דרושים Tc-cs-iam-imp-sailpoint ב-Ey ב-India, Pune

The opportunity

• We’re looking for Security Analyst / Consultant in the Risk Consulting team to work on various Identity and Access Management projects for our customers across the globe. Also, the professional shall need to report any identified risks within engagements and share any issues and updates with senior members of the team.
• In line with EY’s commitment to quality, you’ll confirm that work is of the highest quality as per EY’s quality standards and is reviewed by the next-level reviewer. As an influential member of the team, you’ll help to create a positive learning culture, coach and counsel junior team members and help them to develop.

Your key responsibilities

• Engage and contribute to the Identity & Access Management projects
• Work effectively as a team member, sharing responsibility, providing support, maintaining communication and updating senior team members on progress
• Execute the engagement requirements, along with review of work by junior team members
• Help prepare reports and schedules that will be delivered to clients and other interested parties
• Develop and maintain productive working relationships with client personnel
• Build strong internal relationships within EY Consulting Services and with other services across the organization
• Help senior team members in performance reviews and contribute to performance feedback for staff/junior level team members
• Contribute to people related initiatives including recruiting and retaining IAM professionals
• Maintain an educational program to continually develop personal skills
• Understand and follow workplace policies and procedures
• Building a quality culture at GTH
• Manage the performance management for the direct reportees, as per the organization policies
• Foster teamwork and lead by example
• Training and mentoring of project resources
• Participating in the organization-wide people initiatives
  

Skills and attributes for success

• Hands-on experience on end to end implementation of Identity and Access Management tool.
• Completed at least 2-5 implementations.
• Good understanding of Identity Access Management solutions.
• Hands-on Java development and debugging experience.
• Strong Understanding of Java API’s, libraries, methods and good understanding of XML.
• Should be capable of dissecting large problems and designing modular, scalable solutions.
• Familiarity with any Java Framework (Struts/ Spring) is an additional advantage.
• Should be familiar with application servers such as Tomcat and WebLogic.
• Should have good understanding of RDMS and SQL queries.
• Hands-on experience in setting up the Identity and Access Management environment in standalone and cluster environment.
• Hands-on Development experience on Provisioning Workflows, triggers, Rules and customizing the tool as per the requirements.
• Strong understanding of LDAP (Lightweight Directory Access Protocol).
• Capability of understanding the business requirements and converting that into design.
• Good knowledge of information security, standards and regulations.
• Should be flexible to work on new technologies in IAM domain.
• Worked in capacity of techno-functional role of Identity and Access Management Implementation.
• Worked in client facing role.
• Need to be thorough in their respective tool with hands-on experience involving configuration, implementation & customization.
• Deployment of web application & basic troubleshooting of web application issues.
• Need to liaise with Business stakeholders and seek requirement clarification. Should be able to map business requirements to technical specifications.
• Use case design, Solution Requirements Specification and mapping business requirements to technical requirements (Traceability Matrix).
• Architecture Design (optimising the resources made available – servers and load sharing etc.).
• Involvement in a successful pursuit of a potential client by being part of the RFP response team.
  

To qualify for the role, you must have

• Bachelor or master’s degree in related field or equivalent work experience
• Strong command on verbal and written English language.
• Experience in HTML, JSP and JavaScript.
• Strong interpersonal and presentation skills.
• 5-7 Years’ Work Experience

Skills Expertise

• Experience in implementing at least two IAM engagements, including requirements gathering, analysis, design,
• development, testing, deployment, and application support (Sailpoint/OIM/CyberArk)
• Experience in carrying out advanced application integration with the IAM solution dealing with advanced provisioning (e.g., multilevel workflows), single sign-on (WIA, Forms, HTTP), and PKI concepts
• Experience in technologies, such as Java, LDAP, SSL RDBMS, and Linux
• Good knowledge of Web/application servers (IIS, WebSphere, WebLogic, JBoss, and Apache)
• Experience in development/configuration of standard/custom IAM integrations using Java, .Net, or other major scripting languages
• Experience in hands-on development, estimations, sizing, and custom IAM integrations
• Advanced documentation and presentation skills and well-versed with software development life cycle processes
• Ability to create, plan, and execute advanced IAM trainings and independently drive proof of concepts involving emerging IAM technologies
• Exposure to process frameworks and methodologies
• Excellent verbal and written communication
  

Certifications (preferred):

• CyberArk Trustee, CyberArk Defender, CyberArk Sentry
• ITIL or equivalent
  

Work Requirements:

• Willingness to travel as required
• Willingness to be on call support engineer and work occasional overtime as required
• Willingness to work in shifts as required

What we look for

• Who has hands on experience in setting up the Identity and Access Management environment in standalone and cluster environment.
• Who has hands-on Development experience on Provisioning Workflows, triggers, Rules and customizing the tool as per the requirements.
  

You get to work with inspiring and meaningful projects. Our focus is education and coaching alongside practical experience to ensure your personal development. We value our employees and you will be able to control your own development with an individual progression plan. You will quickly grow into a responsible role with challenging and stimulating assignments. Moreover, you will be part of an interdisciplinary environment that emphasizes high quality and knowledge exchange. Plus, we offer:

• Support, coaching and feedback from some of the most engaging colleagues around
• Opportunities to develop new skills and progress your career
• The freedom and flexibility to handle your role in a way that’s right for you
  

EY exists to build a better working world, helping to create long-term value for clients, people and society and build trust in the capital markets.

Your key responsibilities

• Engage and contribute to the Identity & Access Management projects
• Work effectively as a team member, sharing responsibility, providing support, maintaining communication and updating senior team members on progress
• Execute the engagement requirements, along with review of work by junior team members
• Help prepare reports and schedules that will be delivered to clients and other interested parties
• Develop and maintain productive working relationships with client personnel
• Build strong internal relationships within EY Consulting Services and with other services across the organization
• Help senior team members in performance reviews and contribute to performance feedback for staff/junior level team members
• Contribute to people related initiatives including recruiting and retaining IAM professionals
• Maintain an educational program to continually develop personal skills
• Understand and follow workplace policies and procedures
• Building a quality culture at GDS
• Manage the performance management for the direct reportees, as per the organization policies
• Foster teamwork and lead by example
• Training and mentoring of project resources
• Participating in the organization-wide people initiatives

Skills and attributes for success

• At least 2-3 years of IAM experience in SailPoint IdentityIQ, Identity Now, Saviynt & OIM.
• At least 2 years of experience in two or more of the following IAM products: SailPoint IdentityIQ, Identity Now, OIM, or Saviynt
• Experience in Leading the design, implementation, and maintenance of any IGA Products: Identity Now, IdentityIQ, Saviynt & OIM solutions
• Hands-on experience with Identity Now, IdentityIQ,Saviynt and OIM
• Expertise in Saviynt can be considered if skillset not found in SailPoint IIQ or IDN or OIM
• Evaluate current IAM solutions and identify areas for improvement
• Develop and implement IAM policies and procedures
• Work collaboratively with cross-functional teams to ensure alignment with business goals
• Provide technical expertise and guidance to project teams
• Conduct risk assessments and develop mitigation strategies
• Provide technical support for IAM issues and incidents
• Stay up to date with the latest IAM technologies and trends
• Must have experience in application onboarding, provisioning, workflow customization, access review in IAM.
• Experience in managing complex IAM projects
• Strong understanding of IAM policies and procedures
• CISSP, CISM, or other relevant IAM certifications preferred
• Ability to work independently and manage multiple priorities
• Design, implement and maintain Oracle Identity Manager (OIM), Oracle Internet Directory (OID) and LDAP systems and infrastructure.
• Develop and maintain technical documentation for IAM systems and infrastructure.
• Plan and execute migrations and upgrades for OIM, OID and LDAP systems and infrastructure.
• Troubleshoot and resolve complex OIM, OID, OAM, and LDAP-related issues.
• Work with vendors to resolve compatibility issues and ensure the best performance of OIM, OID and LDAP systems and infrastructure.
• Implement and maintain security and access controls for OIM, OID, and LDAP systems and infrastructure.
• Mentor and provide guidance to junior IAM engineers.
• SailPoint connector development experience with both out-of-the-box and custom connectors. Configuring QuickLinks and reports customisation
• Should have exposure to a variety of programming languages and technologies, including, but not limited to, J2EE (JSP, Servlets, EJB, XML, Java), .Net, Oracle, DB2, and MS/SQL
• Should have good understanding in concepts such as self-service, automated approval process, RBAC, attestation, separation of duties and recertification
• Having experience/knowledge in following technologies would be an advantage: LDAP, PKI, SSL.
• Should have had direct client experience, including working with client teams in an on-site and offshore mode
• High level networking knowledge is preferred
• Should have experience in implementing at least one complete IAM SDLC engagements projects. This must include activities such as requirements gathering, analysis, design, development, testing, deployment and application support
• Should have experience in delivering IT projects. This includes activities such as requirements analysis, defining architecture, and conducting detailed technical design, development, and lead solution delivery
• Should have exposure to a variety of programming languages and technologies, including, but not limited to, J2EE (JSP, Servlets, EJB, XML, Java), .Net, Oracle, DB2, and MS/SQL
• Should have good understanding in concepts such as self-service, automated approval process, RBAC, attestation, separation of duties and recertification
• Should have worked on both out-of-the-box adapters/interfaces and custom adapters /interfaces for IAM enterprise solutions.
• Having experience/knowledge in following technologies would be an advantage: LDAP, PKI, SSL,
• Should have experience in carrying out application integration with the IAM solution
• Should have had direct client experience, including working with client teams in an on-site and offshore mode
• Should have Knowledge of Linux and Windows operating system
• High level networking knowledge is preferred
• Desirable to have certifications in security domain, such as CISSP and CISA or any IAM product specific certifications

Skills Expertise

• SailPoint IdentityIQ 7.0 or later, Identity Now
• Knowledge on cloud technologies like Microsoft Azure and AWS
• Experience in other similar IGA products like OIM and Saviynt
• Knowledge on REST APIs, JSON and postman tool
• Knowledge on Java, SQL.
• Scripting knowledge like PowerShell, Perl, ruby etc.
• Good soft skills i.e. verbal & written communication, technical document writing etc.
• Exposure to global security standards e.g. PCI, SOX, HIPAA etc.
• Experience in managing small to large sized organization.
• Prior experience working in remote teams on global scale.
• Excellent analytical and problem-solving skills
• Customer orientation skills.

Certification:

• SailPoint Engineer Certification (Good to have)
• ITIL or equivalent (Good to have)
• CISSP (Good to have)

To qualify for the role, you must have

• B. Tech./ B.E. with sound technical skills
• Strong command on verbal and written English language.
• Experience in IAM domain like SailPoint IIQ, IDN,Saviynt & OIM.
• Strong interpersonal and presentation skills.
• Years’ Work Experience

Work Requirements:

• Willingness to travel as required
• Willingness to be on call support engineer and work occasional overtime as required
• Willingness to work in shifts as require

What we look for

• Who has hands on experience in setting up the Identity and Access Management environment in standalone and cluster environment.
• Who has hands-on Development experience on Provisioning Workflows, triggers, Rules and customizing the tool as per the requirements.

You get to work with inspiring and meaningful projects. Our focus is education and coaching alongside practical experience to ensure your personal development. We value our employees and you will be able to control your own development with an individual progression plan. You will quickly grow into a responsible role with challenging and stimulating assignments. Moreover, you will be part of an interdisciplinary environment that emphasizes high quality and knowledge exchange. Plus, we offer:

• Support, coaching and feedback from some of the most engaging colleagues around
• Opportunities to develop new skills and progress your career
• The freedom and flexibility to handle your role in a way that’s right for you

EY exists to build a better working world, helping to create long-term value for clients, people and society and build trust in the capital markets.

As a member of the Identity and Access Management (IAM) team this position will contribute towards execution of an IAM roadmap that meets security requirements, implementation and adoption of secrets management, management of machine identities and definition of access policies that meet their needs and are in line with overall IAM Program.

Your key responsibilities

• Engage and contribute to the Identity & Access Management projects and support practice build
• Work effectively as a team member, sharing responsibility, providing support, maintaining communication and updating senior team members on progress
• Execute the engagement requirements, along with review of work by junior team members
• Help prepare reports and schedules that will be delivered to clients and other interested parties
• Develop and maintain productive working relationships with client personnel
• Build strong internal relationships within EY Consulting Services and with other services across the organization
• Help senior team members in performance reviews and contribute to performance feedback for staff/junior level team members
• Contribute to people related initiatives including recruiting and retaining IAM professionals
• Maintain an educational program to continually develop personal skills
• Understand and follow workplace policies and procedures
• Manage the performance management for the direct reports, as per the organization policies
• Foster teamwork and lead by example
• Training and mentoring of project resources
• Participating in the organization-wide people initiatives

Skills and attributes for success

• Minimum 8 years of experience in installing and implementing PAM solutions like CyberArk, BeyondTrust, Thycotic, Conjur/Hashicorp Vault
• Experience using Cloud platforms (AWS, Azure, GCP) and knowledge of Application container tools and technologies such as Docker, Kubernetes, Image Registries
• Experience in integration of Conjur/Hashicorp Vault with enterprise applications, cloud infrastructure, and DevOps application (Jenkins, Ansible etc) will be an added advantage
• Experience in managing Windows/Linux environments and Database (PostgreSQL ideal)
• Proficiency in scripting languages- Python, JSON, Ruby, C#, PowerShell, YAML
• Knowledge of the function and use of REST APIs
• Working knowledge of common and industry standard cloud-native/cloud-friendly authentication mechanisms (OAuth, OpenID, etc)
• Define and describe Conjur/Hashicorp architecture, requirements, and workflow
• Integration of Secret Management solution with 3rd party solutions (LDAP/ SIEM)
• Ability to conduct workshops to understand existing service models, analyse DevOps procedures and security requirements, and identify required secret management functions and relevant use cases
• Supports and oversees the planning, maintenance and change management for risk system strategies, process changes, system parameter changes, production schedules, and operational tasks.
• Works with stakeholders to resolve issues and provide solutions that ensure service delivery and effectiveness.
• Ability to provide PAM best practices recommendations to the client
• Supports the development and maintenance of system and process documentation / process controls / knowledge assets required for the operation

To qualify for the role, you must have

• B. Tech./ B.E. with sound technical skills
• Strong command on verbal and written English language.
• Relevant experience in Privileged Management Solutions like CyberArk, Thycotic, Hashicorp
• Strong interpersonal and presentation skills.
• 8+ years’ Work Experience
• CyberArk CDE or relevant product certification

Certifications:

• Desirable to have certifications in security domain, such as CISSP and CISA or any IAM product specific certifications
• Desirable to have certifications in CyberArk, BeyondTrust, Hashicorp Vault/ CyberArk Conjur

You get to work with inspiring and meaningful projects. Our focus is education and coaching alongside practical experience to ensure your personal development. We value our employees, and you will be able to control your own development with an individual progression plan. You will quickly grow into a responsible role with challenging and stimulating assignments. Moreover, you will be part of an interdisciplinary environment that emphasizes high quality and knowledge exchange. Plus, we offer:

• Support, coaching and feedback from some of the most engaging colleagues around
• Opportunities to develop new skills and progress your career
• The freedom and flexibility to handle your role in a way that’s right for you

Key Responsibilities:

• Content Development: Design, develop, and maintain security event monitoring and alerting processes using Sentinel SIEM.
• Use Case Creation: Develop use cases under frameworks like Cyber Kill Chain and MITRE ATT&CK.
• Expected to seamlessly migrate and translate use cases from another SIEM To Sentinel
• Integration: Integrate critical devices and applications, including custom parsers for unsupported systems.
• Automation: Develop, automate, and orchestrate tasks (playbooks) using logic apps based on specific events.
• Incident Management: Configure Sentinel incidents, workbooks, hunt queries, and notebooks.
• Consulting: Provide consulting during testing, evaluation, pilot, production, and training phases to ensure successful deployment.
• Threat Modelling: Utilize threat modelling to enhance security monitoring and response strategies.
• Reporting: Generate intelligent reports and dashboards to provide actionable insights to stakeholders.
• Should have strong hands-on experience in:
• • Installation, administration and troubleshooting of OMS/AMA agent.
  • Use case creation using KQL
  • Configuration of Analytic Rules
  • Custom parser development
• Supporting presales initiatives with regards to Microsoft Security such as answering RFPs, client presentations, demos.
• If required should be able to lead a team on deployment/migration activities.

Qualification & Experience:

• 3-5 years related experience in cybersecurity operations, particularly in a SOC or similar environment.
• Proficiency in using security monitoring tools, such as Sentinel SIEM systems, IDS/IPS, EDR – Microsoft Defender, XSOAR – SOAR solutions.
• Strong knowledge of application, network, and infrastructure security.
• Excellent analytical, problem-solving, and decision-making skills.
• Ability to work under pressure and manage multiple incidents simultaneously.
• Strong communication and teamwork skills, with the ability to coordinate with cross-functional teams.
• Familiarity with global cybersecurity standards and regulatory requirements.

Special Factors:

• Willing to work from ODC as and when required in rotational shift.
• Weekend availability/flexibility to work weekends is a MUST.
• Willing to support US shift (Night shift)

EY exists to build a better working world, helping to create long-term value for clients, people and society and build trust in the capital markets.

We are actively recruiting Audit professionals at the Audit Supervisor level to join our Audit team in Botswana. Our Auditor opportunities are offered on a flexible full-time basis. You’ll help our clients meet their reporting requirements by accurately reporting on financial statements and providing meaningful insights into accounting and reporting matters. In return, you can expect leading-edge learning and development tailored to your unique interests and motivations. You’ll be given all the skills, knowledge and opportunities to progress and become ready to build a better working world for our people, our clients and the communities that support us.

Your key responsibilities

• Leading fieldwork, managing performance, coaching and mentoring more junior team members and keeping engagement leaders updated on audit engagements
• Effectively managing Audit processes with appropriate consideration of audit risk issues and accounting technical matters, including revenue, financial instruments and income taxes
• Engaging clients and providing advice and professionalism throughout transactions, including identification of areas for improvement in clients’ business processes
• Constantly developing your understanding of current market trends and processes and sharing your knowledge to develop junior colleagues
• Understanding our clients’ unique ambitions and needs and referring them to colleagues in other teams and areas to broaden our business relationships where possible
• Expertise in accounting frameworks (IFRS) and in related financial reporting matters

Skills and attributes for success

To qualify for the role you must have

• Proven experience as an Auditor delivering external audit and assurance engagements
• Experience leading the planning, execution and reporting on audits
• Proven track record with developing and maintaining client relationships
• Excellent communication and negotiation skills and a collaborative approach to management

Qualifications

• A degree in Accounting, BICA/ACCA qualified, registered member of BICA;
• 4-5 years experience working as an External Auditor in a public accounting firm;
• Excellent project management skills;
• Advanced written and verbal communication skills;
• Sound business, client, team and personal leadership skills including verbal communication and presentation skills
• Expertise in accounting frameworks (IFRS) and in related financial reporting matters

What we offer

Success as defined by you: We’ll provide the tools and flexibility, so you can make a meaningful impact, your way. Continuous learning: personalised career development including coaching, experiences and formal learning so you’ll develop the mindset and skills you’ll need to thrive in the future. Diverse and inclusive culture: You’ll be embraced for who you are and empowered to use your voice to help others find theirs.

Enabled by data, AI and advanced technology,

All in to shape the future with confidence.

As a member of the Identity and Access Management (IAM) team this position will contribute towards execution of an IAM roadmap that meets security requirements, including but not limited to security for customer applications using policy driven security, SSO, authentication and authorization, user provisioning/de-provisioning, and federation focusing on multiple protocols (SAML2.0, OpenID, OAuth2.0, WS-FED).

Your key responsibilities

• Engage and contribute to the Identity & Access Management projects
• Work effectively as a team member, sharing responsibility, providing support, maintaining communication and updating senior team members on progress
• Execute the engagement requirements, along with review of work by junior team members
• Help prepare reports and schedules that will be delivered to clients and other interested parties
• Develop and maintain productive working relationships with client personnel
• Build strong internal relationships within EY Consulting Services and with other services across the organization
• Help senior team members in performance reviews and contribute to performance feedback for staff/junior level team members
• Contribute to people related initiatives including recruiting and retaining IAM professionals
• Maintain an educational program to continually develop personal skills
• Understand and follow workplace policies and procedures
• Manage the performance management for the direct reportees, as per the organization policies
• Foster teamwork and lead by example
• Training and mentoring of project resources
• Participating in the organization-wide people initiatives

Skills and attributes for success

• Strong understanding of Identity Access Management solutions
• Hands-on experience on Azure Active Directory end-to-end implementation involving designing, implementation and customization
• Completed at least 3-5 implementations
• Understanding and experience in different technology of Azure Active Directory, B2E, B2B and B2C
• Implementation experience in ADFS, Azure AD Connect, Azure AD Application Proxy, Conditional Access Policy, LDAP, Active Directory, Application Integrations for SSO and multi-factor authentication
• Working experience in application integration with header-based, SAML2.0, OIDC, OAuth2.0, WS-Fed protocols
• Experienced in managing external identities and consumers in Azure AD B2B and B2C tenants
• Onboarding and offboarding applications on AAD B2B and B2C platforms
• Implementing custom policy using Identity Experience Framework for AAD B2C
• Experience in social login and 3rd party identity provider integration with AAD B2C
• Should have experience in assisting application team to use Microsoft libraries like MSAL
• Experience in integrating mobile application with AAD B2C
• Experience in integrating Azure AD with API management solution
• Should have knowledge on different component of Azure being used for Azure AD solution such as tenant creation, subscription, resource group.
• Should have knowledge in Identity management and Privileged Identity Management concepts
• Experienced in renew, update and troubleshoot certificate related issues
• Should have knowledge of different integration and architecture in customer’s IAM environment such as WAF, Load Balancer, network components
• Understanding of latest technology such as Zero trust framework, Fine-grained authorization, Password less authentication, CIAM
• Experience and exposure of using/exposing REST APIs including Azure AD graph APIs.
• Hands-on knowledge of any programming language Java or Python with good understanding of PowerShell.
• Should be familiar with application servers such as Tomcat and IIS.
• Ability to develop documentation such as business requirement document, high and low level design document, training and user procedures document.
• Deployment of web application & basic troubleshooting of web application issues.
• Should be flexible to work on new technologies in IAM domain.
• Should have had direct client experience, including working with client teams in an on-site or offshore mode.
• Need to liaise with Business stakeholders and seek requirement clarification. Should be able to map business requirements to technical specifications.
• Use case design, Solution Requirements Specification and mapping business requirements to technical requirements (Traceability Matrix).
• Involvement in a successful pursuit of a potential client by being part of the RFP response team.
• Architecture Design for overall IAM solution in customer environment (optimising the resources made available – servers and load sharing etc.).

To qualify for the role, you must have

• B. Tech./ B.E. with sound technical skills
• Strong command on verbal and written English language.
• Relevant experience in Azure Active Directory.
• Strong interpersonal and presentation skills.
• 5 – 8 Years’ Work Experience

Certification:

• Desirable to have certifications in security domain, such as CISSP and CISA or any IAM product specific certifications
• Desirable to have certifications in Azure Security Domain

You get to work with inspiring and meaningful projects. Our focus is education and coaching alongside practical experience to ensure your personal development. We value our employees and you will be able to control your own development with an individual progression plan. You will quickly grow into a responsible role with challenging and stimulating assignments. Moreover, you will be part of an interdisciplinary environment that emphasizes high quality and knowledge exchange. Plus, we offer:

• Support, coaching and feedback from some of the most engaging colleagues around
• Opportunities to develop new skills and progress your career
• The freedom and flexibility to handle your role in a way that’s right for you

EY exists to build a better working world, helping to create long-term value for clients, people and society and build trust in the capital markets.

Attack & Penetration Testing - Staff

As part of our Cyber Security team, you shall perform penetration testing which includes internet, intranet, wireless, web application, mobile application, social engineering and physical penetration testing. You shall also perform in-depth analysis of penetration testing results and create report that describes findings, exploitation procedures, risks and recommendations.

Your key responsibilities

• Perform penetration testing which includes internet, intranet, web application, Mobile app (Android & iOS), APIs, wireless, Cloud Security, social engineering, physical penetration testing.
• Execute penetration testing projects using the established methodology, tools and rules of engagements.
• Execute red team assessments to highlight gaps impacting organizations security postures.
• Identify and exploit security vulnerabilities in a wide array of systems in a variety of situations.
• Perform in-depth analysis of penetration testing results and create report that describes findings, exploitation procedures, risks and recommendations.
• Convey complex technical security concepts to technical and non-technical audiences including executives.
• Utilize tools such as BurpSuite, Nessus, Nmap, Kali Linux, Metasploit and Nessus for effective vulnerability assessment and penetration testing.
• Strong knowledge of OWASP Top 10 web and the ability to effectively communicate methodologies and techniques with development teams
• Understanding of TCP/IP network protocols.
• Develop automated solutions that mitigate risks throughout the organization.
• Provide technical leadership and advise to junior team members on attack and penetration test engagements.

Skills and attributes for success

• Understanding of web-based application vulnerabilities (OWASP Top 10).
• Understanding of TCP/IP network protocols.
• Understanding of network security and popular attacks vectors.
• Ability to communicate detailed technical information to a non-technical audience clearly
• Good to have experience with Operation Technology / Internet of Things, Cloud technologies (AWS, Azure, GCP), Active Directory penetration testing
• Strong understanding of security principles, policies, and industry best practices
• Demonstrable flair for technical writing, including engagement reports, presentations and operating procedures

To qualify for the role, you must have

• BE/ B.Tech/ MCA or equivalent
• Minimum of 2 years of work experience in penetration testing which may include at least three of the following: internet, intranet, web app, APIs, Mobile App, wireless, Cloud Security, social engineering, physical and Red Team assessments.
• One of the following certifications: OSCP, OSCE, CRTP, CRTO, eCPTX, ejpt or eWPTX
• Knowledge of Windows, Linux, UNIX, any other major operating systems.
• 2+ years of work experience in performing Penetration testing.
• Good to have Strong Excel, Word and PowerPoint skills.

Ideally, you’ll also have

Certifications: ejpt, OSCP, CRTP, ECSA.

What we look for

Who can perform penetration testing which includes Network, wireless, web application, mobile application, social engineering and physical penetration testing and provide analysis for the testing results.

You get to work with inspiring and meaningful projects. Our focus is education and coaching alongside practical experience to ensure your personal development. We value our employees and you will be able to control your own development with an individual progression plan. You will quickly grow into a responsible role with challenging and stimulating assignments. Moreover, you will be part of an interdisciplinary environment that emphasizes high quality and knowledge exchange. Plus, we offer:

• Support and feedback from some of the most engaging colleagues around
• Opportunities to develop new skills and progress your career
• The freedom and flexibility to handle your role in a way that’s right for you

EY exists to build a better working world, helping to create long-term value for clients, people and society and build trust in the capital markets.