Senior Consultant Tech Consulting Cybersecurity CMS Cairo

As part of our Cyber Technology Consulting team you will support clients across the MENA region in building and optimizing Security Operations Center (SOC) and Threat Management capabilities. You will play a hands-on role in designing implementing and operating next-generation SOC solutions while contributing to threat detection incident response and cyber defense initiatives. Youll collaborate closely with clients to mature their security operations while working with cross-functional teams across our Advisory practice.

The opportunity

We are seeking a senior consultant with proven expertise in Security Operations Threat Detection Threat Intelligence and Incident Response to join our Cybersecurity team.

This role presents an exceptional opportunity to help organizations enhance their cyber resilience strengthen threat detection capabilities and ensure effective response to complex security incidents. You will work closely with CISOs and executive stakeholders to define regional SOC strategies and support high-impact threat management programs that advance national and enterprise-level cyber defense maturity.

Your key responsibilities

• Deliver cyber threat monitoring threat hunting and incident response engagements for a diverse range of clients.
• Design implement and optimizeNext-Gen SOCs including people process and technology components.
• Guide clients in establishing 24x7 monitoring models incident escalation plans procedures and runbooks.
• Lead major security incident response efforts and support cyber crisis simulation exercises.
• Define and develop use cases alert logic and detection engineering strategies for SIEM SOAR and EDR/XDR platforms.
• Conduct SOC maturity assessments gap analysis and create roadmaps aligned with NIST CSF MITRE ATT&CK and regional regulations.
• Integrate threat intelligence platforms contextual enrichment and TTP-based detection methods into client environments.
• Develop detailed reports articulate technical findings and deliver actionable recommendations to both technical teams and executive stakeholders.

• Mentor junior team members and contribute to knowledge development across the team.

Skills and attributes for success

• Strong technical background in SIEM SOAR and EDR/XDR platforms including architecture rule finetuning and end-to-end use case lifecycle development.
• In-depth understanding of the threat intelligence lifecycle attacker TTPs and emerging threats such as APT ransomware and insider threats.
• Hands-on knowledge of MITRE ATT&CK NIST CSF and incident handling best practices.
• Experience in developing SOC playbooks use cases KPIs and SOC operating models.
• Ability to communicate technical/complex cyber risks and threats effectively to both technical and non-technical stakeholders including senior management.
• Proven experience managing large-scale SOC transformation and threat detection programs across diverse client environments.
• Collaborating with other members of the engagement team to develop the engagement plan timelines risk assessments and other documents/templates.
• Ability to analyze and interpret complex technical results and present insights to business stakeholders.
• Strong analytical problem-solving and critical-thinking skills.
• Excellent communication and collaboration skills.

To qualify for the role you must have

• Bachelors or Masters degree in Cybersecurity Computer Science Information Technology or related field.
• 25 years of hands-on experience in Security Operations Threat Detection or Incident Response.
• Experience working with SIEM/SOAR/EDR tools (implementation or operations).
• Strong written and verbal communication skills in English.
• Valid passport and willingness to travel across the MENA region.

Ideally youll also have

• Industry-recognized certifications such as GCIA GCED GCIH GCFA CISSP CCSP or equivalent.
• Familiarity with threat intel feeds (e.g. MISP Anomali Recorded Future) and TIP platforms.
• Experience integrating AI/ML use cases into SOC environments (e.g. behavioral/anomaly detection use cases).
• Exposure to SOC-as-a-Service delivery models hybrid SOC architectures and MSSP integration.

What we offer

We offer a competitive compensation package where youll be rewarded based on performance and recognized for the value you bring to our business. Plus we offer:

• Continuous learning: Youll develop the mindset and skills to navigate whatever comes next.
• Success as defined by you: Well provide the tools and flexibility so you can make a meaningful impact your way.
• Transformative leadership: Well give you the insights coaching and confidence to be the leader the world needs.
• Diverse and inclusive culture: Youll be embraced for who you are and empowered to use your voice to help others find theirs.

If you can demonstrate that you meet the criteria above please contact us as soon as possible.

The exceptional EY experience. Its yours to build.

EY Building a better working world

EY exists to build a better working world helping to create long-term value for clients people and society and build trust in the capital markets.

Enabled by data and technology diverse EY teams in over 150 countries provide trust through assurance and help clients grow transform and operate.

Working across assurance consulting law strategy tax and transactions EY teams ask better questions to find new answers for the complex issues facing our world today.