You'll work alongside respected industry professionals, learning about and using the latest tools and techniques to identify and overcome some of the most relevant and pressing security issues in the world. It's a highly specialized area, where you'll learn highly sought after technical skills, all while developing your relationship management abilities often by working directly on-site with our clients.
What to expect
Cyber Orchestration Engineers are needed to review procedures relating to current threat management and response processes as well as design automated actions to accelerate the triage, validation, containment, eradication and remediation of security incidents. You must be familiar with leading security tools and industry standard scripting languages. Automation and Orchestration engineers will create, maintain and manage a library of automated playbooks for common information security threats and customize these plans for client specific environments.
Your key responsibilities
Perform regular updates of existing Playbooks based on requirements provided by operations teams for changes in the Threat Landscape or a client's security controls
Drive continuous improvement of existing playbooks to address new threats and tactics employed by attackers
Manage an inventory of integrations that enable broader playbook creation
Produce new playbooks as threats change and new security tools and controls emerge in the market place based in requirements from operations teams
Perform regular reporting on the usage of playbooks and the effectiveness of a playbook to conclusion
Develop logic that bridges connectors, tasks and human input to accelerate the response to escalated security incidents
Develop connectors that collect enrich and leverage data from third party and proprietary services
Participate in client meetings to further optimize their specific operational plan based on our best practices and operational learnings
To qualify for the role you must have
A bachelor's degree in a related field and approximately 3-5 years of related work experience; or a graduate degree and approximately 2 years of related work experience
Proven background in creating automation tools, automating web based services (
Excellent analytical and problem solving abilities
Ability to travel occasionally for client-site visits, team on-sites and strategic planning
A driver's license valid in the U.S
Ideally, you'll also have
Familiarity with *nix-based command line tools
Familiarity with REST API best practices and usage
Familiarity and experience with security orchestration and automation tools like Phantom, Swimlane and ServiceNow Secops
Familiarity with common open source research frameworks
CISSP, CISM, CISA, CIPT, CIPM, CRISC or other relevant certification desired
What we look for
We're interested in intellectually curious people with a genuine passion for cyber security. With your broad exposure across Cyber Threat Management, we'll turn to you to speak up with innovative new ideas that could make a lasting difference not only to us but also to the industry as a whole. If you have the confidence in both your presentation and technical abilities to grow into a leading expert here, this is the role for you.
What working at EY offers
We offer a competitive compensation package where you'll be rewarded based on your performance and recognized for the value you bring to our business. In addition, our Total Rewards package includes medical and dental coverage, both pension and 401(k) plans, a minimum of three weeks of vacation plus 10 observed holidays and three paid personal days, and a range of programs and benefits designed to support your physical, financial and social wellbeing.
Plus, we offer
Support, coaching and feedback from some of the most engaging colleagues around
Opportunities to develop new skills and progress your career
The freedom and flexibility to handle your role in a way that's right for you
A rewards package tailored to your unique needs
As a global leader in assurance, tax, transaction and advisory services, we're using the finance products, expertise and systems we've developed to build a better working world. That starts with a culture that believes in giving you the training, opportunities and creative freedom to make things better. Whenever you join, however long you stay, the exceptional EY experience lasts a lifetime. And with a commitment to hiring and developing the most passionate people, we'll make our ambition to be the best employer by 2020 a reality.
If you can confidently demonstrate that you meet the criteria above, please contact us as soon as possible.
Join us in building a better working world. Apply today.
Ernst & Young LLP