP – Certified Information Systems Security Professional

  • CISM – Certified Information Security Manager,

  • ISSAP – Information Systems Security Architecture Professional,

  • CEH – Certified Ethical Hacker,

  • AWS Certified Solution Architect,

  • SANS GCFA, GCIH, GSEC, GPEN, GXPN, or there advanced certification / demonstrated experience.

Responsibilities

  • Identify and document information security risks and propose mitigating controls

  • Investigate and respond to security incidents; Perform as Incident Commander or other leading security representative in a global environment to drive incident triage and recovery efforts

  • Monitor networks and systems for potential threats

  • Research, design, and develop new information security controls

  • Actively research, evaluate, and drive next generation security technologies and solutions to solve the organizations needs

  • Manage solution development and deployment that adhere to best practices

Skills

  • Previously assessed, developed and implemented, operationalized, and documented comprehensive security technologies and processes

  • Hands-on experience with multiple security technologies such as antivirus software, intrusion detection, firewalls, and content filtering

  • Prior experience with secure software development, data protection, cryptography, key management, identity and access management (IAM), network security (VPNs) within SaaS, IaaS, PaaS, and other

  • cloud environments

  • Solid understanding of a range of compliance, regulatory, and legal requirements and relevant principles, best practices, and standards across multiple industries (e.g., PCI, SOX, GLBA, CSA, PCI, NIST, ISO, IEEE, FedRAMP, HIPAA, and TCG)

Cybersecurity Incident Responder (Engineer Level 3)

EY Global Delivery Services is seeking a Cybersecurity Incident Responder (Level 3) to protect sensitive data and systems from threats by implementing and monitoring the appropriate security controls. In this role, you will assess potential systems and process vulnerabilities to determine security infrastructure requirements, make recommendations, and make changes to enhance systems security. You will develop security policies and procedures and communicate security requirements and procedures to users.

Required Qualifications

  • 5+ years of relevant senior incident response, threat hunting, or security operations experience

  • Bachelor’s in Computer Science, Information Security, Business, Management, Information Technology, or related field or compensating experience

  • Hands-on experience in the detection, response, mitigation, and/or reporting of cyberthreats affecting networks, computer intrusion detection, analysis, and incident response

  • Previous security experience with a variety of security technologies

Preferred Qualifications

Certifications including but not limited to:

  • CISSP – Certified Information Systems Security Professional

  • CISM – Certified Information Security Manager,

  • ISSAP – Information Systems Security Architecture Professional,

  • CEH – Certified Ethical Hacker,

  • AWS Certified Solution Architect,

  • SANS GCFA, GCIH, GSEC, GPEN, GXPN, or there advanced certification / demonstrated experience.

Responsibilities

  • Identify and document information security risks and propose mitigating controls

  • Investigate and respond to security incidents; Perform as Incident Commander or other leading security representative in a global environment to drive incident triage and recovery efforts

  • Monitor networks and systems for potential threats

  • Research, design, and develop new information security controls

  • Actively research, evaluate, and drive next generation security technologies and solutions to solve the organizations needs

  • Manage solution development and deployment that adhere to best practices

Skills

  • Previously assessed, developed and implemented, operationalized, and documented comprehensive security technologies and processes

  • Hands-on experience with multiple security technologies such as antivirus software, intrusion detection, firewalls, and content filtering

  • Prior experience with secure software development, data protection, cryptography, key management, identity and access management (IAM), network security (VPNs) within SaaS, IaaS, PaaS, and other

  • cloud environments

  • Solid understanding of a range of compliance, regulatory, and legal requirements and relevant principles, best practices, and standards across multiple industries (e.g., PCI, SOX, GLBA, CSA, PCI, NIST, ISO, IEEE, FedRAMP, HIPAA, and TCG)

DirectEmployers