Cyber SDC- Secure Design Pattern Analyst - Staff 2 - Consulting - Location OPEN
Cyber SDC- Secure Design Pattern Analyst - Staff 2 - Consulting - Location OPEN
Employer Active
Job Alert
You will be updated with latest job alerts via email
Share
Job Alert
You will be updated with latest job alerts via email
$ 57700 - 94800
1 Vacancy
Job Description
In an everevolving IT landscape EY stands as a beacon of trust for clients across diverse industries seeking reliable solutions to address their intricate risks and vulnerabilities. As a vital member of our Secure Design Pattern team you will play a vital role in achieving this objective by empowering clients to comprehend navigate and secure all applicable layers of business applications. This is an opportunity to leverage both your technical prowess and business acumen to drive our mission and make a significant impact on global cybersecurity.
The opportunity
We currently offer an exciting career opportunity for a Secure Design Pattern Analyst responsible for establishing blueprints to standardize implementation of security controls across layers of business applications and architectures.
At our core our Secure Design Pattern services play a pivotal role in assisting our clients to implement business applications securely and in line with industry best practices and client policies and standards. The ideal candidate will be responsible for documenting secure design patterns interfacing with application owners architects and subject matter resources as well as discuss and apply secure patterns guidelines and principles.
Your Key Responsibilities
- Create and maintain design patterns documentation and playbooks
- Coordinate and streamline the processes to create update manage and control design patterns. at clients.
- Engage with security architects product owners engineers and subject matter resources to support new design patterns and updates to design patterns.
- Promote security best practices within discussions.
- Review and process design pattern service requests ensuring timely resolution.
- Track and report the status of secure design pattern requests provide regular updates on progress and outcomes.
Skills and Attributes for Success
- Proven experience writing technical documentation standard operating procedures policies standards supporting the implementation of security controls and architecture patterns.
- Understanding and apply secure design concepts.
- Strong communication skills with the ability to convey technical information in discussions and documentation.
- Knowledge of industry security frameworks and compliance standards and regulations (e.g. CMMC NIST ISO 27001 CIS OWASP TOGAF SABSA etc.
- Familiarity with cloud security platforms (e.g. AWS Azure) and cloudnative security controls.
- Basic understanding of authentication (OAuth SAML OpenID) authorization (RBAC ABAC) and Zero Trust
- Understanding of encryption algorithms key management digital signatures and PKI.
- Familiarity with SIEM SOAR XDR log management and anomaly detection.
- Familiarity with secure coding practices DevSecOps SAST/DAST tools and software security design.
- Familiarity with firewalls VPNs TLS microsegmentation and intrusion detection.
- Excellent problemsolving skills and the ability to manage multiple tasks effectively.
- Strong communication skills to collaborate with team members and stakeholders (e.g. business information technology product owners cybersecurity.
- A track record of delivering highquality client services and work products within expected timeframes.
- Ability to managing and maintain inventories of documentation
To qualify for the role you must have
- Understanding of security principles
- Bachelors degree in computer science information technology cybersecurity technical writing or a related field
- Proven experience in technical writing
- Hands on experience managing or working on a security architecture and/or GRC team
- Basic knowledge of cloud platforms (AWS Azure) and their security features
- Knowledge of common industry security frameworks and regulations (e.g. CMMC NIST ISO 27001 CIS OWASP etc.
- Knowledge of general security concepts and methods such as security policy creation enterprise security strategies architectures governance vulnerability assessments privacy assessments intrusion detection and incident response
- Experience in leading process definition workflow design and process mapping
- Experience in ServiceNow managing tickets and generating basic reports.
Ideally youd also have
- Professional certifications in cybersecurity such as CISSP CISM or specific vendor certifications like from AWS Azure and Google Cloud.
- Hands on experience in cloudbased security solutions
- Prior experience as a security architect
- Experience in assessing compliance to regulations and standards
- Strong interpersonal and communication skills with the ability to collaborate effectively with clients and crossfunctional teams to present solution designs options and innovations.
What we look for
We are interested in intellectually curious people with a genuine passion for cybersecurity. With your broad exposure across security architecture and enterprise applications we will turn to you to speak up with innovative new ideas that could make a lasting difference not only to us but also to the industry at large. If you have the confidence in both your writing presentation and technical abilities to grow into a leading expert here this is the role for you.
- Continuous learning: Youll develop the mindset and skills to navigate whatever comes next.
- Success as defined by you: Well provide the tools and flexibility so you can make a meaningful impact your way.
- Transformative leadership: Well give you the insights coaching and confidence to be the leader the world needs.
- Diverse and inclusive culture: Youll be embraced for who you are and empowered to use your voice to help others find theirs.
Required Experience:
Staff IC
Employment Type
Full-Time
