Expoint – all jobs in one place
מציאת משרת הייטק בחברות הטובות ביותר מעולם לא הייתה קלה יותר
Limitless High-tech career opportunities - Expoint

EY Cybersecurity - Cloud Security Senior Manager 
Canada, Ontario, Toronto 
197620013

18.09.2025

Your key responsibilities

Your key responsibilities will include:

Hands on design and configuration of the Microsoft Defender and Sentinel product Suites

  • Expressing configuration and development of Sentinel and Defender using Infrastructure as Code (IaC)
  • Providing Overall Cybersecurity expertise to the team and our clients
  • Development of advanced Sentinel queries and playbooks
  • Logic App development
  • Potential Live Cybersecurity Response in a Managed Services/Operations setting
  • Helping leverage AI to automate Investigation and Response
  • The development of Cybersecurity decoy systems to lure attackers off track leveraging Microsoft tools
  • Endpoint Detection and Response support and administration

The Microsoft Defender/Sentinel Engineer role will design and implement the Defender and Sentinel aspects of our products. This will be done leveraging Infrastructure as Code (IAC). The Engineer will also work with offshore colleagues to configure and deploy the various solutions.

Our Microsoft Technology Stack: Azure, M365, Dynamics, Purview. Priva, Entra, Defender & Sentinel

Skills and attributes for success

  • Microsoft Security Knowledge: Proficiency in Microsoft security products is essential, particularly in Microsoft Sentinel and Microsoft Defender. This includes familiarity with the implementation, administration, and troubleshooting of both tools
  • Threat Detection and Analysis Skills: An understanding of threat detection and response is critical. This includes the ability to create, manage, and investigate incidents and alerts, understanding security threats, anomalies, and breach patterns.
  • Azure Knowledge: Since Microsoft Sentinel is a cloud-based SIEM, knowledge about Azure cloud services, Azure Log Analytics, and how these integrate with Sentinel is needed. You need to understand how to ingest data from various sources into Azure Sentinel.
  • Security Incident and Event Management (SIEM): Knowledge of SIEM concepts and capabilities is crucial.
  • Programming and Scripting: Familiarity with scripting languages, such as PowerShell or KQL (Kusto Query Language, used in Azure Sentinel for data querying)

To qualify for the role, you must have

  • Good executive presence
  • Ability to work independently or team with others as required
  • Minimum of 5 years of Cybersecurity experience
  • Excellent collaboration and presentation skills, and the confidence to challenge senior colleagues and stakeholders from a diverse range of backgrounds

Ideally, you’ll also have

  • Professional services firm experience
  • Being bilingual (English & French) would be an asset
  • Microsoft Security Engineer Associate certification
  • Microsoft Security Operations certifications
  • Other Cloud Certification
  • Other Cybersecurity certifications

What We Offer

We offer a competitive compensation package where you’ll be rewarded based on your performance and recognized for the value you bring to our business. In addition, our Total Rewards package allows you decide which benefits are right for you and which ones help you create a solid foundation for your future. Our Total Rewards package includes a comprehensive medical, prescription drug and dental coverage, a defined contribution pension plan, a great vacation policy plus firm paid days that allow you to enjoy longer long weekends throughout the year, statutory holidays and paid personal days (based on province of residence), and a range of exciting programs and benefits designed to support your physical, financial and social well-being. Plus, we offer:

  • Support and coaching from some of the most engaging colleagues in the industry
  • Learning opportunities to develop new skills and progress your career
  • The freedom and flexibility to handle your role in a way that’s right for you
EY exists to build a better working world, helping to create long-term value for clients, people and society and build trust in the capital markets.