Credential Protection Senior Security Analyst

At EY, we’re all in to shape your future with confidence.

We’ll help you succeed in a globally connected powerhouse of diverse teams and take your career wherever you want it to go.

Join EY and help to build a better working world.

Today’s world is fueled by vast amounts of information, which means that data is even more valuable than ever before. Protecting data and information systems is central to doing business, and therefore everyone in EY Information Security has a critical role to play. Join a global team of almost 900 people who collaborate to support the business of EY by protecting EY and client information assets! Information Security professionals enable EY to work securely and deliver secure products and services, as well as detect and quickly respond when things go wrong. Together, the efforts of our dedicated team helps protect the EY brand and build client trust.

Within Information Security we blend risk strategy, digital identity, cyber defense, application security and technology service solutions as we consider the entire security lifecycle. You will join a team of hardworking, security-focused individuals dedicated to supporting, protecting and enabling the business through innovative, secure solutions that provide speed to market and business value.

The opportunity

The Credential Protection Security Analyst within the Identity & Access Management domain will be responsible for the operation, maintenance, and security of an Active Directory forest supporting multiple enterprise forests. The Analyst will be responsible for protecting the highly privileged accounts and their associated credentials. The analyst will also work with team members to enhance security monitoring tools with contextual information. The analyst is required to review vulnerability scans and provide an assessment of the vulnerabilities as they relate to the environment. The analyst will review various sources for security information and threats and identify the potential impact to the environment. Risk assessment techniques are a plus.

Your Key Responsibilities

• Ability to administer and maintain a highly secured Active Directory forest infrastructure
• Ability to resolve common Windows and Active Directory issues
• Ability to locate and assimilate new information to provide context for security events
• Identifies and resolves complex issues on the engagement/ project, demonstrating a broad technical skillset.
• Solid understanding of security incident/ problem and change management and vulnerability management processes
• Daily health check of security platforms and publishing health check report
• Execute Maintenance Procedures to keep the security systems patched and up to date
  
  

Analytical/Decision Making Responsibilities:

• Ability to recognize and research attacks and attack patterns
• Ability to prioritize events so that the most impactful are addressed first
• Communicates critical areas of risk to the team and manager on a timely basis, consulting where appropriate to help resolve issues.
• Can quickly understand fast- moving situations, rapidly understands the context of different situations and responds to new challenges and demands effectively.
  
  

Skills And Attributes For Success

• Strong network and/or system admin background
• TCP/IP network expertise
• Strong knowledge of Windows Server technologies and Active Directory
• Experience with scripting languages especially PowerShell
• Experience with CyberArk Privileged Account Security Solution desirable
• Security monitoring experience with one or more SIEM (SPLUNK/SCOM) and intrusion detection technologies
• Knowledge of IPsec/PKI desired
• Solid understanding of information security technologies
• Excellent team skills and integrity in a professional environment
• Exceptional social, communication, and technical and general writing skills
  
  

Supervision Responsibilities:

• Must be self-motivated and able to work independently, often unsupervised
• Responsible for oversight of some projects assigned
• Assists management in the selection and retention of software applications, support staff, and on-going maintenance
• Provides project management assistance to the Project Manager for any size project
  
  

To qualify for the role you must have

Education:

• Bachelors or Masters Degree in Computer Science, Information Systems, Engineering or related field.
  
  

Experience:

• 3+ years’ experience in one or more of the following:
• Active Directory configuration, administration, and troubleshooting
• Windows Server platform administration, including knowledge of 2012 R2/2016/2019 core
• Scripting and writing PowerShell Cmdlets
• Reviewing security events and threats
• Deep understanding of the TCP/IP protocol stack
• Understanding of Public Key Infrastructure (PKI)
• Experience with programming languages such as Java, Java script, C, C++, C#, ASP, .NET, Visual Basic and is a plus (perl, python as well)
• Open to work flexible schedule as needed to provide 24x7 support coverage
• Experience with ServiceNow IT Service Management system desired
  
  

Ideally, you’ll also have

CISSP, CISM or CISA certifications desirable

What We Offer

As part of this role, you will work in a highly coordinated, globally diverse team with the opportunity and tools to grow, develop and drive your career forward. Here, you can combine global opportunity with flexible working. The EY benefits package goes above and beyond too, focusing on your physical, emotional, financial and social well-being. Your recruiter can talk to you about the benefits available in your country. Here’s a snapshot of what we offer:

• Continuous learning: You will develop the mindset and skills to navigate whatever comes next.
• Success as defined by you: We will provide the tools and flexibility, so you can make a significant impact, your way.
• Transformative leadership: We will give you the insights, coaching and confidence to be the leader the world needs.
• Diverse and inclusive culture: You will be accepted for who you are and empowered to use your voice to help others find theirs.
  
  

EY | Building a better working world

EY is building a better working world by creating new value for clients, people, society and the planet, while building trust in capital markets.

Enabled by data, AI and advanced technology, EY teams help clients shape the future with confidence and develop answers for the most pressing issues of today and tomorrow.

EY teams work across a full spectrum of services in assurance, consulting, tax, strategy and transactions. Fueled by sector insights, a globally connected, multi-disciplinary network and diverse ecosystem partners, EY teams can provide services in more than 150 countries and territories.