Cybersecurity - Senior Consultant - Application Security - Devsecops

Ernst & Young LLP Detroit , MI 48222

Posted 3 days ago

Job Description:

Work with clients to analyze, evaluate, and enhance the effectiveness of their application security posture at procedural and technological levels. Use knowledge of current application security best practices and industry trends to lead the implementation of application security solutions for our clients and support the clients in their desire to protect their business.

Provide technical leadership with respect to the development and execution of our key application security service offerings, including: conducting assessments of applications (web, cloud, mobile) using range of manual and automated penetration testing and source code review techniques; performing security architecture reviews of applications in design and production phases; identifying potential threats and attacks to applications systems through threat modeling; identifying security recommendations and aligning them to appropriate risk ranking systems; evaluating, developing, enhancing and/or running application security programs for our clients; conducting the above with a specific focus on DevSecOps.

Participate in market facing activities and developing thought leadership materials. Use current technology and tools to enhance the effectiveness of deliverables and services. Play an active role in counseling and mentoring junior Cybersecurity team members.

Requirements

Bachelor's degree in Computer Science, Information Systems, Engineering, or related field and 5 years of related work experience, or a Master's degree in Computer Science, Information Systems, Engineering, or a related field and 4 years of related work experience.

Must have 4 years of work experience evaluating DevSecOps programs to determine how to embed security activities within, and working with clients to evolve their development programs to embed application security tooling and processes.

Must have 3 years of experience working in Agile development, application security, or DevOps role, with experience in the following technologies:

  • Containers (Docker, Kubernetes, or similar)

  • Infrastructure as code (Vagrant, Docker, Ansible, Chef, Terraform, or similar)

  • Continuous integration (Jenkins, Bamboo, Hudson, or similar.)

  • Integration of Security testing tools into pipeline

  • Defect tracking (Jira, Bugzilla, ServiceNow , or similar.)

  • Source code management (GitLab, GitHub, BitBucket, or similar.)

  • QA Testing tools (nUnit, jUnit, Selenium, Cucumber, or similar.)

  • Application security testing tools (SAST, DAST, IAST, OSA, or similar.)

  • Various *nix distributions

  • Cloud environment (AWS, Azure,or similar)

Must have 2 years of experience in all of the following:

  • Developing enterprise applications or scripts (writing code)

  • Demonstrated ability to learn and adapt to different CI/CD systems and leverage them for automation as needed

  • Performing manual application penetration testing

  • Performing manual security code reviews

Must have 3 years of experience leading small projects teams on individual engagements.

Must have 2 years of experience supporting recruiting and onboarding new team members.

Must have 1 year of experience managing a large-scale project or program.

Must have 1 year of experience contributing to the development of new business, defining solutions or clients and/or leading pursuits.

Must hold or obtain within one year of hire or promotion one of the following certifications: CISM, GIAC, Open Group Certified Architect, CEH, CISSP.

Requires international and domestic travel up to 80% of the time to meet client needs.

What we look for

We're interested in intellectually curious people with a genuine passion for cybersecurity. With your broad exposure across Cyber Transformation, we'll turn to you to speak up with innovative ideas that could make a lasting difference not only to us - but also to the industry as a whole. If you have the confidence in both your presentation and technical abilities to grow into a leading expert here, this is the role for you.

What working at EY offers

We offer a competitive compensation package where you'll be rewarded based on your performance and recognized for the value you bring to our business. In addition, our Total Rewards package includes medical and dental coverage, both pension and 401(k) plans, a minimum of three weeks of vacation plus 10 observed holidays and three paid personal days, and a range of programs and benefits designed to support your physical, financial and social wellbeing.

Plus, we offer

  • Support, coaching and feedback from some of the most engaging colleagues around

  • Opportunities to develop new skills and progress your career

  • The freedom and flexibility to handle your role in a way that's right for you

  • A rewards package tailored to your unique needs

About EY

As a global leader in assurance, tax, transaction and advisory services, we're using the finance products, expertise and systems we've developed to build a better working world. That starts with a culture that believes in giving you the training, opportunities and creative freedom to make things better. Whenever you join, however long you stay, the exceptional EY experience lasts a lifetime. And with a commitment to hiring and developing the most passionate people, we'll make our ambition to be the best employer by 2020 a reality.

If you can confidently demonstrate that you meet the criteria above, please contact us as soon as possible.

Join us in building a better working world. Apply today.

EY provides equal employment opportunities to applicants and employees without regard to race, color, religion, age, sex, sexual orientation, gender identity/expression, national origin, protected veteran status, disability status, or any other legally protected basis, in accordance with applicable law.

icon no score

See how you match
to the job

Find your dream job anywhere
with the LiveCareer app.
Mobile App Icon
Download the
LiveCareer app and find
your dream job anywhere
App Store Icon Google Play Icon
lc_ad

Boost your job search productivity with our
free Chrome Extension!

lc_apply_tool GET EXTENSION

Similar Jobs

Want to see jobs matched to your resume? Upload One Now! Remove
Senior Application Sales Executive Cybersecurity

At&T

Posted 2 days ago

VIEW JOBS 1/22/2021 12:00:00 AM 2021-04-22T00:00 AT&T is currently looking for a Cybersecurity Sales Executive looking to make an impact with their customers. We're growing our team and looking to add a sales hunter who is driven to help our customers anticipate, act on threats, and protect their businesses. You are passionate about Cybersecurity, customer-focused, engaging, analytical, well-organized, and enjoy a competitive team and effort driven work environment. This role is focused on revenue growth, expansion, and being the end-to-end cyber expert for our customers. If you're looking for a career with a great team, let's talk! What we are looking to add to our team: * You will define and execute a sales strategy for your assigned sales center * Partner & enable other team members within the organization to achieve sales targets * Present AT&T Cybersecurity solutions and run full sales cycle from prospecting net new to negotiating terms and pricing, to closing qualified opportunities in your territory * Strong account planning and execution to deliver on revenue accountability to C-level prospective clients and resellers * Consistently meet and exceed monthly/quarterly/annual quota objectives * Organize, prepare, track, and measure daily activity to forecast metrics utilizing Salesforce * A natural at developing relationships and identifying opportunities and making them impactful We want to know you better if: * 7+ years of strong quota attainment in a direct or channel B2B software or cybersecurity sales * Proven experience selling in a matrixed enterprise environment & delivering results * Consultative sales and/or value selling to engage and develop new accounts, from business proposals to handling RFP's from customers * A closer with a track record of effective negotiation of procurement, licensing, and professional services contracts in a variety of organizational structures * You excel in a high touch sales environment, can navigate high-level product demonstrations, and enjoy selling a diverse portfolio of products and services * Expert in forecasting and documenting within Salesforce or other CRM systems About Us: We are AT&T Cybersecurity! Our Edge-to-Edge technologies provide phenomenal threat intelligence, collaborative defense, security without the seams, and solutions that fit our customer's business. Our unique, collaborative approach integrates best-of-breed technologies with unrivaled network visibility and actionable threat intelligence from AT&T Alien Labs researchers, Security Operations Center analysts, and machine learning - helping to enable our customers around the globe to anticipate and act on threats to protect their business. The Perks: * Be part of a dynamic growing company that offers a meaningful and fun work environment * Comprehensive Total Rewards Package (Salary + Bonus incentives) * Comprehensive PPO/HMO Medical/Dental/Vision * Paid: PTO, Sick Leave, Maternity/Paternity Leave, Service Day * Adoption & Surrogacy programs * 401k + 100% matching up to 6% * Educational opportunities & Tuition Reimbursement * AT&T service discounts * AT&T service referral programs * Numerous industry awards and is recognized as a visionary in the industry * Strong year-over-year growth and a rapidly-growing customer base At AT&T we celebrate and support the differences that make you, you. We're proud to be an equal opportunity workplace and employer. We truly believe that diversity makes us better! Job ID 2105588-2 Date posted 01/21/2021 At&T Detroit MI

Cybersecurity - Senior Consultant - Application Security - Devsecops

Ernst & Young LLP