at EY in Little Rock, Arkansas, United States
At EY, you’ll have the chance to build a career as unique as you are, with the global scale, support, inclusive culture and technology to become the best version of you. And we’re counting on your unique voice and perspective to help EY become even better, too. Join us and build an exceptional experience for yourself, and a better working world for all.
Today’s world is fuelled by vast amounts of information, which means that data is even more valuable than ever before. Protecting data and information systems is central to doing business, and therefore everyone in EY Information Security has an important role to play. Join a global team of almost 950 people who collaborate to support the business of EY by protecting EY and client information assets! Information Security professionals enable EY to work securely and deliver secure products and services, as well as detect and quickly respond when things go wrong. Together, the efforts of our dedicated team help protect the EY brand and build client trust.
Within Information Security we blend risk strategy, digital identity, cyber defense, application security and technology service solutions as we consider the entire security lifecycle. You will join a team of hardworking, security-focused individuals dedicated to supporting, protecting and enabling the business through secure solutions and information systems.
We are looking for a SOAR technologies Security Engineer, who will become part of our Security Technology Services (STS) group. In this role you will be part of a global team involved in the complete life cycle of our solutions and services, design, engineering, implementation, and early support within our multi-cloud and on-premises environments. You will work closely with Security Architects, Security Service Delivery, Security Operations, and other Information Security teams for enablement of security solutions and services across various Security Domains, as well as, across various Global EY Teams and Technologies. Additionally, youu will provide consulting services to other teams, as well as being a level four contact for operational issues.
Your key Responsibilities
+ Articulate technology issues/concerns that may emerge at any level of the technical stack, and from any component across the ecosystem, to technology leaders
+ Engineer security solutions and services following all relevant EY standards and practices for On-Premise, Hybrid and Cloud-Based environments.
+ Provide detailed input into the design, leads implementation, and testing of security solutions and services for large, complex projects from initial design to completion which includes production support and documentation.
+ Takes accountability for the design, delivery and maintenance of new and existing security solutions or services, driving compliance with and contributing to the development of relevant standards.
+ Apply modern standards/principles, global product-specific guidelines, security standards, design standards, to security solutions and services as appropriate.
+ Improve existing security solutions and services in use by partnering with Security Architecture, STS Service Owner, and Security Operations. Drives automation and innovation across the security solutions supported.
+ Work in a diverse, global environment and build strong relationships across all levels of a matrixed, geographically, and culturally dispersed organization.
+ Flexible to work out of regular office hours to accommodate the team and organizational calls and meetings. Weekend or late-night work may occur during the project and early life cycle support phases.
+ No direct supervisory responsibilities, however, Technical Leadership required within assigned services and solutions.
Skills and Attributes for Success
We are interested in people who bring in security experience from having implemented and supported solutions in a large enterprise environment. As a successful candidate you will have functional, technical, and delivery experience in implementing both Cloud and On-Premises SOAR technologies.
+ Advanced skills in planning, designing, and solving complex security solutions and services in a very large enterprise.
+ Advanced technical proficiency in designing and implementing SOAR solutions within large enterprise
+ Experience design, deploying, and working with Cortex XSOAR
+ Experience design, deploying, and working with Cortex XSOAR Engines
+ Data retention options within Cortex XSOAR Platform
+ Cortex XSOAR RBAC design and configuration leveraging SAML
+ Experience with multiple other security tools, such as Splunk, Cisco Firepower, Cisco IronPort’s, Microsoft Sentinel, Zscaler Products, Microsoft Defender for Endpoint, Microsoft Defender for Cloud, and their architecture
+ Experience integrating tools with multi-Cloud solutions
+ Experience designing and implementing Playbooks
+ Experience deploying and configuring Cortex XSOAR Content Packs
+ Experience working with various Rest-API services, such as, Microsoft Sentinel API, Microsoft Graph APIs
+ Experience with Cortex XSOAR as a SaaS Solution, a plus
+ Communicate fluently in English, both written and verbal and able to communicate technical concepts effectively
+ Excellent interpersonal communication and organizational skills and the ability to work within tight timeframes
+ Rapidly learn new and emerging technologies with ability to rapidly define engineering standards
To qualify for the role, you must have
+ Approximately 5+ years of experience in Security, including demonstratable knowledge of SOAR technologies and working knowledge of SIEM platforms
+ 3+ years demonstrated ability in an engineering function
+ Several years’ experience working in a large global virtual environment and enterprise environments at scale
+ Technical proficiency with Cortex XSOAR Product.
+ Technical proficiency with Python Scripting Language
+ Technical proficiency in Azure, Google and/or AWS Cloud services, hybrid, and on-premises security solutions including Linux and Windows Operating Systems
+ Experience with Kubernetes, specifically AKS and/or GKE
+ Technical proficiency with interacting with APIs and scripting tools (Ansible, PowerShell, etc.), is a plus
+ Technical proficiency with SaaS, IaaS, and PaaS solutions.
+ Understanding of other technologies required to run a secure, enterprise level infrastructure that adhere to security best practices
+ Excellent time management, organizational, and decision-making skills
+ Ability to design and document processes, procedures, and security designs clearly and accurately for distribution to internal teams and customers
+ Demonstrated experience in dealing with external vendors and suppliers in the security industry
Ideally, you’ll also have
+ Bachelor’s Degree in Computer Science, Engineering, IT, Mathematics or a related field, or equivalent work experience.
+ GSEC/CISSP or other security related generalist certification from ISC2 or GIAC
+ Experience in project management, service introduction, and service readiness
What we look for
+ This role is perfect for you, if you have excellent problem solving, decision making and communication skills.
+ We are looking for people who are comfortable working with culturally diverse on/offshore team members, able to react appropriately during stressful and ambiguous situations.
+ Independent thinkers with team driven values.
What we offer
The compensation ranges below are provided in order to comply with United States pay transparency laws. Other geographies will follow their local salary guidelines, which may not be a direct conversion of published US salary range/s."
We offer a comprehensive compensation and benefits package where you’ll be rewarded based on your performance and recognizedTo view full details and how to apply, please login or create a Job Seeker account