Senior Security Analyst

At EY, you'll have the opportunity to shape a unique career tailored to your individual strengths, with the global reach, support, diverse culture, and cutting-edge technology needed to unleash your full potential. Your distinctive voice and perspective are valued at EY as we strive for continuous improvement. Join our team to create an exceptional experience for yourself while contributing to a better working world for all. As a CMS-TDR Senior at EY, you will be a key member of our cybersecurity team, serving as a Senior Analyst responsible for assisting clients in identifying and responding to security incidents using SIEM, EDR, and NSM solutions. Your primary responsibilities will include: - Providing operational support utilizing SIEM solutions (Splunk, Sentinel), EDR (CrowdStrike, Defender, Carbon Black), and NSM (Fidelis, ExtraHop) for multiple clients. - Specializing in second-level incident validation and conducting detailed investigations. - Coordinating and communicating with clients to ensure effective incident containment, eradication, and recovery. - Conducting SIEM support activities such as adhoc reporting and basic troubleshooting. - Advising customers on best practices and use cases for achieving their desired security objectives using these solutions. - Offering near real-time analysis, investigation, reporting, remediation, coordination, and tracking of security-related activities for clients. Required skills and attributes for success: - Customer service orientation with a focus on meeting commitments and seeking feedback for continuous improvement. - Proficiency in SIEM technologies like Splunk, Azure Sentinel from a security analyst's perspective. - Ability to troubleshoot issues related to SIEM solutions. - Capability to work independently with minimal supervision. - Exposure to IOT/OT monitoring tools (Claroty, Nozomi Networks) is advantageous. - Strong knowledge and experience in Security Monitoring and Cyber Incident Response. - Familiarity with ELK Stack, Network monitoring platforms like Fidelis XPS, ExtraHop, and endpoint protection tools such as Carbon Black, Tanium, CrowdStrike, Defender, etc. Qualifications for this role include: - Bachelor's degree in Engineering with a strong technical background. - Availability to work in 24x7 shifts. - Excellent command of verbal and written English. - Demonstrated technical expertise and critical thinking skills. - Strong interpersonal and presentation abilities. - Minimum of 3 years hands-on experience in SIEM/EDR/NSM solutions. - Certification in any SIEM platform and knowledge of RegEx, Perl scripting, and SQL query language. - Certifications such as CCSA, CEH, CISSP, GCIH are preferred. Additionally, project management skills are desirable for this role. Working at EY offers: - Engaging and diverse projects with clients ranging from startups to Fortune 500 companies. - Opportunities for education, coaching, and personal development. - Supportive colleagues, feedback, and coaching. - Room for skill development and career progression. - A flexible work environment that empowers you to excel in your role. EY is committed to building a better working world by creating long-term value for clients, people, and society while fostering trust in capital markets. Through data and technology, EY teams worldwide provide assurance and help clients grow, transform, and operate effectively in today's complex landscape. Whether in assurance, consulting, law, strategy, tax, or transactions, EY teams drive innovation by asking the right questions to address the challenges of our time.,