Cybersecurity & Privacy - Engineering jobs at Ey in United States, Dallas

Your key responsibilities

• Ensure system reliability, stability and performance by maintaining service-level objectives (SLOs) and minimizing downtime and incidents.
• Collaborate with internal teams to assess system health, stability and resilience, providing architectural and design recommendations for reliability.
• Lead incident management and post-incident reviews, diagnosing issues, deploying fixes and implementing preventive measures.
• Drive automation of operational tasks, including deployments, monitoring, scaling and system recovery, to improve efficiency and reduce manual intervention.
• Define and track key performance indicators (KPIs) such as availability, latency and error rates to optimize system performance and inform decision-making.
• Plan and execute chaos engineering experiments to test system resilience and coordinate performance testing for reliability improvements.
• Ensure alignment between service-level indicators (SLIs) and service-level objectives (SLOs) across the product family.
• Develop and maintain product-level runbooks for incident response, collaborating with SRE teams to ensure effective recovery processes.
• Provide leadership in tool selection and best practices for site reliability engineering (SRE), making final decisions on tools, libraries and standards.
• Work closely with development teams to improve software reliability, scalability and resilience by offering feedback on design and architecture.
• Lead troubleshooting and triage efforts during user-impacting incidents, ensuring swift resolution and minimal disruption.
• Participate in special projects and continuous improvement initiatives, supporting long-term reliability and scalability goals.

Skills and attributes for success

• A team player with strong analytical, communication and interpersonal skills
• Constantly updating yourself about new technologies in the market
• A winning personality and the ability to become a trusted advisor to the stakeholders

To qualify for the role, you must have

• Minimum 8 years of related experience, with at least 5 years in software development.
• Bachelor’s degree (B.E./B.Tech) in Computer Science or IT, or Bachelor’s in Computer Applications (BCA) from a recognized institution.
• Expertise in Site Reliability Engineering (SRE), DevOps, and system reliability, ensuring high availability and performance.
• Strong experience in mobile platform reliability (Android, iOS), including performance monitoring and optimization.
• Proficiency in observability and resiliency tools such as Splunk, Honeycomb, Datadog, Prometheus, or Grafana.
• Hands-on experience with cloud platforms (AWS, Azure, GCP) and containerization/orchestration tools like Kubernetes, Docker, ECS, or Fargate.
• Solid understanding of automation, Infrastructure-as-Code (IaC), and configuration management using Terraform, Ansible, or CloudFormation.
• Strong programming and scripting skills in Python, Go, Bash, or Java, with experience in automating operational tasks.
• Experience with CI/CD pipelines, deployment automation, and version control tools like GitHub, Bitbucket, Jenkins, or Bamboo.
• Deep knowledge of incident management, root cause analysis, and post-incident reviews, focusing on continuous improvement.

Ideally, you’ll also have

• Strong verbal and written communication, facilitation, relationship-building, presentation and negotiation skills.
• Be highly flexible, adaptable, and creative.
• Comfortable interacting with senior executives (within the firm and at the client)

What we look for

• Strong teamwork, work ethic, product mindset, client centricity and a relentless commitment to EY values.

We offer a competitive remuneration package where you’ll be rewarded for your individual and team performance. Our comprehensive Total Rewards package includes support for flexible working and career development, and with FlexEY you can select benefits that suit your needs, covering holidays, health and well-being, insurance, savings and a wide range of discounts, offers and promotions. Plus, we offer:

• Support, coaching and feedback from some of the most engaging colleagues around
• Opportunities to develop new skills and progress your career
• The freedom and flexibility to handle your role in a way that’s right for you

Key Responsibilities:

1. Leadership and Management:

1. Lead and manage the Endpoint Security Engineering team, ensuring effective design, implementation, and maintenance of endpoint security solutions.

1. Oversee the operations of Microsoft Purview, Microsoft Defender for Office, Vera Information Rights Management, and DLP Exceptions Management.

1. Endpoint Security Engineering:

1. Develop and implement endpoint security strategies and solutions to protect organizational assets from threats.

1. Ensure the configuration and optimization of endpoint security tools to enhance protection against malware, data breaches, and other security incidents.

1. Policy Development and Compliance:

1. Establish, maintain, and enforce data governance policies and procedures related to information protection and compliance.

1. Oversee the development and management of DLP policies to prevent data loss and ensure compliance with regulatory requirements.

1. Risk Management and Incident Response:

1. Conduct risk assessments and audits to identify vulnerabilities and ensure compliance with internal policies and external regulations.

1. Lead the investigation and resolution of security incidents related to endpoint security and information protection.

1. User Training and Awareness:

1. Develop and deliver training programs to educate employees on endpoint security practices, information protection policies, and the use of relevant tools.

1. Foster a culture of security awareness and compliance throughout the organization.

1. Collaboration and Communication:

1. Work closely with IT, security, and business units to integrate endpoint security and information protection solutions with existing systems and workflows.

1. Communicate effectively with stakeholders to report on security metrics, incidents, and recommendations for improvement.

1. Continuous Improvement:

1. Stay updated on the latest trends, technologies, and best practices in endpoint security and information protection.

1. Identify opportunities for process improvements and automation within endpoint security engineering and information protection operations.

Qualifications:

• Bachelor’s degree in Computer Science, Information Technology, Cybersecurity, or a related field.

• Proven experience in managing endpoint security engineering and information protection operations, specifically with Microsoft Purview, Microsoft Defender for Office, Vera Information Rights Management, and DLP.

• Strong understanding of endpoint security principles, data governance, compliance frameworks, and information security best practices.

• Excellent leadership, project management, and organizational skills.

• Strong analytical and problem-solving abilities.

• Relevant certifications (e.g., Certified Information Systems Security Professional (CISSP), Certified Information Privacy Professional (CIPP), Microsoft Certified: Security, Compliance, and Identity Fundamentals) are a plus.

Preferred Skills:

• Experience with risk management and compliance tools.

• Familiarity with data protection regulations (e.g., GDPR, HIPAA) and industry standards.

• Knowledge of cloud security concepts and technologies.

Work Environment:

This position may require occasional after-hours support and on-call availability. The Manager of Endpoint Security Engineering and Information Protection will work in a collaborative team environment, contributing to the overall security and compliance posture of the organization.

Cyber threats, social media, massive data storage, privacy requirements and continuity of the business as usual require heavy information security measures. As an information security specialist, you will lead the implementation of security solutions for our clients and support the clients in their desire to protect the business. You will belong to an international connected team of specialists helping our clients with their most complex information security needs and contributing toward their business resilience. You will be working with our Advanced Security Centers to access the most sophisticated tools available to fight against cybercrime.

Your key responsibilities

• Our security professionals possess diverse industry knowledge, along with unique technical expertise and specialized skills. The team stays highly relevant by researching and discovering the newest security vulnerabilities, attending and speaking at top security conferences around the world, and sharing knowledge on a variety of topics with key industry groups. The team frequently provides thought leadership and information exchanges through traditional and less conventional communications channels such as speaking at conferences, publishing white papers and blogging.
• Our Vulnerability Management team aims to build a full-service vulnerability management offering providing clients with tailored solutions to deploy and run vulnerability management programs. As a Senior Consultant, you will serve on client engagement teams to assist in delivering the full range of services and work with EY Cybersecurity leadership to develop the firm’s vulnerability management service offering.

Skills and attributes for success

• Developing rapport with others by demonstrating an understanding of their concerns, needs and issues, and focusing on developing an internal network of relationships that can provide advice and support. Consistently deliver quality client services
• Monitor progress, manage risk, and ensure key stakeholders are kept informed about progress and expected outcomes.
• Stay abreast of current business and industry trends relevant to the client's business and cybersecurity.
• Assist engagement teams in evaluating client vulnerability management programs across people, process, and technology.
• Work with engagement teams to own distinct portions of vulnerability management solutions tailored to client environments.
• Perform and control vulnerability assessments to identify control weaknesses and assess the effectiveness of existing controls.
• Familiarity with security and risk standards including ISO 27001- 2, PCI DSS, NIST, ITIL, COBIT, CVSSv4, EPSS, KEV, MITRE ATT&CK.
• Hands on operational experience with vulnerability management scanning tools (e.g. Qualys, Rapid7, Tenable, CrowdStrike, Tanium, Defender) including the ability to deploy, configure, and run these tools.
• Hands on operational experience with vulnerability management prioritization platforms (e.g. SNOW VR, Kenna/Cisco VM, NopSec, Nucleus, Vulcan) including the ability to deploy, configure, and run these tools.
• Familiarity with patch management tools (e.g. Tanium, BigFix, Ivanti, ManageEngine).
• Ability to evaluate vulnerability management tools and assist with vendor selection.

• Ability to conduct root cause analysis against vulnerabilities and determine feasible technical solutions.
• Ability to evaluate exploitability and impact risk vulnerabilities have, tailored to the organization.

• Knowledge of general cybersecurity concepts and methods including, but not limited to, vulnerability management, privacy, incident response, governance, risk and compliance, enterprise security strategies, and architecture.
• Ability to assist in the project management of cybersecurity projects including development of project charters, project plans, and status updates.

To qualify for the role, you must have

• Bachelor’s degree in the field of Computer Science, Information Systems, Engineering, Business or related field and a minimum of 4 years of related work experience; or a master's degree and 3 years of related work experience
• Familiarity with security and risk standards including ISO 27001-2, PCI DSS, NIST, ITIL, COBIT, CVSSv4, EPSS, KEV, MITRE ATT&CK
• Hands on operational experience with vulnerability management tools (e.g. Qualys, Tenable, Rapid7), including the ability to architect, deploy, configure and operate
• Understanding of various operating systems (Windows, Unix, MacOS etc.); cloud concepts (secure build images, ephemeral workloads, cloud patching etc.); knowledge of networking fundamentals
• Deep expertise in writing and running queries to prepare metrics reports and dashboards
• Good understanding of scanning tool APIs to architect integrations with other tools
• Ability to report issues clearly and succinctly and adapt communication styles to demonstrate vulnerability severity to client technical stakeholders and leadership
• Knowledge of general cybersecurity concepts and methods including, but not limited to secure configuration management, data protection and privacy, security monitoring, incident response, governance, risk and compliance, patch management, enterprise security strategies and architecture
• Ability to assist in the project management of cybersecurity projects including development of project charters, project plans and status updates
• Strong written and verbal communication skills with demonstrated ability to interact with senior management, technical SMEs, business partners and influence decisions
• Ability to examine issues both strategically and analytically.
• A valid driver's license in the US and a valid passport required; willingness and ability to travel domestically and internationally to meet client needs

Ideally, you’ll also have

• Prior consulting experience
• Experience working in OT environments
• CISSP or other relevant cybersecurity certification
• Experience working in Cloud/Container environments
• Penetration Testing experience
• Application Security experience
• Automation/scripting (e.g. Python) experience
• Financial services sector regulatory experience
• Attack Surface Management experience

Cyber threats, social media, massive data storage, privacy requirements and continuity of the business as usual require heavy information security measures. As an information security specialist, you will lead the implementation of security solutions for our clients and support the clients in their desire to protect the business. You will belong to an international connected team of specialists helping our clients with their most complex information security needs and contributing toward their business resilience. You will be working with our Advanced Security Centers to access the most sophisticated tools available to fight against cybercrime.

Your key responsibilities

• Our security professionals possess diverse industry knowledge, along with unique technical expertise and specialized skills. The team stays highly relevant by researching and discovering the newest security vulnerabilities, attending and speaking at top security conferences around the world, and sharing knowledge on a variety of topics with key industry groups. The team frequently provides thought leadership and information exchanges through traditional and less conventional communications channels such as speaking at conferences, publishing white papers and blogging.
• Our Vulnerability Management team aims to build a full-service vulnerability management offering providing clients with tailored solutions to deploy and run vulnerability management programs. As a Manager Consultant, you will serve on client engagement teams to assist in delivering the full range of services and work with EY Cybersecurity leadership to develop the firm’s vulnerability management service offering.

Skills and attributes for success

• Developing rapport with others by demonstrating an understanding of their concerns, needs and issues, and focusing on developing an internal network of relationships that can provide advice and support. Consistently deliver quality client services
• Monitor progress, manage risk, and ensure key stakeholders are kept informed about progress and expected outcomes.
• Stay abreast of current business and industry trends relevant to the client's business and cybersecurity.
• Assist engagement teams in evaluating client vulnerability management programs across people, process, and technology.
• Work with engagement teams to own distinct portions of vulnerability management solutions tailored to client environments.
• Perform and control vulnerability assessments to identify control weaknesses and assess the effectiveness of existing controls.
• Familiarity with security and risk standards including ISO 27001- 2, PCI DSS, NIST, ITIL, COBIT, CVSSv4, EPSS, KEV, MITRE ATT&CK.
• Hands on operational experience with vulnerability management scanning tools (e.g. Qualys, Rapid7, Tenable, CrowdStrike, Tanium, Defender) including the ability to deploy, configure, and run these tools.
• Hands on operational experience with vulnerability management prioritization platforms (e.g. SNOW VR, Kenna/Cisco VM, NopSec, Nucleus, Vulcan) including the ability to deploy, configure, and run these tools.
• Familiarity with patch management tools (e.g. Tanium, BigFix, Ivanti, ManageEngine).
• Ability to evaluate vulnerability management tools and assist with vendor selection.
• Ability to conduct root cause analysis against vulnerabilities and determine feasible technical solutions.
• Ability to evaluate exploitability and impact risk vulnerabilities have, tailored to the organization.
• Knowledge of general cybersecurity concepts and methods including, but not limited to, vulnerability management, privacy, incident response, governance, risk and compliance, enterprise security strategies, and architecture.
• Ability to assist in the project management of cybersecurity projects including development of project charters, project plans, and status updates.

To qualify for the role, you must have

• Bachelor’s degree in the field of Computer Science, Information Systems, Engineering, Business or related field and a minimum of 6 years of related work experience; or a master's degree and 5 years of related work experience
• CISSP or other relevant cybersecurity certification
• Strong understanding of vulnerability management lifecycle and governance
• Familiarity with security and risk standards including ISO 27001-2, PCI DSS, NIST, ITIL, COBIT, CVSSv4, EPSS, KEV, MITRE ATT&CK
• Hands on operational experience with vulnerability management tools (e.g. Qualys, Tenable, Rapid7), including the ability to architect, deploy, configure and operate
• Understanding of various operating systems (Windows, Unix, MacOS etc.); cloud concepts (secure build images, ephemeral workloads, cloud patching etc.); knowledge of networking fundamentals
• Deep expertise in writing and running queries to prepare metrics reports and dashboards
• Good understanding of scanning tool APIs to architect integrations with other tools
• Ability to report issues clearly and succinctly and adapt communication styles to demonstrate vulnerability severity to client technical stakeholders and leadership
• Knowledge of general cybersecurity concepts and methods including, but not limited to secure configuration management, data protection and privacy, security monitoring, incident response, governance, risk and compliance, patch management, enterprise security strategies and architecture
• Ability to assist in the project management of cybersecurity projects including development of project charters, project plans and status updates
• Strong written and verbal communication skills with demonstrated ability to interact with senior management, technical SMEs, business partners and influence decisions
• Ability to examine issues both strategically and analytically.
• A valid driver's license in the US and a valid passport required; willingness and ability to travel domestically and internationally to meet client needs

Ideally, you’ll also have

• Prior consulting experience
• Experience working in OT environments
• Experience working in Cloud/Container environments
• Penetration Testing experience
• Application Security experience
• Automation/scripting (e.g. Python) experience
• Financial services sector regulatory experience
• Attack Surface Management experience

In a rapidly changing OT environment, clients from all industries look to us for trusted solutions for their increasingly complex risks and vulnerabilities. As a part of our Cybersecurity team, you’ll be right at the heart of that goal, helping clients gain insight and context to their complex operational environments and assessing, designing, and building infrastructure, processes and policies to meet the client’s OT cybersecurity needs. You’ll get to use your technical and business skills to help us drive this mission and have an impact on cybersecurity at a global level.

Join our dynamic team as a Senior Cybersecurity Engineer, where you will play a pivotal role in designing, developing, and managing cutting-edge cybersecurity solutions. Your expertise will be crucial in protecting sensitive data and ensuring our organization's resilience against external threats and breaches. Embrace the challenge of advancing our cybersecurity processes and safeguarding our digital future. You will be responsible for leading projects or elements of multiple client engagements including service delivery, business development, and related activities. You’ll work alongside respected industry professionals, learning about and using the latest tools and techniques to identify and overcome some of the most relevant and pressing security issues in the world.

Your key responsibilities

As a Senior Cybersecurity Engineer, you will be at the forefront of delivering innovative cybersecurity activities, utilizing your judgment and methodologies to formulate effective recommendations and assisting our clients in aligning security management strategy with business goals. You will navigate through complex challenges, ensuring the success of our projects while coordinating with junior team members to achieve collective goals. With a focus on OT cybersecurity and network security, you will serve in a key role of leading technical discussions, guiding the development of strategic and tactical security architecture efforts, designing and driving implementations to completion, and function overall as a technical security leader for traditional solutions and evolving risk-based security architectures. Your responsibilities will include:

• Leading the design and execution of cybersecurity deliverables

• Proactively participating in client sessions and potentially leading workstreams

• Assisting in identifying service opportunities and contributing to RFPs

• Monitoring project statuses, resource plans, and budgets

Skills and attributes for success

To thrive in this role, you will need a strong foundation in both technical and business skills, with the ability to drive outcomes and communicate effectively with clients. Your success will be built upon:

• Knowledge of the current security environment and industry trends to identify engagement and client service issues
• Effective communication of information to the engagement team and client management through written correspondence and verbal presentations
• Cross segment experienced in delivering solutions
  • O&G, P&U, Pharma, Manufacturing, BMS, Water WW, Pulp and Paper, Mining, etc
• Team Leaders- lead cross segment, cross competency teams
• Client advocates with genuine experience in the OT/IoT market
• Knowledge of good industry practice in tiered security architecture design
• Work closely with engagement manager to co-lead and own multiple parts of the engagement delivery
• Ability to consistently deliver quality client services by driving high-quality work products within expected timeframes and on budget
• Ability to document reference architectures, network schematics, blueprints, patterns, and other types of architectural documentation
• A deep understanding of cybersecurity and privacy principles

• Proficiency in system administration and threat hunting

• Strategic problem-solving and critical thinking abilities

To qualify for the role, you must have

• A Bachelor’s degree in a relevant field and at least 2 to 4 years of relevant professional experience

• Proficiency in change management

• Coding skills and technical writing expertise

• Client communication and digital fluency
  • Operational industry experience in the field/plant
  • Working knowledge of NIST CSF and its application in OT environments
  • Have performed an OT Cybersecurity assessment utilizing an industry accepted standard
  • Firewall review experience and knowledge of industrial centric protocols
  • General network security experience and working knowledge of white listing, AV, IDS/IPS, firewalls, SIEM, etc.
  • Experience in process definition, workflow design, and/or and process mapping
  • A valid driver's license in the US and a valid passport required; willingness and ability to travel internationally and a willingness to travel; travel is estimated at 40-60%

Ideally, you’ll also have

• A proven track record of delivering high-quality cybersecurity solutions

• The ability to mentor and guide junior team members

• A commitment to continuous professional development
  • Strong presentation and communication skills
  • Relevant security certifications (e.g., CISSP, CISM. GICSP)
  • Program management experience
  • Intimate knowledge of a relevant OT Cyber Framework such as NIST 800-82 or ISA62443

What we look for

Leadership and Management:

• Lead and manage the Endpoint Security Engineering team, ensuring effective design, implementation, and maintenance of endpoint security solutions.
• Oversee the operations of Microsoft Purview, Microsoft Defender for Office, Vera Information Rights Management, DLP Exceptions Management, and CyberArk.

Endpoint Security Engineering:

• Develop and implement endpoint security strategies and solutions to protect organizational assets from threats.
• Ensure the configuration and optimization of endpoint security tools, including EPM solutions, to enhance protection against malware, data breaches, and other security incidents.

Policy Development and Compliance:

• Establish, maintain, and enforce data governance policies and procedures related to information protection and compliance.
• Oversee the development and management of DLP policies to prevent data loss and ensure compliance with regulatory requirements.

Risk Management and Incident Response:

• Conduct risk assessments and audits to identify vulnerabilities and ensure compliance with internal policies and external regulations.
• Lead the investigation and resolution of security incidents related to endpoint security, CyberArk, and information protection.

User Training and Awareness:

• Develop and deliver training programs to educate employees on endpoint security practices, information protection policies, and the use of relevant tools, including CyberArk and EPM solutions.
• Foster a culture of security awareness and compliance throughout the organization.

Collaboration and Communication:

• Work closely with IT, security, and business units to integrate endpoint security and information protection solutions with existing systems and workflows.
• Communicate effectively with stakeholders to report on security metrics, incidents, and recommendations for improvement.

Continuous Improvement:

• Stay updated on the latest trends, technologies, and best practices in endpoint security and information protection.
• Identify opportunities for process improvements and automation within endpoint security engineering and information protection operations.

Qualifications:

• Bachelor’s degree in Computer Science, Information Technology, Cybersecurity, or a related field.
• Proven experience in managing endpoint security engineering and information protection operations, specifically with Microsoft Purview, Microsoft Defender for Office, Vera Information Rights Management, DLP, CyberArk, and EPM solutions.
• Strong understanding of endpoint security principles, data governance, compliance frameworks, and information security best practices.
• Excellent leadership, project management, and organizational skills.
• Strong analytical and problem-solving abilities.
• Relevant certifications (e.g., Certified Information Systems Security Professional (CISSP), Certified Information Privacy Professional (CIPP), Microsoft Certified: Security, Compliance, and Identity Fundamentals) are a plus.

Preferred Skills:

• Experience with risk management and compliance tools.
• Familiarity with data protection regulations (e.g., GDPR, HIPAA) and industry standards.
• Knowledge of cloud security concepts and technologies.

Work Environment:

This position may require occasional after-hours support and on-call availability. The Manager of Endpoint Security Engineering and Information Protection will work in a collaborative team environment, contributing to the overall security and compliance posture of the organization.

• Continuous learning: You’ll develop the mindset and skills to navigate whatever comes next.
• Success as defined by you: We’ll provide the tools and flexibility, so you can make a meaningful impact, your way.
• Transformative leadership: We’ll give you the insights, coaching and confidence to be the leader the world needs.
• Diverse and inclusive culture: You’ll be embraced for who you are and empowered to use your voice to help others find theirs.

Your key responsibilities

Moreover, you will be a core contributor to the development of the legal practice through initiatives such as delivering internal training, developing precedents, sharing knowhow, participating in team and firm events, giving internal and external presentations, and producing expert articles for publications.

Skills and attributes for success

Ideally, you’ll also have the ability to solve problems creatively and pragmatically and an enthusiastic, flexible approach to work and challenges. You should also have great negotiation skills and the ability to adapt and get up to speed quickly with developing laws and regulations thanks to a keen desire for continuing to develop your legal skills and knowledge.

Qualifications & Experience

• At least 4 years of experience as a qualified lawyer from a reputable legal practice environment.
• Good knowledge of common topics within the sector such as project agreements, project finance documentation, construction contracts, O&M agreements, oil & gas contracting structures, etc.
• Ability to develop regulatory frameworks for evolving utility markets.
• Strong client relationship-building capabilities combined with strategic and commercial awareness.
• Excellent communication, collaboration, self-management, and project management skills.

Ideally, you’ll also have

• Great negotiation skills.
• Fluency in Arabic, both written and spoken.