דרושים מהנדס אבטחה ב-Ey ב-India, Bengaluru

Role Overview:

We are seeking a highly skilled and experiencedwith a minimum of 4 years of experience in Data Science and Machine Learning, with a strong focus on NLP, Generative AI, LLMs, MLOps, Optimization techniques, and Agentic AI solution Architecture. In this role, you will play a key role in the development and implementation of AI solutions, leveraging your technical expertise. The ideal candidate should have a deep understanding of AI technologies and experience in designing and implementing cutting-edge AI Agents, workflows and systems. Additionally, expertise in data engineering, DevOps, and MLOps practices will be valuable in this role.

Key Responsibilities:

• Design and implement state-of-the-art Agentic AI solutions tailored for the financial and accounting industry.
• Develop and implement AI models and systems, leveraging techniques such as Language Models (LLMs) and generative AI to solve industry-specific challenges.
• Collaborate with stakeholders to identify business opportunities and define AI project goals within the financial and accounting sectors.
• Stay updated with the latest advancements in generative AI techniques, such as LLMs, Agents and evaluate their potential applications in financial and accounting contexts.
• Utilize generative AI techniques, such as LLMs and Agentic Framework, to develop innovative solutions for financial and accounting use cases.
• Integrate with relevant APIs and libraries, such as Azure Open AI GPT models and Hugging Face Transformers, to leverage pre-trained models and enhance generative AI capabilities.
• Implement and optimize end-to-end pipelines for generative AI projects, ensuring seamless data processing and model deployment.
• Utilize vector databases, such as Redis, and NoSQL databases to efficiently handle large-scale generative AI datasets and outputs.
• Implement similarity search algorithms and techniques to enable efficient and accurate retrieval of relevant information from generative AI outputs.
• Collaborate with domain experts, stakeholders, and clients to understand specific business requirements and tailor generative AI solutions accordingly.
• Establish evaluation metrics and methodologies to assess the quality, coherence, and relevance of generative AI outputs for financial and accounting use cases.
• Ensure compliance with data privacy, security, and ethical considerations in AI applications.
• Leverage data engineering skills to curate, clean, and preprocess large-scale datasets for generative AI applications.

Qualifications & Skills:

• Education – Bachelor’s/Master’s in Computer Science, Engineering, or related field (Ph.D. preferred).
• Experience – 4+ years in Data Science/Machine Learning with proven end-to-end project delivery.
• Technical Expertise – Strong in ML, deep learning, generative AI, RAG, and agentic AI design patterns.
• Programming Skills – Proficient in Python (plus R), with hands-on experience in TensorFlow, PyTorch, and modern ML/data stacks.
• GenAI Frameworks – Experience with LangChain, LangGraph, Crew, and other agentic AI frameworks.
• Cloud & Infrastructure – Skilled in AWS/Azure/GCP, containerization (Docker, Kubernetes), automation (CI/CD), and data/ML pipelines.
• Data Engineering – Expertise in data curation, preprocessing, feature engineering, and handling large-scale datasets.
• AI Governance – Knowledge of responsible AI, including fairness, transparency, privacy, and security.
• Collaboration & Communication – Strong cross-functional leadership with ability to align technical work to business goals and communicate insights clearly.
• Innovation & Thought Leadership – Track record of driving innovation, staying updated with latest AI/LLM advancements, and advocating best practices.

Good to Have Skills:

• Apply trusted AI practices to ensure fairness, transparency, and accountability in AI models.
• Utilize optimization tools and techniques, including MIP (Mixed Integer Programming).
• Deep knowledge of classical AIML (regression, classification, time series, clustering).
• Drive DevOps and MLOps practices, covering CI/CD and monitoring of AI models.
• Implement CI/CD pipelines for streamlined model deployment and scaling processes.
• Utilize tools such as Docker, Kubernetes, and Git to build and manage AI pipelines.
• Apply infrastructure as code (IaC) principles, employing tools like Terraform or CloudFormation.
• Implement monitoring and logging tools to ensure AI model performance and reliability.
• Collaborate seamlessly with software engineering and operations teams for efficient AI model integration and deployment.
• Familiarity with DevOps and MLOps practices, including continuous integration, deployment, and monitoring of AI models.

KEY Capabilities:

• Experience in working with Splunk Enterprise, Splunk Enterprise Security & Splunk UEBA
• Minimum of Splunk Power User Certification
• Good knowledge in programming or Scripting languages such as Python (preferred), JavaScript (preferred), Bash, PowerShell, Bash, etc.
• Assist in remote and on-site gap assessment of the SIEM solution.
  • Work on defined evaluation criteria & approach based on the Client requirement & scope factoring industry best practices & regulations
  • Assist in interview with stakeholders, review documents (SOPs, Architecture diagrams etc.)
  • Asist in evaluating SIEM based on the defined criteria and prepare audit reports
• Good experience in providing consulting to customers during the testing, evaluation, pilot, production and training phases to ensure a successful deployment.
• Experience in onboarding data into Splunk from various sources including unsupported (in-house built) by creating custom parsers
  • Verification of data of log sources in the SIEM, following the Common Information Model (CIM)
  • Experience in parsing and masking of data prior to ingestion in SIEM
  • Provide support for the data collection, processing, analysis and operational reporting systems including planning, installation, configuration, testing, troubleshooting and problem resolution
  • Assist clients to fully optimize the SIEM system capabilities as well as the audit and logging features of the event log sources
  • Assist client with technical guidance to configure their log sources (in-scope) to be integrated to the SIEM
• Experience in SIEM content development which includes :
  • Hands-on experience in development and customization of Splunk Apps & Add-Ons
  • Builds advanced visualizations (Interactive Drilldown, Glass tables etc.)
  • Build and integrate contextual data into notable events
  • Experience in creating use cases under Cyber kill chain and MITRE attack framework
  • Capability in developing advanced dashboards (with CSS, JavaScript, HTML, XML) and reports that can provide near real time visibility into the performance of client applications.
  • Sound knowledge in configuration of Alerts and Reports.
  • Good exposure in automatic lookup, data models and creating complex SPL queries.
  • Create, modify and tune the SIEM rules to adjust the specifications of alerts and incidents to meet client requirement
  • Experience in creating custom commands, custom alert action, adaptive response actions etc.

Qualification & experience:

• Minimum of 3 years’ experience in Splunk and 3 to 5 years of overall experience with knowledge in Operating System and basic network technologies
• Experience in SOC as L1/L2 Analyst will be an added advantage
• Strong oral, written and listening skills are an essential component to effective consulting.
• Good to have knowledge of Vulnerability Management, Windows Domains, trusts, GPOs, server roles, Windows security policies, user administration, Linux security and troubleshooting
• Certification in any other SIEM Solution such as IBM QRadar, Exabeam, Securonix will be an added advantage
• Certifications in a core security related discipline (CEH, Security+, etc.) will be an added advantage.

EY exists to build a better working world, helping to create long-term value for clients, people and society and build trust in the capital markets.

EY Technology supports our technology needs through three business units:

• Client Technology (CT) - focuses on developing new technology services for our clients. It enables EY to identify new technology-based opportunities faster and pursue those opportunities more rapidly.
• Enterprise Workplace Technology (EWT) – EWT supports our Core Business Services functions and will deliver fit-for-purpose technology infrastructure at the cheapest possible cost for quality services. EWT will also support our internal technology needs by focusing on a better user experience.
• Information Security (Info Sec) - Info Sec prevents, detects, responds and mitigates cyber-risk, protecting EY and client data, and our information management systems.

Your key responsibilities

• Define security architectures and provide pragmatic security guidance that balance business benefit and risks.
• Design and develop cloud platform-specific security policies, standards, and procedures for management group and account/subscription management and configuration (e.g. Azure Policy, Azure Security Center, AWS Config), identity management and access control, firewall management, auditing and monitoring, security incident and event management, data protection, user and administrator account management, SSO, conditional access controls and password/secrets management.
• Engage IT project teams throughout the SDLC to identify and prioritize applicable security controls and provide guidance on how to implement these controls
• Perform risk assessments of information systems and infrastructure
• Maintain and enhance the Information Security risk assessment methodology
• Define security configuration standards for platforms and technologies
• Develop appropriate risk treatment and mitigation options to address security risks identified during security review or audit
• Translate technical vulnerabilities into business risk terminology for business units and recommend corrective actions to customers and project stake-holders
• Provide knowledge sharing and technical assistance to other team members
• Act as Subject Matter Expert (SME) in responsible technologies and have deep technical understanding of responsible portfolios

Skills and attributes for success

• Experience with Cloud Identity and Access management solutions (AAD, Federation services, SAML, Ping) in implementation and operations.
• experience with Big Data and advanced analytics, AI/ML services (such as /Azure SQL/Google Cloud SQL /Azure HDInsight/Key management solutions, Storage and backup, Load balancing, Security Management, Databases and EC2 or VM machine hosting Databricks, Data Factory, Data Lake Storage/BigQuery, Azure Analysis Services, Synapse Analytics, Machine Learning, etc.)
• Experience in working with different Cloud platforms (Software as a Service (SaaS), Platform as a Service (PaaS) and Infrastructure as a Service (IaaS)) and environments (Public, Private, Hybrid) in a security role.
• hands-on technical experience implementing security solutions for leading Cloud service providers e.g., Amazon AWS, Microsoft Azure, Google Cloud.
• Ability to appropriately balance firm security needs with business impact & benefit
• Ability to facilitate compromise to incrementally advance security strategy and objectives
• Ability to team well with others to facilitate and enhance the understanding & compliance to security policies
• Experience facilitating meetings with multiple customers and technical staff, including building consensus and mediating compromise
• Five or more years Working experience with the architecture, design and engineering of web-based multi-tier information systems or network infrastructures
• Experience conducting risk assessments, vulnerability assessments, vendor and third party risk assessments and recommending risk remediation strategies
• Experience working with common information security standards, such as: ISO 27001/27002, NIST, PCI DSS, ITIL, COBIT

To qualify for the role, you must have

• Five or more years of experience in the management of a significant Information Security risk management function
• 5 or more years of experience in an Information Security or Information Technology discipline
• Experience in managing the communication of security findings and recommendations to IT project teams and management

Ideally, you’ll also have

• Exceptional judgment, tact, and decision-making ability
• Flexibility to adjust to multiple demands, shifting priorities, ambiguity, and rapid change
• Outstanding management, interpersonal, communication, organizational, and decision-making skills
• Strong English language skills are required
• Candidates are preferred to hold or be actively pursuing related professional certifications within the GIAC family of certifications or CISSP, CISM or Azure certifications (AZ500, AZ303, AZ304, AZ900)

We offer a competitive remuneration package where you’ll be rewarded for your individual and team performance. Our comprehensive Total Rewards package includes support for flexible working and career development, and with FlexEY you can select benefits that suit your needs, covering holidays, health and well-being, insurance, savings and a wide range of discounts, offers and promotions. Plus, we offer:

• Support, coaching and feedback from some of the most engaging colleagues around
• Opportunities to develop new skills and progress your career
• The freedom and flexibility to handle your role in a way that’s right for you

Azure ML and Python Dev- Senior 1/2

EY GDS Consulting digital engineering, is seeking experienced Azure ML and Python Developer. Your responsibilities will include designing and implementing data pre-processing, feature engineering, and model training pipelines, collaborating closely with data scientists, and ensuring model performance and reliability in production environments. Proficiency in Azure ML services, Python programming, and a strong background in machine learning are key requirements for this role.

Your key responsibilities

• Develop and deploy machine learning models on Azure cloud platform using Python programming language and Azure ML services.
• Design and implement scalable and efficient data pipelines for model training and inference.
• Collaborate with data scientists and business stakeholders to understand requirements and translate them into technical solutions.
• Implement best practices for ML development, including version control, testing, and documentation.
• Develop and maintain APIs on Azure cloud platform for model deployment and integration with applications.
• Monitor and optimize model performance, ensuring scalability, reliability, and security.
• Participate in code reviews, troubleshooting, and optimization to improve performance and maintainability.
• Stay updated with industry trends and best practices in machine learning, cloud computing, and API development.
• Mentor junior team members, sharing expertise and guiding them in technical challenges.
• Collaborate with cross-functional teams, including data engineers, data scientists, and business analysts, to deliver end-to-end solutions.
• Conduct regular evaluations and assessments of ML models and APIs, identifying areas for improvement and optimization.
• Lead and contribute to innovation initiatives, exploring new technologies and approaches to enhance our ML and cloud capabilities.

Soft Skills

• Bachelor's degree in computer science, data science, or related field.
• 6-8 years of experience in machine learning, data engineering, and cloud computing, with a strong focus on Azure services.
• Proficiency in Python programming language for ML model development and deployment.
• Experience with Azure ML services, Azure data services (e.g., Azure Data Lake, Azure SQL Database), and Azure cloud infrastructure.
• Strong understanding of machine learning concepts, algorithms, and techniques, including supervised and unsupervised learning, deep learning, and natural language processing.
• Expertise in designing and implementing data pipelines for ML model training and inference, using tools like Azure Databricks, Azure Data Factory, and Azure Synapse Analytics.
• Familiarity with cloud-native technologies, containerization (e.g., Docker, Kubernetes), and DevOps practices for ML model deployment and automation.
• Experience with version control systems (e.g., Git/GitHub), CI/CD pipelines, and software engineering best practices for ML projects.
• Strong analytical and problem-solving skills, with the ability to analyze complex data sets, identify patterns, and derive meaningful insights.
• Excellent communication and collaboration skills, with the ability to work effectively in cross-functional teams and communicate technical concepts to non-technical stakeholders.
• Proactive mindset, self-driven, and eager to learn new technologies and methodologies in the ML and cloud computing space.
• Ability to work in a fast-paced environment, manage multiple priorities, and deliver high-quality results under tight deadlines.

To qualify for the role, you must have

• A bachelor's or master's degree in computer science, data science, or related field.
• 6-8 years of hands-on experience in machine learning, cloud computing, and API development, with a focus on Azure services.
• Proficiency in Python programming language for ML model development and deployment, along with experience using Azure ML services and Azure cloud infrastructure.
• Strong communication skills, both verbal and written, with the ability to articulate technical concepts effectively to diverse audiences.
• Proven track record of successfully delivering ML projects, designing scalable data pipelines, and collaborating in cross-functional teams.
• Certifications such as Microsoft Certified: Azure AI Engineer Associate, Microsoft Certified: Azure Data Scientist Associate, or equivalent, are highly desirable.
• Experience with other cloud platforms (e.g., AWS, Google Cloud Platform) and additional programming languages (e.g., R, Java) is a plus.

Ideally, you’ll also have

• Analytical ability to manage multiple ML projects simultaneously, prioritize tasks effectively, and make data-driven decisions.
• Experience operating independently or with minimal supervision, demonstrating strong problem-solving skills and initiative.
• Familiarity with advanced ML techniques and frameworks (e.g., TensorFlow, PyTorch) for deep learning and computer vision applications.
• Knowledge of cloud security principles, data governance, and regulatory compliance frameworks relevant to ML and cloud environments.
• Experience with Big Data technologies (e.g., Apache Spark, Hadoop) for processing large-scale datasets and building ML models at scale.

You get to work with inspiring and meaningful projects. Our focus is education and coaching alongside practical experience to ensure your personal development. We value our employees and you will be able to control your own development with an individual progression plan. You will quickly grow into a responsible role with challenging and stimulating assignments. Moreover, you will be part of an interdisciplinary environment that emphasizes high quality and knowledge exchange. Plus, we offer:

• Support, coaching and feedback from some of the most engaging colleagues around
• Opportunities to develop new skills and progress your career
• The freedom and flexibility to handle your role in a way that’s right for you

Your key responsibilities

• Create security standards, policies, and procedures.
  • Implement organizational process or policy changes.
  • Develop safety standards, policies, or procedures.
• Investigate and resolve security breaches
• Develop Response plan & train Security Managers to be able support / respond in case of medical emergencies, bomb threats, fire alarms, or intrusion alarms, following emergency response procedures.
• Review & ensure a sound, safe environment
  • Monitor organizational compliance with regulations
• Plan, direct Security Managers to safeguard company assets, employees, guests, or others on company property
  • Develop safety standards, policies, or procedures
• Evaluate security service provider organization policies, direct Security Managers ensure adherence to the established policies/ processes to address any on site Develop & Implement policies and methods to protect personnel against harassment, threats, or violence
  • Review & ensure strict compliance
  • Review periodic reports from the Security Managers
• Support & participate in governmental reviews, internal corporate evaluations, or assessments of the overall effectiveness of facility and personnel security processes
  • Evaluate program effectiveness
  • Develop follow-up actions, to improve EY’s preparedness for such reviews, in future.
• Develop & Schedule Training programs, to on site security teams or other organization members in security rules and procedures
  • Develop training programs on environmental awareness, conservation, or safety topics
• Assess risks to mitigate potential consequences of incidents and develop a plan to respond to incidents
  • Develop safety standards, policies, or procedures
  • Review risk assessment reports and recommend corrective measures
• Review security status, updates, and actual or potential problems, using established protocols.
• Direct strategies & Develop robust emergency management processes/ protocols and contingency planning.
  • Develop emergency response plans or procedures.
  • Direct organizational operations, projects, or services
• Conduct threat or vulnerability analyses to determine probable frequency, criticality, consequence, or severity of natural or man-made disasters or criminal activity on the organization's profitability or delivery of products or services.
  • Analyze risks to minimize losses or damages
• Provide leadership to Security Managers and teams, performing activities, such as background investigation, training, assigning work, performance evaluation, or disciplining.
  • Create framework for a fair & objective based evaluation employee performance, with growth mindset
• Develop budgets for security operations
  • Develop annual budgets, to be able to fulfil organization requirements and with an aim to achieve optimum operational efficiency.
• Write or review security-related documents, such as incident reports, proposals, and tactical or strategic initiatives
  • Prepare reports related to compliance matters
• Analyze and evaluate security operations to identify risks or opportunities for improvement through auditing, review, or assessment
  • Analyze risks to minimize losses or damages
• Develop integrated security controls/ solutions to ensure confidentiality, accountability, recoverability, or audit ability of sensitive information, proprietary information, or information technology resources.
  • Develop organizational methods or procedures.
  • Educate/ Train security managers to implement organizational security activities
• Review security policies, programs or procedures to ensure compliance with internal security policies, licensing requirements, or applicable government security requirements, policies, and directives.
  • Review and confirm, organizational compliance with regulations
• Conduct physical examinations of property to ensure compliance with security policies and regulations
  • Monitor facilities or operational systems
• Analyze & report security data to determine security needs, security program goals, or program accomplishments
  • Compile operational data
  • Analyze data to inform operational decisions or activities
• Coordinate security operations or activities with public law enforcement, fire and other agencies
  • Communicate with government agencies
  • Manage organizational security activities
• Review Operational Expense reports to ensure efficiency and quality of security operations
  • Analyze financial records to improve efficiency
• Review Purchase requests on security-related supplies, equipment, or technology and approve.
• Develop investigation programs, including collection and preservation of video and notes of surveillance processes or investigative interviews
  • Develop framework & procedures and oversee organizational need on security activities related to investigations
• Develop, arrange for, perform, or assess executive protection activities to reduce security risks.
• Develop operating strategies, plans, or procedures
• Implement organizational process or policy changes.
• Plan security for special and high-risk events.
  • Create models to support organizational needs for special or high-risk events
• Train & Direct Security managers to deploy efforts to reduce substance abuse or other illegal activities in the workplace
• Develop, recommend security procedures for operations or processes including, but not limited to, Control room operations, Security Surveillance systems, Incident Management, Asset protection, Premise safety & security, etc.,
  • Develop safety standards, policies, or procedures.
  • Train & develop security managers to ensure successful implementation of standard processes/policies/ procedures.
• Review preliminary reports or make presentations on internal investigations, losses, or violations of regulations, policies and procedures.
  • Review/Analyze reports related to compliance matters.
  • Communicate organizational policies and procedures
• Attend meetings, professional seminars, or conferences to keep abreast of changes in executive legislative directives or new technologies impacting security operations.
  • Maintain knowledge of current developments in area of expertise

Skills and attributes for success

• Excellence customer relationship management skills
• Should possess strong analytical and problem-solving skills. Should pay attention to detail
• Proven experience as security manager or similar position
• Experience using relevant technology and equipment (e.g. CCTV)
• Experience in reporting and emergency response planning
• Excellent knowledge of security protocols and procedures
• Solid understanding of budgeting and statistical data analysis
• Working knowledge of MS Office
• Excellent communication and interpersonal skills
• Outstanding organizational and leadership skills
• Certification in OSHAS & ISO 27001
• Certification in Disaster Management & Fire fighting
• Certification in Industrial Security Management
• Active Member of ASIS International / OSAC India chapter

To qualify for the role, you must have

• 15+ years of subject matter expert experience, with 8-10 years’ experience in managing security operations/ service delivery, in comparable organizations, with sound knowledge & experience, in premise safety & security services domain.
• Bachelor's degree in Business, or equivalent professional level experience

Ideally, you’ll also have

• Experience in Management role conducting development of processes, sustainable solutions, meaningful information systems for Security functions.
• Member of industry forums like IFMA/MRICS/OSAC/ASIS international etc., and having strong industry network
• Experience in working in large matrixed organizations
• Ability to function in a rapidly changing, heavily matrixed and often virtual environment
• Ability to prioritize, drive and adapt to change quickly in a fast-paced environment
• Culturally sensitivity and be capable of handling interactions with a “global mindset”
• To Coach/mentor team members in a cross-functional environment

What we look for

• Participates regularly in EY-wide and function-specific meetings, events and people initiatives
• Demonstrates executive presence establishes credibility quickly, commands attention and respect, demonstrates confidence, and deals comfortably with others
• Encourages innovation in others by allowing error, e.g., allowing people to try something new, being open to new ideas
• Creates an inclusive and flexible environment where people feel they are a valuable member part of the team. Promotes and demonstrates an inclusive and global mindset when interacting with others. Adapts to the style and cultural differences of others to enhance relationships
• Engages with team members to resolve business challenges, helping them analyze and address the root cause of problems so they can stay aligned and focused on successful execution of the team’s vision.
• Resolves team conflicts and performance issues effectively and respectfully.
• Demonstrates effective decision-making and maturity that enhances interactions
• Identifies areas of opportunity and generates ideas and solutions. Makes recommendations to leadership and is able to implement new ideas, improvements, technologies and new products.
• Promotes operational excellence by challenging current practices and providing feedback on opportunities to improve within own area of responsibility.
• Provides quality deliverables for self and teams within agreed-upon timelines
• Actively seek, wherever possible, to protect and regenerate the environment.
• Adheres to budgets, objectives and deadlines on projects with the aim of enhancing productivity and value
• Balances multiple priorities by considering priorities, urgency and impact on key relationships and resources
• Identifies and assesses risks and consults with leadership or stakeholders on options in a timely manner
• Manages team or project, delegates work effectively, and uses appropriate resources to manage costs while meeting deadlines
• Models objectivity and integrity with self and teams to adhere to firm values and limit risk
• Surfaces barriers to change and provides recommendations to overcome
• Uses experience and consultative questioning to home in on key issues and escalates as appropriate
• Grasps technical issues quickly and is able to act on them, resolve them or escalate to leadership as necessary
• Identifies and leverages leading practices, diverse perspectives and lessons learned
• Tailors communication approach to respective audience when sharing technical experience to increase understanding

What we offer

EY Global Delivery Services (GDS) is a dynamic and truly global delivery network. We work across six locations – Argentina, China, India, the Philippines, Poland and the UK – and with teams from all EY service lines, geographies and sectors, playing a vital role in the delivery of the EY growth strategy. From accountants to coders to advisory consultants, we offer a wide variety of fulfilling career opportunities that span all business disciplines. In GDS, you will collaborate with EY teams on exciting projects and work with well-known brands from across the globe. We’ll introduce you to an ever-expanding ecosystem of people, learning, skills and insights that will stay with you throughout your career.

• Continuous learning : You’ll develop the mindset and skills to navigate whatever comes next.
• Success as defined by you : We’ll provide the tools and flexibility, so you can make a meaningful impact, your way.
• Transformative leadership: We’ll give you the insights, coaching and confidence to be the leader the world needs.
• Diverse and inclusive culture: You’ll be embraced for who you are and empowered to use your voice to help others find theirs.

EY exists to build a better working world, helping to create long-term value for clients, people and society and build trust in the capital markets.

Your key responsibilities

• Engage in Cyber Strategy & Governance, Cyber Risk & Compliance, Cyber Resilience, Cyber Transformation and Co-Sourcing, Application & Network Security engagements
• Work effectively as a team member, sharing responsibility, providing support, maintaining communication and updating senior team members on progress.
• Execute the engagement requirements, along with review of work by junior team members.
• Help prepare reports and schedules that will be delivered to clients and other parties.
• Develop and maintain productive working relationships with client personnel.
• Build strong internal relationships within EY Consulting Services and with other services across the organization
• Contribute to people related initiatives including recruiting and retaining Cyber Transformation professionals
• Maintain an educational program to continually develop personal skills of staff
• Understand and follow workplace policies and procedures
• Building a quality culture at GDS
• Help senior team members in performance reviews and contribute to performance feedback for staff/junior level team members
• Manage the performance management for the direct reportee, as per the organization policies.
• Foster teamwork and lead by example
• Training and mentoring of project resources
• Participating in the organization-wide people initiatives

Skills and attributes for success

• Hands-on experience of more than 5 years with key components of components of SAP Basis and Security with Cyber Security (but not limited to):
• SAP Basis and Security consultant with experience in SAP Basis System Hardening, SAP Fiori Security and Fiori Architecture, SAP web Dispatcher, Web Application Firewalls and Web Security in General, And SAP Cloud platform.
• Experience with the most important SAP products - SAP S/4HANA, HANA Database, SAP C/4HANA, SAP SuccessFactors, SAP Ariba, SAP Fieldglass, SAP Qualtrics, SAP Concur.
• Application Security (Secure S/4HANA transformation projects beyond re-designing roles & authorizations, Ariba, Concur, SAP EWM, SAP Fieldglass)
• Experience in handling the assessment tools or in manual conduction of SAP Security Audits
• Basic understanding of roles & authorization concepts for S/4HANA, SAP HANA and SAP Fiori.
• Demonstrable experience in Identity & Access Management (IAM) technologies such as Single-Sign-On (SSO), Privileged Access Management and integration with SAP platform.
• Patch management and configuration (Secure Configuration, identify published vulnerabilities, Classify and prioritize vulnerabilities)
• Should possess knowledge of SAP Cloud Platform fundamentals.
• Experience in implementing an SAP SIEM solution like SAP Enterprise Threat Detection (ETD) will be an added advantage
• Basic understanding of security certifications like ISO 27001, SOC, NIST etc.
• Background in security technologies, security architectures, security testing and software development
• Understanding of SAP Security Baseline ABAP / HANA and JAVA systems.
• Exposure to SAP Security Optimization Services & Secure Operations Map
• Understanding of security issues, exploitation techniques and remediation measures and ability to implement new attack approaches/ vectors
• Perform threat modelling for applications and prepare reports for clients to highlight risks.
• Knowledge of integrating security tools, standards, and processes into the product life cycle (PLC)
• Improving and supporting application security tool deployments including static analysis and runtime testing tools
• Deep understanding of common application security vulnerabilities
• Demonstrated expertise in application security domain

To qualify for the role, you must have:

• BE - B. Tech / MCA / M. Tech/ MBA with background in computer science and programming.
• More than 5 Years of relevant experience.
• Strong Excel and PowerPoint skills.
• Should be proficient in leading medium to large engagements and coach junior staff.

Ideally, you’ll also have

• Project management skills.
• CISSP, CISA, CISM, CEH, ISO 27001 Lead Auditor and Lead Implementer.

What we look for

• A team of people with commercial acumen, technical experience and enthusiasm to learn new things in this fast-moving environment with consulting skills.
• An opportunity to be a part of market-leading, multi-disciplinary team of 1400 + professionals, in the only integrated global transaction business worldwide.
• Opportunities to work with EY Consulting practices globally with leading businesses across a range of industries.

At EY, we’re dedicated to helping our clients, from start–ups to Fortune 500 companies — and the work we do with them is as varied as they are. You get to work with inspiring and meaningful projects. Our focus is education and coaching alongside practical experience to ensure your personal development. We value our employees and you will be able to control your own development with an individual progression plan. You will quickly grow into a responsible role with challenging and stimulating assignments. Moreover, you will be part of an interdisciplinary environment that emphasizes high quality and knowledge exchange. Plus, we offer:

• Support, coaching and feedback from some of the most engaging colleagues around
• Opportunities to develop new skills and progress your career
• The freedom and flexibility to handle your role in a way that’s right for you

EY exists to build a better working world, helping to create long-term value for clients, people and society and build trust in the capital markets.

Your Role

This role focuses on providing advisory and technical execution support to help our clients improve their cyber security posture and respond to cyber threats. You will provide security domain expertise and utilize your business insight to work closely with our clients to advise, design, build and deploy security solutions and services.

Your main responsibilities will be

• Architecture design and assessment of security solutions and services.
• Design, implement, and manage secure networks, systems, applications, and cloud infrastructure, ensuring optimal performance and scalability.
• Develop and maintain robust security measures including firewalls, intrusion detection/prevention systems, network segregation/segmentation, SIEM, EDR, XDR, MDR, etc.
• Stay updated on emerging IT security threats and implement appropriate safeguards.
• Conduct vulnerability assessments.
• Provide technical assistance in security incident investigations.
• Undertakes implementation, configuration and operationalization activities of new and existing security solutions or services.
• Research and recommend security upgrades, patches, and new security tools.
• Monitor changes in legislation and accreditation affecting security and advise relevant stakeholders.
• Configure and maintain systems in accordance with security best practices and compliance requirements.

To qualify for the role, you should have

• A BSc. degree in Computer Science, Systems Engineering, Cyber Security, Information Technology, or a related field is preferred.
• A MSc. degree in Information Security, Systems Engineering, Cyber Security, or a related field will be considered an advantage.
• Minimum 2 years of experience in a relevant role such as system security engineer, network security engineer, cloud security engineer, etc.
• Professional qualification such as GSEC, CompTIA Security+, CISSP Concentrations, or other relevant will be considered an advantage.
• Security certifications in Azure / AWS / Google Cloud will be considered an advantage.
• Strong understanding of Windows, Linux, and Active Directory.
• Hands-on knowledge of security-related products and technologies such as IDS/IPS, SIEM, EDR, DLP, network/endpoint/cloud security, etc.
• Strong understanding of cybersecurity concepts and methodologies.

Skills and attributes for success

• Strong analytical and problem-solving skills.
• Strong drive to excel professionally, and to guide and motivate others.
• Advanced written and verbal communication skills in English.
• Dedicated, innovative, resourceful, analytical, and able to work under pressure.
• Foster an efficient, innovative, and team-oriented work environment.

EY offers an attractive remuneration package for rewarding both personal and team performance. We are committed to be an inclusive employer and are happy to consider flexible working arrangements. In addition, but not limited to our benefits include:

• 13th salary and yearly bonus
• Provident Fund
• Private Medical and Life Insurance
• Flexible working arrangements (hybrid work and flexible work schedule)
• Friday afternoon off
• EY Tech MBA and EY MSc in Business Analytics
• EY Badges - digital learning certificates
• Mobility programs (if interested to work abroad)
• Paid Sick Leave
• Paid Paternity Leave
• Yearly wellbeing days off
• Maternity, Wedding, and New Baby Gifts
• EY Employee Assistance Program (EAP) (counselling, legal and financial consultation services)

EY exists to build a better working world, helping to create long-term value for clients, people and society and build trust in the capital markets.

If you can demonstrate that you meet the criteria above, please contact us as soon as possible.

Apply Now.