At EY, you will have the chance to build a career as unique as you are, with the global scale, support, inclusive culture and technology to become the best version of you. And we are counting on your unique voice and perspective to help EY become even better too. Join us and build an exceptional experience for yourself, and a better working world for all.
Todays world is fueled by vast amounts of information, which means that data is even more valuable than ever before. Protecting data and information systems is central to doing business, and therefore everyone in EY Information Security has a critical role to play. Join a global team of almost 900 people who collaborate to support the business of EY by protecting EY and client information assets! Information Security professionals enable EY to work securely and deliver secure products and services, as well as detect and quickly respond when things go wrong. Together, the efforts of our dedicated team helps protect the EY brand and build client trust.
Within Information Security we blend risk strategy, digital identity, cyber defense, application security and technology service solutions as we consider the entire security lifecycle. You will join a team of hardworking, security-focused individuals dedicated to supporting, protecting and enabling the business through innovative, secure solutions that provide speed to market and business value.
The opportunity The Credential Protection Security Analyst within the Identity Access Management domain will be responsible for the operation, maintenance, and security of an Active Directory forest supporting multiple enterprise forests. The Analyst will be responsible for protecting the highly privileged accounts and their associated credentials. The analyst will also work with team members to enhance security monitoring tools with contextual information. The analyst is required to review vulnerability scans and provide an assessment of the vulnerabilities as they relate to the environment. The analyst will review various sources for security information and threats and identify the potential impact to the environment. Risk assessment techniques are a plus.
Your key responsibilities
Ability to administer and maintain a highly secured Active Directory forest infrastructure Ability to resolve common Windows and Active Directory issues Ability to locate and assimilate new information to provide context for security events Identifies and resolves complex issues on the engagement/ project, demonstrating a broad technical skillset. Solid understanding of security incident/ problem and change management and vulnerability management processes Daily health check of security platforms and publishing health check report Execute Maintenance Procedures to keep the security systems patched and up to date
Responsibilities, Qualifications, Certifications
Analytical/Decision Making Responsibilities: Ability to recognize and research attacks and attack patterns Ability to prioritize events so that the most impactful are addressed first Communicates critical areas of risk to the team and manager on a timely basis, consulting where appropriate to help resolve issues. Can quickly understand fast- moving situations, rapidly understands the context of different situations and responds to new challenges and demands effectively.
Skills and attributes for success
Strong network and/or system admin background TCP/IP network expertise Strong knowledge of Windows Server technologies and Active Directory Experience with scripting languages especially PowerShell Experience with CyberArk Privileged Account Security Solution desirable Security monitoring experience with one or more SIEM (SPLUNK/SCOM) and intrusion detection technologies Knowledge of IPsec/PKI desired Solid understanding of information security technologies Excellent team skills and integrity in a professional environment Exceptional social, communication, and technical and general writing skills
Supervision Responsibilities: Must be self-motivated and able to work independently, often unsupervised Responsible for oversight of some projects assigned Assists management in the selection and retention of software applications, support staff, and on-going maintenance Provides project management assistance to the Project Manager for any size project
To qualify for the role you must have
Education: Bachelors or Masters Degree in Computer Science, Information Systems, Engineering or related field.
Experience:3+ years experience in one or more of the following: Active Directory configuration, administration, and troubleshooting Windows Server platform administration, including knowledge of 2012 R2/2016/2019 core Scripting and writing PowerShell Cmdlets Reviewing security events and threats Deep understanding of the TCP/IP protocol stack Understanding of Public Key Infrastructure (PKI) Experience with programming languages such as Java, Java script, C, C++, C#, ASP, .NET, Visual Basic and is a plus (perl, python as well) Open to work flexible schedule as needed to provide 24x7 support coverage Experience with ServiceNow IT Service Management system desired
Ideally, youll also have
CISSP, CISM or CISA certifications desirable
EY | Building a better working world
EY exists to build a better working world, helping to create long-term value for clients, people, and society and build trust in the capital markets.
Enabled by data and technology, diverse EY teams in over 150 countries provide trust through assurance and help clients grow, transform, and operate.
Working across assurance, consulting, law, strategy, tax, and transactions, EY teams ask better questions to find new answers for the complex issues facing our world today.