Cyber Security Operations VG W6 ES And F0116

At EY youll have the chance to build a career as unique as you are with the global scale support inclusive culture and technology to become the best version of you. And were counting on your unique voice and perspective to help EY become even better too. Join us and build an exceptional experience for yourself and a better working world for all.

Technology Consulting

Title: Senior Manager I Cyber Security Operations

EY is a global leader in assurance tax transaction and advisory services. Technology is at the heart of what we do and deliver at EY. Technology solutions are integrated in the client services we deliver and are key to our innovation as an organization.

Fueled by strategic investment in technology and innovation Client Technology seeks to drive growth opportunities and solve complex business problems for our clients through building a robust platform for business and powerful product engine that are vital to innovation at scale. As part of Client Technology youll work with technologists and business experts blending EYs deep industry knowledge and innovative ideas with our platforms capabilities and technical expertise. As a catalyst for change and growth youll be at the forefront of integrating emerging technologies from AI to Data Analytics into every corner of what we do at EY. That means more growth for you exciting learning opportunities career choices and the chance to make a real impact.

EY Technology:

Technology has always been at the heart of what we do and deliver at EY. We need technology to keep an organization the size of ours working efficiently. We have 250000 people in more than 140 countries all of whom rely on secure technology to be able to do their job every single day. Everything from the laptops we use to the ability to work remotely on our mobile devices and connecting our people and our clients to enabling hundreds of internal tools and external solutions delivered to our clients. Technology solutions are integrated in the client services we deliver and is key to us being more innovative as an organization.

• EY Technology supports our technology needs through three business units:
• Client Technology (CT) - focuses on developing new technology services for our clients. It enables EY to identify new technology-based opportunities faster and pursue those opportunities more rapidly.
• Enterprise Workplace Technology (EWT) EWT supports our Core Business Services functions and will deliver fit-for-purpose technology infrastructure at the cheapest possible cost for quality services. EWT will also support our internal technology needs by focusing on a better user experience.
• Information Security (Info Sec) - Info Sec prevents detects responds and mitigates cyber-risk protecting EY and client data and our information management systems.

The opportunity

This role leads the development of teams providing technical support in protecting Clients digital assets from all internal and external threats with responsibility for managing mitigation and monitoring via cloud-based controls and provides direction across multiple teams. The role also designs and validates secure architecture frameworks conducts infrastructure audits implements disaster recovery plans and monitors systems for anomalies to ensure cybersecurity readiness.

Your key responsibilities

• Hires evaluates and supervises crew. Provides guidance and training as necessary to develop crew. Sets performance standards reviews performance and makes informed compensation decisions in accordance with all applicable Human Resources policies and procedures.
• Oversees the development and delivery of IT security standards and best practices to conduct formal incident investigations lead advanced incident handling scenarios including internal and external data breaches abnormal network and host activity and assess risk derived from a platform or data-lake.
• Serves as a leader mentor and subject matter resource for crew members. Divides and assigns workload and resolves complex ticket issues escalated by direct reports.
• Designs and implements cyber security and operations procedures tasks and reports. Identifies process gaps and recommends solutions to improve workflow and mitigate risk.
• Serves as a security expert in application development database design network and/or platform (operating system) efforts helping security project teams comply with enterprise and IT security policies and industry regulations.
• Provides security related services within enterprise-wide processes where separation of duties is needed to reduce risk. Acts as a key stakeholder for IT governance teams.
• Oversees multiple teams that address critical security risks to the business. Ensures that security risk related issues are appropriately addressed within the IT environment.
• Participates in special projects and performs other duties as assigned.
• Designs and validates secure architecture frameworks for systems networks and cloud environments to protect business-critical assets.
• Conducts regular infrastructure audits and vulnerability scans to identify and remediate weaknesses.
• Implements and oversees disaster recovery and business continuity planning with an emphasis on cybersecurity readiness.
• Continuously monitors system activity and access logs to detect anomalies or breaches and initiates timely remediation actions.

Skills and attributes for success

• Lead localized cyber incident response operations for responding and triaging global security alerts. Assist in developing and implementing strategic incident response processes and improvements and efficiencies.
• Act as the primary liaison with national and industry CERTs ensuring timely information sharing collaborative response and alignment with threat intelligence advisories.
• Supports a global team responsible for SIEM and data detection engineers to enhance threat detection and response capabilities. Partners with threat intelligence incident response and vulnerability management teams to enhance threat detection capabilities.
• Supports a global team responsible of automation engineers to enhance automation capabilities reduce risk and drive operational efficiency.
• Supports a global team responsible for endpoint network email and cloud Data loss Prevention (DLP) security controls along with Data Classification scanning.
• Supports a global team responsible for implementing security monitoring and mitigating external threats across multiple cloud environments AWS Azure GCP leveraging CSOC security stack.
• Supports a global team responsible for CSOC development operations including ServiceNow platform Incident Case Management and enterprise Request development. Understands development and scripting.
• Provides guidance and coaches security teams towards best practices and learnings. Oversees product teams support of the messaging communication and customer outreach as necessary.
• Partners with internal SOC teams and Client businesses to remediate risks.
• Participates in special projects and performs other duties as assigned.

To qualify for the role you must have

• Minimum 10 years of experience in cybersecurity operations with 7 years of progressive cybersecurity experience including leadership responsibility (team lead manager or head of function).
• Atleast 3 years in a leadership role managing multiple security teams.
• Proven experience leading a full cybersecurity function end to end with accountability for outcomes budget and operational performance.
• Demonstrated leadership and people-management excellence including hiring coaching performance management stakeholder influence and cross-functional alignment.
• Bachelors degree (B.E./) in Computer Science IT Information Security or related fields or a Masters degree/Diploma in Cybersecurity Information Assurance or Network Security.
• Proven expertise in enterprise cybersecurity architecture secure systems design cloud security (AWS Azure) and risk assessment methodologies.
• Deep understanding of vulnerability management intrusion detection/prevention systems incident response protocols and threat intelligence tools (e.g. Splunk QRadar Qualys).
• Must have Agile Confluence JIRA and strong track record in developing and refining security workflows dashboards and continuous improvement initiatives.
• Proficiency in using JIRA HP ALM or TestRail for incident tracking with experience working in Agile/Scrum environments integrated with CI/CD pipelines.

Ideally youll also have

• Strong verbal and written communication facilitation relationship-building presentation and negotiation skills.
• Be highly flexible adaptable and creative.
• Comfortable interacting with senior executives (within the firm and at the client)

What we look for

• Strong teamwork work ethic product mindset client centricity and a relentless commitment to EY values.

What working at EY offers

We offer a competitive remuneration package where youll be rewarded for your individual and team performance. Our comprehensive Total Rewards package includes support for flexible working and career development and with FlexEY you can select benefits that suit your needs covering holidays health and well-being insurance savings and a wide range of discounts offers and promotions. Plus we offer:

• Support coaching and feedback from some of the most engaging colleagues around
• Opportunities to develop new skills and progress your career
• The freedom and flexibility to handle your role in a way thats right for you

EY Building a better working world

EY exists to build a better working world helping to create long-term value for clients people and society and build trust in the capital markets.

Enabled by data and technology diverse EY teams in over 150 countries provide trust through assurance and help clients grow transform and operate.

Working across assurance consulting law strategy tax and transactions EY teams ask better questions to find new answers for the complex issues facing our world today.