דרושים Tc-cs-cyber Detection Response-soc-staff ב-Ey ב-India, Thiruvananthapuram

The Senior Security Analyst in Cyber Defense CTF (Cyber Triage and Forensics) plays a

• You will work collaboratively to detect and respond to information security incidents, develop, maintain, and follow procedures for security event alerting, and participate in security investigations.
• Engage in proactive threat hunting and provide expert security assessments, utilizing EDR, SIEM, and other tools to understand and counteract the cybercrime landscape
• Communicate with IT stakeholders during incident response activities, ensuring effective containment, remediation, and accurate identification of compromise indicators
• Report on incident metrics, analyse findings, and develop reports to ensure comprehensive resolution and understanding of security events
• Act as an escalation point for incident response, shiftlead, mentor junior team members, and contribute to team skill enhancement
• Analyse security events, provide feedback on security controls, and drive process improvements to strengthen the organization's security posture
• Maintain and improve security incident processes, protocols, and standard operating procedures to reflect best practices in security incident response

• Proficient in Cyber investigationincluding evidence management in line with best practices and using advanced tools for threat detection and incident management including advanced querying with KQL

• Proficient in analyzing varied data sets, identifying malware, and conducting comprehensive security event analysis from network traffic attributes and host-based attributes to detect information security incidents and latent threats.

• Proficient in conducting detailed forensic investigations across various operating systems, with a keen eye for obfuscation and the ability to clearly communicate findings
• In-depth understanding of Active Directory security, with strong scripting abilities to automate response measures and improve operational effectiveness

• Undergraduate or Postgraduate Degree in Computer Science, Engineering, or a related field (MCA/MTech/BTech/BCA/BSc CS or BSc IT)
• At least 7 years of overall experience with a minimum of 5 years specialized in incident response, computer forensics, and Security Operations.
• Proficiency in operating within a Security Monitoring/Security Operations Center (SOC) environment, including experience with CSIRT and CERT operations
• Demonstrated experience in investigating security events, threats, and vulnerabilities
• Strong understanding of electronic investigation and forensic methodologies, including log correlation, electronic data handling, investigative processes, and malware analysis
• In-depth knowledge of Windows and Unix/Linux operating systems, and experience with EDR solutions for threat detection and response

• Desired certifications such as SSCP, CEH, GCIH, GCFA, GCIA, GSEC, GIAC, Security+.
• Experience with security incident response in cloud environments, including Azure.
• Knowledge of legal considerations in electronic discovery and analysis
• Proficiency in scripting or programming (e.g., Shell scripting, PowerShell, C, C#, Python)
• Solid understanding of security best practices for network architecture and server configuration

• Demonstrates integrity in a professional environment
• Strong ethical behavior
• Ability to work independently
• Possesses a global mindset for working with diverse cultures and backgrounds
• Knowledgeable in industry-standard security incident response processes, procedures, and lifecycle
• Positive attitude and Excellent teaming skills
• Excellent social, communication, and writing skills
• Good presentation skills
• Excellent investigative, analytical, and problem-solving skills

• Coordinate escalations and collaborate with internal technology teams to ensure timely resolution of issues
• Provide mentoring and training to other team members as required, supporting their development and ensuring consistent team performance

• Should be willing to work in shifts

What we offer

• Continuous learning:You will develop the mindset and skills to navigate whatever comes next.
• Success as defined by you:We will provide the tools and flexibility, so you can make a significant impact, your way.
• Transformative leadership:We will give you the insights, coaching and confidence to be the leader the world needs.
• Diverse and inclusive culture:You will be accepted for who you are and empowered to use your voice to help others find theirs.

EY exists to build a better working world, helping to create long-term value for clients, people and society and build trust in the capital markets.

TEM Manager – DevSecOps

As part of our Cyber Security team, you will build and manage a secure cloud/on-prem platform while ensuring seamless development, build and deployment capabilities. You will be responsible for the security assessment of infrastructure, database and applications, setting up processes and guidelines. You will work closely with DevOps, Architects and Developers and QA to build highly reliable and secure products. You shall also perform in-depth analysis of security test results and create report that describes findings, exploitation procedures, risks and recommendations.

Your key responsibilities

• Expertise managing large scale applications
• Understanding of OWASP SAMM, NIST SSDF, BSIMM frameworks.
• Ability to perform current state DevSecOps assessments, identify gaps and provide recommendations to the client.
• Experience with building an end-to-end DevSecOps program.
• Deep experience with CI/CD, DevSecOps automation
• Experience with Lean product development and agile software development principles and process
• Convey complex technical security concepts to technical and non-technical audiences including executives.
• Strong knowledge of OWASP Top 10 web and the ability to effectively communicate methodologies and techniques with development teams
• Ability to automate DAST/SAST solutions and reporting
• Support SDLC and agile environments with application security testing and source code reviews.
• Provide technical leadership and advise to junior team members on secure SDLC and DevSecOps engagements and Work closely with client development teams
• Develop automated solutions that mitigate risks throughout the organization.
• Support business development activities

Skills and attributes for success

• Experience with performing manual and automated SAST assessments.
• Experience with performing threat modeling and secure design reviews.
• Experience with scripting / programming skills (e.g., Python, PowerShell, Java, Perl etc.) updated and familiarized with the latest exploits and security trends.
• Familiarity with dynamic web application vulnerability scanning tools and services (Acunetix, HP WebInspect, IBM AppScan, BurpSuite, IBM AppScan)
• Familiarity with static code analysis tools and services (CheckMarx, Fortify Static Code Analysis tool, Veracode, Coverity, IBM AppScan Source)
• Experience in developing a DevSecOps CI/CD pipeline completely using open-source tools.
• Experience with SCM tools like Github, Gitlab, Bitbucket and their ability to integrated with CI/CD pipelines by using webhooks, actions, etc.
• Experience with implementing different phases of CI/CD like secret scanning, SAST, SCA, DAST, Infrastructure as code, compliance as code, vulnerability management.
• Experience with container security tools.
• Optimizing the pipeline to produce the best results and ability to plan a maturity model for the DevSecOps program.
• Understanding of web-based application vulnerabilities (OWASP Top 10).
• Experience with scripting / programming skills (e.g., Python or PowerShell or Java or Perl etc.).

To qualify for the role, you must have

• BE/ B.Tech/ MCA.
• Minimum of 10 years of work experience in application security, Secure SDLC and DevSecOps.
• Certifications: Mandatory to have any one of the below certifications,
  • Azure Security Architect (Az-500)
  • AWS security speciality certification (SCS-C01)
• Knowledge of Windows, Linux, UNIX, any other major operating systems.
• Strong Excel and PowerPoint skills.

Other recommended skills and certifications

• Project management
• Certifications: CSSLP, CISSP, Certified DevSecOps Professional

What we look for

A candidate who can design and build a complete DevSecOps programme and work around a maturity model, optimizing the pipeline to integrate the best tools according to the client requirement.

You get to work with inspiring and meaningful projects. Our focus is education and coaching alongside practical experience to ensure your personal development. We value our employees and you will be able to control your own development with an individual progression plan. You will quickly grow into a responsible role with challenging and stimulating assignments. Moreover, you will be part of an interdisciplinary environment that emphasizes high quality and knowledge exchange. Plus, we offer:

• Support, coaching and feedback from some of the most engaging colleagues around
• Opportunities to develop new skills and progress your career
• The freedom and flexibility to handle your role in a way that’s right for you

: Consultant-National-Forensics-ASU - Forensics - Investigations & Compliance - Mumbai

Technical Excellence

• Fraud Investigation and Internal Audit

Qualification

• Bachelor of Commerce
• Master of Business Administration

Experience

• Data Analysis (2+ years)

People with the ability to work in a collaborative manner to provide services across multiple client departments while following the commercial and legal requirements. You will need a practical approach to solving issues and complex problems with the ability to deliver insightful and practical solutions. We look for people who are agile, curious, mindful, and able to sustain positive energy, while being adaptable and creative in their approach.If you can confidently demonstrate that you meet the criteria above, please contact us as soon as possible.

At EY, you’ll have the chance to build a career as unique as you are, with the global scale, support, inclusive culture and technology to become the best version of you. And we’re counting on your unique voice and perspective to help EY become even better, too. Join us and build an exceptional experience for yourself, and a better working world for all.

• Ensure compliance to GDS EM protocols and guidelines.
• Manage end-to-end resource management – demand pipeline management, capacity planning, demand management, external recruitment coordination, headcount management, bench management and reporting/MIS
• Monitor demand – supply gaps and opportunities to cross/upskill resources to minimize bench and improve employee experiences.
• Monitor and actively drive governance on skills update on defined skills management platforms.
• Establish channels for regular stakeholder connects and business reviews.
• Provide thought leadership to the EM team in identifying and implementing resource optimization techniques.
• Implement and monitor quality compliance within the Experience Management team.
• Identifying and prioritizing opportunities for process improvement/automation.
• Develop a strong business continuity framework for self and team.
• Lead people engagement and people development activities to create a positive work environment for the team.
• Drive cross SL resource sharing for improved Collaborate with other EM team leads and share best practices

Graduates with 8-9 years of relevant workforce management experience. Understanding of business models, operational and financial aspects of service delivery is mandatory. The suitable candidate should have good analytical skills, can compute staffing demands, validate skills and experiences associated with the demand, identify suitable fulfilment options from the internal pool of professionals available for allocation or on bench and negotiate staffing solutions with the service delivery managers.

To qualify for the role, you must have

• Excellent domain knowledge in resource management, demand planning and MIS.
• Strong execution skills with focus on meeting timelines and delivering highest quality service.
• Solution oriented mindset.
• Excellent verbal and written communication skills.
• Strong working knowledge of MS Excel, Word and PowerPoint.
• Strong time management and analytical skills.
• Stakeholder management skills.
• 2-3 years’ experience in directly supervising a team.

EY exists to build a better working world, helping to create long-term value for clients, people and society and build trust in the capital markets.

Managing the global workforce in today’s fast changing and highly disruptive environment is becoming increasingly complex. As a member of our PC practice, you’ll be part of a team that supports clients in aligning their HR function with the organizational plans, while keeping employee experience as one of the core considerations. When you join us, you will gain cross functional, multi industry and a truly global work experience.

Your key responsibilities

• Support client projects leveraging deep knowledge and understanding of Time Management, Attendance, Leave Management, Labour Scheduling and other components of Workforce management processes and systems
• Work on client projects as part of a globally distributed team
• Ensure high quality deliverables are produced for the project with exhaustive internal reviews and obtain excellent feedback from the client and global project counterparts
• Participate in full project life cycle activities (Discovery, Design, Configuration, Build, Testing, Knowledge Transfer, Migration and Postproduction Support)
• Support development of thought leadership, collateral, tools, techniques and methodologies to build and enhance Workforce management service offerings within the practice
• Manage and support EY initiatives within the practice
• Support to drive effective client communication, cadence and build relations with client and project team counterparts across global locations

Skills and attributes for success

• Integrity and commitment to work in a new and challenging environment
• Ability to manage ambiguity and to be proactive
• Strong communication and presentation skills
• Cross cultural awareness and sensitivity
• High energy, agility and adaptability
• Ability to maintain positive attitude towards receiving feedback and ongoing training
• Open to travel for projects that are approved per EY and country specific travel advisories

To qualify for the role, you must have

• Bachelor’s degree or equivalent
• 2-4 years of experience in Workforce management (Time management, attendance, scheduling, etc.)
• Experience in implementing WFM products i.e. UKG, Kronos, Ceridian, ADP E-time or any other WFM products
• Experience in configuring Timekeeping, Accruals, Attendance, Attestation etc any of the WFM products
• Knowledge of relational databases; Database querying - Ability to write complex SQL statements; MS SQL/Oracle
• Overall knowledge of how integrations interact with WFM products
• Experience in process mapping and documentation using Visio and other tools

Ideally, you may also have

• Certification in Dell Boomi and Workforce Dimensions
• Proven ability to apply leading practices to the software development life cycle based on experiences with agile and blended approaches
• Understanding of business requirements and translating them into technical requirements
• Experience with file transfer protocol, e.g. FTP, sFTP, EDI, etc
• Knowledge of data manipulation & transformation - ability to manipulate different formats of data including flat files, csv/txt, lookup tables, etc
• Experience with Microsoft Visual Studio, RDL, and/or SSRS for reports
• Experience working on policy, process and design of the overall WFM solution
• Knowledge of payroll

What we look for

Knowledge and experience of working in a cross-cultural setup

Strong desire to learn and demonstrate examples of change management deliverables

You get to work on inspiring and meaningful projects. Our focus is education and coaching alongside practical experience to ensure your personal development. We value our employees and you will be able to control your own development with an individual progression plan. You will quickly grow into a responsible role with challenging and stimulating assignments. Moreover, you will be part of an interdisciplinary environment that emphasizes high quality and knowledge exchange. Plus, we offer:

• Support, coaching and feedback from some of the most engaging colleagues around
• Opportunities to develop new skills and progress your career
• The freedom and flexibility to handle your role in a way that’s right for you

EY exists to build a better working world, helping to create long-term value for clients, people and society and build trust in the capital markets.

• Able to support rotational shifts 24/7*.
• Able to work on weekends if needed.
• Good knowledge on PKI and CLM.
• Operational experience with PKI and CLM.
• Able to work independently in shifts.
• Good communication skills and proactiveness.
• Worked on troubleshooting scenarios in the past for PKI and CLM.

Join our External Audit team and you will help our clients meet their reporting requirements by providing an objective and independent examination of their financial statements, timely and constructive discussions with management on accounting and reporting matters, and a robust and clear perspective to audit committees.

You will experience on-going professional development through diverse experiences, world-class learning and individually tailored coaching. That’s how we develop outstanding leaders who team to deliver on our promises to all of our stakeholders, and in so doing, play a critical role in building a better working world for our people, for our clients and for our communities.

Your key responsibilities

• Recognize potential audit issues or unusual relationships from basic analysis of the financial statements and communicate them to the team
• Clearly and accurately document the execution of specific audit procedures as defined by the engagement objectives, client's engagement history, and planned audit approach
• Challenge procedures used in the past and attempt to enhance audit techniques
• Demonstrate professionalism and competence in the client's environment
• Maintain a strong client focus, be responsive to client requests, and develop/maintain productive working relationships with client personnel
• Stay informed of current business/economic developments relevant to the client's business
• Contribute ideas/opinions to the audit teams and listen/respond to other team members' views
• Bring potential opportunities to the team's attention
• Seek, develop, and present ideas to apply EY's knowledge and services.
• Use technology to continually learn, share knowledge with team members, and enhance service delivery

Skills and attributes for success

• A dedication to teamwork and leadership
• Integrity within a professional environment

What we look for

• An undergraduate or graduate degree in Accounting or any other business related subject and/or currently enrolled in an accounting designation i.e. ACCA, CA, CPA
• At least 2-3 years of experience working as an auditor for a public accounting firm, or particular business/industry experience to meet special needs will be considered an asset