Cyber Threat Analyst SecOps
CMS-TDR Staff
As part of our EY-cyber security team, you will work as a SOC analyst who will assist clients in detecting and responding to security incidents with support from their SIEM, EDR, and NSM solutions.
The opportunity
We are looking for a Security Analyst with experience in SIEM, EDR, and NSM solutions.
Your key responsibilities
1. Operational support using SIEM solutions (Splunk, Sentinel, CrowdStrike Falcon, LogScale), EDR Solutions (Defender, CrowdStrike, Carbon Black), and NSM (Fidelis, ExtraHop) for multiple customers.
2. First level of monitoring and triaging of security alerts.
3. Initial data gathering and investigation using SIEM, EDR, and NSM solutions.
4. Provide near real-time analysis, investigation, and reporting of security incidents for customers.
Skills and attributes for success
1. Customer Service oriented - Meets commitments to customers and seeks feedback from customers to identify improvement opportunities.
2. Good hands-on knowledge of SIEM technologies such as Splunk, Azure Sentinel, CrowdStrike Falcon, and LogScale from a Security Analyst's point of view.
3. Exposure to IOT/OT monitoring (Claroty, Nozomi Networks, etc.) is a plus.
4. Good knowledge and experience in Security Monitoring.
5. Good knowledge and experience in Cyber Incident Response.
6. Knowledge in Network monitoring technology platforms such as Fidelis, XPS, ExtraHop.
7. Knowledge in endpoint protection tools, techniques, and platforms such as Carbon Black, Tanium, CrowdStrike, Defender ATP, etc.
8. Languages: German C1 or above.
To qualify for the role you must have
1. B. Tech./B.E. with sound technical skills.
2. Ability to work in 24x7 shifts.
3. Strong command of verbal and written English.
4. Demonstrate both technical acumen and critical thinking abilities.
5. Strong interpersonal and presentation skills.
6. Hands-on experience in SIEM, EDR, and NSM solutions.
7. Certification in any of the SIEM platforms.
8. Knowledge of RegEx, Perl scripting, and SQL query language.
9. Certification - CEH, ECSA, ECIH, Splunk Power User.
What working at EY offers
At EY, we are dedicated to helping our clients from start-ups to Fortune 500 companies - and the work we do with them is as varied as they are.
You will work with inspiring and meaningful projects. Our focus is education and coaching alongside practical experience to ensure your personal development. We value our employees, and you will be able to control your own development with an individual progression plan. You will quickly grow into a responsible role with challenging and stimulating assignments.
Moreover, you will be part of an interdisciplinary environment that emphasizes high quality and knowledge exchange. Plus, we offer:
1. Support, coaching, and feedback from some of the most engaging colleagues around.
2. Opportunities to develop new skills and progress your career.
3. The freedom and flexibility to handle your role in a way that’s right for you.
About EY
As a global leader in Assurance, Tax, Strategy, Transactions, and Consulting services, we are using the finance products, expertise, and systems we’ve developed to build a better working world. That starts with a culture that believes in giving you the training, opportunities, and creative freedom to make things better. Whenever you join, however long you stay, the exceptional EY experience lasts a lifetime. And with a commitment to hiring and developing the most passionate people, we will make our ambition to be the best employer a reality by 2020.
If you can confidently demonstrate that you meet the criteria above, please contact us as soon as possible.
Join us in building a better working world.
Apply now
SIEM, EDR, Splunk, Sentinel #J-18808-Ljbffr