Ernst& Young Advisory Services Sdn Bhd
Location: all cities,AR, USA
Date: 2024-12-12T08:28:42Z
Job Description:
Security Monitoring - SOAR Support Engineer - EY Global Delivery Services Location: CABA Other locations: Primary Location Only Date: Sep 7, 2024 Requisition ID: 1530151 Security Monitoring - SOAR Support Engineer EY Technology Today's world is fuelled by vast amounts of information, which means that data is even more valuable than ever before. Protecting data and information systems is central to doing business, and everyone in EY Information Security has a critical role to play. Join a global team of almost 950 people who collaborate to support the business of EY by protecting EY and client information assets! Our Information Security professionals enable EY to work securely and deliver secure products and services, as well as detect and quickly respond to security events as they happen. Together, the efforts of our dedicated team help protect the EY brand and build client trust. Within Information Security we blend risk strategy, digital identity, cyber defense, application security and technology solutions as we consider the entire security lifecycle. You will join a team of hardworking, security-focused individuals dedicated to supporting, protecting, and enabling the business through innovative, secure solutions that provide speed to market and business value. The role of the SOAR Support Engineer is to ensure the effective operation of Information Security technologies, including providing operational and Level 3 support. Responsibilities include managing daily incidents, maintaining, and supporting systems, and conducting proactive analysis to prevent future issues. These technologies may be located on-premises, with vendors, or in cloud environments. The Engineer will also be responsible for coordinating upgrades, standardizing processes, and automating procedures for Information Security technologies. The position requires knowledge of ITIL service management practices, as well as managing changes, releases, and upgrades in different environments. Additionally, the Engineer will need to be available on-call and work during weekends and off-hours to ensure the systems operate smoothly. Your key Responsibilities Improve existing security solutions and services in use by partnering with Security Architecture, STS Service Owner, and Security Engineering. Drives automation and innovation across the security solutions supported. Troubleshoot, diagnose, and analyze incidents related to Information Security technologies. Identify the root cause of incidents, whether it be configuration or a defect. Ensure that incidents are resolved in a timely and efficient manner and that steps are taken to prevent future problems. Work with various technical teams to develop corrective actions or workarounds to resolve incidents. Develop implementation plans for complex change requests, evaluating risks to system availability, business dependencies, and security event visibility. Respond to automated alerts on system health using sound analytical and troubleshooting methods. Conduct routine maintenance and monitoring of security technologies and report on their status. Communicate operational support issues to executives and senior management. Upgrade security applications to the latest versions, which involves testing, validation, compatibility, and addressing security vulnerabilities. Recommend and implement improvements to system performance and uptime for security applications and products. Document procedures for responding to alerts and drive the creation of automated restoration steps. Drive automation of redundant activities to improve support efficiency. Flexible to work out of regular office hours to accommodate the team and organizational calls and meetings. Weekend or late-night work may occur during the project and early life cycle support phases. No direct supervisory responsibilities, however, Technical Leadership required within assigned services and solutions. Skills and Attributes for Success We are seeking candidates who possess security experience in implementing and supporting solutions within a large enterprise environment. To be considered for the position, you must have functional, technical, and delivery experience in implementing both Cloud and On-Premises SOAR technologies. Technical knowledge in supporting SOAR solutions within a large enterprise Experience working with Cortex XSOAR, Cortex XSOAR Engines Knowledge of data retention options within Cortex XSOAR Platform Knowledge of Cortex XSOAR RBAC design and configuration leveraging SAML Experience integrating tools with multi-Cloud solutions Experience working with various Rest-API services, such as, Microsoft Sentinel API, Microsoft Graph APIs Experience with Cortex XSOAR as a SaaS Solution, a plus Project management experience, including tracking timelines and performing tasks within project deadlines. Detail-oriented and organized Ability to enhance applications for improved performance and stability, including enhanced monitoring and automation. Knowledge of ITIL to drive compliance in Incident, Problem, and Change processes. Communicate fluently in English, both written and verbal and able to communicate technical concepts effectively Excellent interpersonal communication and organizational skills and the ability to work within tight timeframes Rapidly learn new and emerging technologies with ability to rapidly define engineering standards To qualify for the role, you must have Approximately 5+ years of experience in Security, including demonstratable knowledge of SOAR technologies and working knowledge of SIEM platforms Several years' experience working in a large global virtual environment and enterprise environments at scale Technical knowledge of Cortex XSOAR Product. Technical knowledge of Python Scripting Language Technical knowledge in Azure, Google and/or AWS Cloud services, hybrid, and on-premises security solutions including Linux and Windows Operating Systems Experience with Kubernetes, specifically AKS and/or GKE Technical knowledge of interacting with APIs and scripting tools (Ansible, PowerShell, etc.) Technical knowledge of SaaS, IaaS, and PaaS solutions. Understanding of other technologies required to run a secure, enterprise level infrastructure that adhere to security best practices Experience in managing a 24x7 support organization, overseeing projects and products Excellent time management, organizational, and decision-making skills Ability to design and document processes, procedures, and security designs clearly and accurately for distribution to internal teams and customers Demonstrated experience in dealing with external vendors and suppliers in the security industry Ideally, you'll also have Bachelor's Degree in Computer Science, Engineering, IT, Mathematics or a related field, or equivalent work experience. ITIL v4 Foundation Certification Involvement in large-scale global IT deployments or cloud migrations At least one technical certification from a public cloud provider such as Azure, AWS, or Google, and security certifications from ISC2 (CISM, CISSP, CCSP, etc.) or SANS/GIAC (GSEC, GCLD, GPCS, etc.). Experience in project management, service introduction, and service readiness. What we offer As part of this role, you will work in a highly coordinated, globally diverse team with the opportunity and tools to grow, develop and drive your career forward. Here, you can combine global opportunity with flexible working. The EY benefits package goes above and beyond too, focusing on your physical, emotional, financial, and social well-being. Your recruiter can talk to you about the benefits available in your country. Here's a snapshot of what we offer: Continuous learning: You will develop the mindset and skills to navigate whatever comes next. Success as defined by you: We will provide the tools and flexibility, so you can make a significant impact, your way. Transformative leadership: We will give you the insights, coaching and confidence to be the leader the world needs. Diverse and inclusive culture: You will be accepted for who you are and empowered to use your voice to help others find theirs. We ensure that individuals with disabilities are provided reasonable accommodations to participate in the job application or interview process, to perform essential job functions and to receive other benefits and privileges of employment. Please contact us to request accommodations. EY is committed to being an inclusive employer, and we are happy to consider flexible working arrangements. We strive to achieve the right balance for our people, enabling us to deliver excellent client service whilst allowing you to build your career without sacrificing your personal priorities. While our client-facing professionals can be required to travel regularly, and at times be based at client sites, our flexible working arrangements can help you to achieve a lifestyle balance. If you can confidently demonstrate that you meet the criteria above, please contact us as soon as possible. #J-18808-Ljbffr
Apply Now!