To qualify for the role, you must have:
- 1-2 Years of experience required in Cybersecurity Defensive Activities
- Bachelor’s degree in related technology field (Computer, Engineering, Science, etc.)
- Experience with EDR/XDR Technology MS Defender and Crowdstrike
- Experience with SIEM Technology MS Sentinel
- Basic knowledge of the main concepts behind the most common security technologies (e.g. Antispam, WAF, IPS/IDS, Web Proxy, Firewall, Endpoint Protection).
- Knowledge of the main operating systems (for example, Windows, Linux/Unix).
- Understanding of network protocols and concepts (e.g. DNS, DHCP, routing)
- Basic scripting skills (for e.g. Python, PowerShell, etc.)
- Good presentation and communication skills, with a team-oriented and flexible mindset
- Problem solving skills and commitment to continuous learning
- Prior experience in cybersecurity, especially in similar roles
- Training and certifications on Incident Response and/or Security Defense
- Proficiency in English and in Italian.
- Working hours – H24
What you will do:
You will be responsible to analyze corporate threats and security infrastructure to support clients in detection rules creation/improvement, as well as the execution of Threat Hunting operations to gather valuable information to identify advanced threats.
- Detection, analysis and response to the following security incidents:
- Exploiting of known vulnerabilities
- Account or application compromise
- Unauthorized access, modification or use of information
- Spam, Phishing, Mailspam, Fraud
Furthermore, the candidate, as member of the Blue Team Security, will support clients in their prevention and detection activities, analyzing new threats and their risks, creating all the required measures to protect them. Your contribution will help in the creation of innovative models, tools and solutions to execute in real or simulated scenarios.
What we look for
- A team of people with client orientation, experience and enthusiasm to learn new things in this fast-moving environment.
- An opportunity to be a part of a market-leading, multi-disciplinary team of hundreds of professionals.
- Opportunities to work with EY Cybersecurity practices globally with leading businesses across a range of industries.
You get to work with inspiring and meaningful projects. Our focus is education and coaching alongside practical experience to ensure your personal development. We value our employees, and you will be able to control your own development with an individual progression plan. You will quickly grow into a responsible role with challenging and stimulating assignments. Moreover, you will be part of an interdisciplinary environment that emphasizes high quality and knowledge exchange. Plus, we offer:
- Support, coaching and feedback from some of the most engaging colleagues around.
- Opportunities to develop new skills and progress your career.
- The freedom and flexibility to handle your role in a way that’s right for you.