Advisory Senior Consultant Cybersecurity Orchestration Engineer

Ernst & Young LLP Seattle , WA 98113

Posted Yesterday

  • In a rapidly changing IT environment, clients from all industries look to us for trusted solutions for their increasingly complex risks and vulnerabilities. As a member of our Cyber Threat Management team you'll be right at the heart of that goal, helping clients gain insight and context to their cyber threats and assessing, improving, and building security operations in order to mitigate these threats. You'll get to use your technical and business skills in order to help us drive this mission and have an impact on cyber security at a global level.

The opportunity

You'll work alongside respected industry professionals, learning about and using the latest tools and techniques to identify and overcome some of the most relevant and pressing security issues in the world. It's a highly specialized area, where you'll learn highly sought after technical skills, all while developing your relationship management abilities often by working directly on-site with our clients.

What to expect

Cyber Orchestration Engineers are needed to review procedures relating to current threat management and response processes as well as design automated actions to accelerate the triage, validation, containment, eradication and remediation of security incidents. You must be familiar with leading security tools and industry standard scripting languages. Automation and Orchestration engineers will create, maintain and manage a library of automated playbooks for common information security threats and customize these plans for client specific environments.

Your key responsibilities

  • Perform regular updates of existing Playbooks based on requirements provided by operations teams for changes in the Threat Landscape or a client's security controls

  • Drive continuous improvement of existing playbooks to address new threats and tactics employed by attackers

  • Manage an inventory of integrations that enable broader playbook creation

  • Produce new playbooks as threats change and new security tools and controls emerge in the market place based in requirements from operations teams

  • Perform regular reporting on the usage of playbooks and the effectiveness of a playbook to conclusion

  • Develop logic that bridges connectors, tasks and human input to accelerate the response to escalated security incidents

  • Develop connectors that collect enrich and leverage data from third party and proprietary services

  • Participate in client meetings to further optimize their specific operational plan based on our best practices and operational learnings

To qualify for the role you must have

  • A bachelor's degree in a related field and approximately 3-5 years of related work experience; or a graduate degree and approximately 2 years of related work experience

  • 3+ years of experience with scripting in one or more of the following scripting languages: javascript, Python, power shell and various shell scripting

  • Proven background in creating automation tools, automating web based services (

  • Excellent analytical and problem solving abilities

  • Ability to travel occasionally for client-site visits, team on-sites and strategic planning

  • A driver's license valid in the U.S

Ideally, you'll also have

  • Familiarity with *nix-based command line tools

  • Familiarity with REST API best practices and usage

  • Experience with programming in Python, javascript and/or bash shell scripting.

  • Familiarity and experience with security orchestration and automation tools like Phantom, Swimlane and ServiceNow Secops

  • Familiarity with common open source research frameworks

  • CISSP, CISM, CISA, CIPT, CIPM, CRISC or other relevant certification desired

What we look for

We're interested in intellectually curious people with a genuine passion for cyber security. With your broad exposure across Cyber Threat Management, we'll turn to you to speak up with innovative new ideas that could make a lasting difference not only to us but also to the industry as a whole. If you have the confidence in both your presentation and technical abilities to grow into a leading expert here, this is the role for you.

What working at EY offers

We offer a competitive compensation package where you'll be rewarded based on your performance and recognized for the value you bring to our business. In addition, our Total Rewards package includes medical and dental coverage, both pension and 401(k) plans, a minimum of three weeks of vacation plus 10 observed holidays and three paid personal days, and a range of programs and benefits designed to support your physical, financial and social wellbeing.

Plus, we offer

  • Support, coaching and feedback from some of the most engaging colleagues around

  • Opportunities to develop new skills and progress your career

  • The freedom and flexibility to handle your role in a way that's right for you

  • A rewards package tailored to your unique needs

About EY

As a global leader in assurance, tax, transaction and advisory services, we're using the finance products, expertise and systems we've developed to build a better working world. That starts with a culture that believes in giving you the training, opportunities and creative freedom to make things better. Whenever you join, however long you stay, the exceptional EY experience lasts a lifetime. And with a commitment to hiring and developing the most passionate people, we'll make our ambition to be the best employer by 2020 a reality.

If you can confidently demonstrate that you meet the criteria above, please contact us as soon as possible.

Join us in building a better working world. Apply today.


See if you are a match!

See how well your resume matches up to this job - upload your resume now.

resumetriaasssdfel.jp… Change Resume
Find your dream job anywhere
with the LiveCareer app.
Download the
LiveCareer app and find
your dream job anywhere
lc_ad

Boost your job search productivity with our
free Chrome Extension!

lc_apply_tool GET EXTENSION

Similar Jobs

Want to see jobs matched to your resume? Upload One Now! Remove
Advisory Senior Consultant ...

Ernst & Young LLP

Posted Yesterday

VIEW JOBS 8/13/2018 12:00:00 AM 2018-11-11T00:00 . The opportunity You'll work alongside respected industry professionals, learning about and using the latest tools and techniques to identify and overcome some of the most relevant and pressing security issues in the world. It's a highly specialized area, where you'll learn highly sought after technical skills, all while developing your relationship management abilities – often by working directly on-site with our clients. What to expect In a rapidly changing IT environment, clients from all industries look to us for trusted solutions for their increasingly complex risks and vulnerabilities. As a member of our Application Security team you'll be right at the heart of that goal, helping clients gain insight and context to their cyber threats and assessing, improving, and building security solutions in order to mitigate these threats. You'll get to use your technical and business skills in order to help us drive this mission and have an impact on cyber security at a global level. You'll work alongside respected industry professionals, learning about and using the latest tools and techniques to identify and overcome some of the most relevant and pressing security issues in the world. It's a highly specialized area, where you'll learn highly sought after technical skills, all while developing your relationship management abilities – often by working directly on-site with our clients. Our security professionals possess diverse industry knowledge, along with unique technical expertise and specialized skills. The team stays highly relevant by researching and discovering the newest security vulnerabilities, attending and speaking at top security conferences around the world, and sharing knowledge on a variety of topics with key industry groups. The team frequently provides thought leadership and information exchanges through traditional and less conventional communications channels such as speaking at conferences, publishing white papers and blogging. Our professionals work together in planning, pursuing, delivering and managing engagements to assess, improve, build, and in some cases operate integrated security solutions for our clients. Your key responsibilities * Perform penetration testing which includes internet, intranet, wireless, web application, social engineering and physical penetration testing. * Execute red team scenarios to highlight gaps impacting organizations security postures. * Ability to work both independently as well as lead a team of technical testers on penetration testing and red team engagements. * Provide technical leadership and advise to junior team members on attack and penetration test engagements. * Identify and exploit security vulnerabilities in a wide array of systems in a variety of situations. * Perform in-depth analysis of penetration testing results and create report that describes findings, exploitation procedures, risks and recommendations. * Execute penetration testing projects using the established methodology, tools and rules of engagements. * Convey complex technical security concepts to technical and non-technical audiences including executives. To qualify for the role you must have * A minimum of 3 years of work experience in penetration testing which includes internet, intranet, web application penetration tests, wireless, social engineering, and Red Team assessments. * Experience with manual attack and penetration testing. * Experience with scripting / programming skills (e.g., Python, PowerShell, Java, Perl etc). * Updated and familiarized with the latest exploits and security trends. * Experience to lead a technical team to conduct remote and on-site penetration testing within defined rules of engagement. * Familiarity to perform network penetration testing in stealth manner. * Any two of the following certifications: OSCP, OSWP, GPEN, GWAPT, OSCE, OSEE, GXPN. * A driver's license valid in the U.S * Willingness and ability to travel domestically and internationally to meet client needs. Estimated travel required up to 50%. What we look for We're interested in intellectually curious people with a genuine passion for cyber security. With your specialization in application security assessments and penetration testing, we'll turn to you to speak up with innovative new ideas that could make a lasting difference not only to us – but also to the industry as a whole. If you have the confidence in both your presentation and technical abilities to grow into a leading expert here, this is the role for you. What working at EY offers We offer a competitive compensation package where you'll be rewarded based on your performance and recognized for the value you bring to our business. In addition, our Total Rewards package includes medical and dental coverage, both pension and 401(k) plans, a minimum of three weeks of vacation plus 10 observed holidays and three paid personal days, and a range of programs and benefits designed to support your physical, financial and social wellbeing. Plus, we offer * Support, coaching and feedback from some of the most engaging colleagues around * Opportunities to develop new skills and progress your career * The freedom and flexibility to handle your role in a way that's right for you * A rewards package tailored to your unique needs About EY As a global leader in assurance, tax, transaction and advisory services, we're using the finance products, expertise and systems we've developed to build a better working world. That starts with a culture that believes in giving you the training, opportunities and creative freedom to make things better. Whenever you join, however long you stay, the exceptional EY experience lasts a lifetime. And with a commitment to hiring and developing the most passionate people, we'll make our ambition to be the best employer by 2020 a reality. If you can confidently demonstrate that you meet the criteria above, please contact us as soon as possible. Join us in building a better working world. Apply today. Ernst & Young LLP Seattle WA

Advisory Senior Consultant Cybersecurity Orchestration Engineer

Ernst & Young LLP