As part of our EY Cyber security, Technology Consulting team, your role will be to actively establish, maintain and strengthen internal and external relationships. You will be responsible for delivery and maintaining quality of services and deliverables on your engagements. You’ll also identify potential business opportunities for EY and GDS within existing engagements and escalate these as appropriate. Similarly, you’ll anticipate and identify risks within engagements and share any issues with senior members of the team.
This role requires hands-on experience in cloud, application and/or infrastructure security, technology risk management in a highly regulated environment as well as great organizational and communication (verbal and written) skills. The Cloud Security team required to work on various security architecture related requirements which address sector specific challenges. Delivering solutions using third party security tools will be a part of the delivery responsibilities.
you may work with are but not limited to GCP Native Services, Python, Git, Terraform, Splunk, and Linux.
In addition to technical skills, you should have excellent communication and problem-solving skills, as you will be collaborating closely with cyber security, database engineering and other teams across the organization. You should also be comfortable working in a fast-paced, high-volume environment and be able to adapt to changing priorities and requirements.
There will be off hour change deployment work and some incident on call work in this role.
Your key responsibilities
- Provide security expertise to engineering and development teams, acting as a project team member providing consulting advise ensuring security requirements are integrated in the project.
- Provide specific security expertise to engineering teams by identifying and creating patterns and blueprints for repeatable security, infrastructure and application instantiations. Blueprints and patterns may address such areas as network design, database access, authentication methods, encryption requirements, key management, entitlement design, identity management, logging, input validation, secure data transfer among others.
- Significant technical expertise in Cloud Computing technologies, scripting languages (Python etc), integrating 3rd party monitoring tools, encryption tools and best practices, and forensics.
- Demonstrate ability to lead and manage business development / proposal efforts
- Support business development activities such as sales origination, proposal writing, effort estimation, and client relationship development
- Provide support directly to internal stakeholders throughout the enterprise to enable available application solutions that leverage GCP services
- Implement GCP best practices.
- Cloud security strategy, discovery assessments; Compliance requirements, cloud security frameworks
- Design and develop security architectures for cloud and multi-cloud/hybrid-based systems
- Drive conversations with Senior account stakeholders to identify requirements, drivers and context
- Ability to translate technical cloud security requirements into business terms for CXO level stakeholders
Required Skills:
- Experience around Kubernetes and container orchestration
- Minimum of three (2) years direct experience working with Google Cloud
- Experience working with a VPC-SC secured GCP environment
- Experience with GCP Native services such as GCS, BigQuery, Apigee, and Cloud Run
- Experience working with Terraform
- Experience with deployment orchestration, automation, and security configuration management (Terraform, Puppet, Chef, etc.) preferred
- Cloud platforms in scope – AWS, Azure, GCP.
- Should have experience and knowledge of public cloud security practices and product offerings.
- Should have knowledge of IAM technologies such as OAuth2, OpenID Connect, and SAML 2.0
- Hands-on development experience in anyone scripting languages.
- Hands-on experience with automation and CI/CD tools and practices.
- Hands-on experience on DevOps tools like – Jenkins, GitHub, Ansible, GitLab, Docker
- Coding skills - Python, KQL.
- Understanding of distributed systems and event-driven architectures.
- Excellent communication and interpersonal skills, to be able to interact at all levels and be effective as part of a broader team.
- Ability to write documentation for all types of audiences, including documentation in code
- Comfort with working with a geographically distributed team.
- Real-world implementation experience of CI/CD, Automation, and cloud-native services
- An understanding of ITIL practices and procedures as it relates to the cloud.
To qualify for the role, you must have
- 5+ years of experience in the Cyber Security and Cloud Security Domain
- Minimum B. Tech. or equivalent educational qualification
- Product certifications in GCP will be preferred
- Product knowledge and certification for tools such as Terraform, Sentinel, Rego.
What we look for
- A Team of people with commercial acumen, technical experience and enthusiasm to learn new things in this fast-moving environment with consulting skills.
- An opportunity to be a part of market-leading, multi-disciplinary team of 1400 + professionals, in the only integrated global transaction business worldwide.
- Opportunities to work with EY Consulting practices globally with leading businesses across a range of industries
You get to work with inspiring and meaningful projects. Our focus is education and coaching alongside practical experience to ensure your personal development. We value our employees and you will be able to control your own development with an individual progression plan. You will quickly grow into a responsible role with challenging and stimulating assignments. Moreover, you will be part of an interdisciplinary environment that emphasizes high quality and knowledge exchange. Plus, we offer:
- Support, coaching and feedback from some of the most engaging colleagues around
- Opportunities to develop new skills and progress your career
- The freedom and flexibility to handle your role in a way that’s right for you
EY exists to build a better working world, helping to create long-term value for clients, people and society and build trust in the capital markets.