Expoint - all jobs in one place

Finding the best job has never been easier

Limitless High-tech career opportunities - Expoint

EY Cyber Security - Data Protection Senior Multiple Positions 
United States, Connecticut, Hartford 
201672779

23.06.2024

Cyber Security - Data Protection - Senior (Multiple Positions) (1506027), Ernst & Young U.S. LLP, Hartford, CT.As part of a team, assist clients with defining technical and business requirements for data protection solutions. Help design and implement data protection governance, processes and technology to identify and protect the data that is most impactful to the business from a financial, operational, regulatory or reputational perspective. Deliver new systems and improvements to existing systems customized to meet the clients’ data protection needs. Devise methods to add new functionality to the existing technologies to address new threats and tactics. Produce new playbooks as threats change and new data protection tools and controls emerge, and train the clients’ end users. Participate in client meetings to advise clients on multiple data protection products and solutions including enterprise data loss prevention, data classification, digital rights management, cloud data loss prevention / cloud access security brokers, tokenization, file and database encryption.

Full time employment, Monday – Friday, 40 hours per week, 8:30 am – 5:30 pm.

MINIMUM REQUIREMENTS:

Must have a Bachelor's degree in Computer Engineering, Technology Management, Information Systems, Engineering, Business Administration or related, and at least 2 years of experience, including the below:

  • Must have 2 years of experience in Cybersecurity concepts and methods, including vulnerability assessments, data classification, privacy assessments, incident response, security policy creation, enterprise security strategies, architectures and governance.
  • Must have 1 year of cumulative experience in any of the following:
    • Networking (TCP/IP or OSI model), operating system fundamentals (Windows, UNIX, or mainframe), security technologies (firewalls or IDS/IPS) and application programming/scripting languages (C, Java, Perl, or Shell);
    • Technical architecture experience integrating data protection software into clients' infrastructure; network architecture design, implementation and administration;
    • Operating systems, virtual machine environments, mainframe security packages, and relational database management systems.
  • Must have one of the following:
    • 2 years of experience in 2 of the following areas:
      • Data leakage/content monitoring and filtering;
      • Secure messaging/email encryption;
      • Mobile device security;
      • Disk, file, device, and database encryption;
      • Key management/Public Key Infrastructure (PKI);
      • Data classification, data tagging, data labeling, and privacy policies;
      • Digital Rights Management (DRM);
      • Logging, monitoring, and security event management;
      • Secure information storage.
    • 2 years of experience in one of the following regulatory requirements and/or compliance issues affecting clients related to privacy and data protection: PCI DSS, GLBA, Basel II, EU Data Protection Directive, International Cross Border and United States State Data Privacy Laws.
  • Travel required to meet client needs up to 80%, of which 10% may be international.
  • Employer will accept any suitable combination of education, experience, or training.


Alternatively, employer will accept a Master's degree in Computer Engineering, Technology Management, Information Systems, Engineering, Business Administration or related, and at least 1 year of experience, including the below:

  • Must have 1 year of experience in Cybersecurity concepts and methods, including vulnerability assessments, data classification, privacy assessments, incident response, security policy creation, enterprise security strategies, architectures and governance.
  • Must have 1 year of cumulative experience in any of the following:
    • Networking (TCP/IP or OSI model), operating system fundamentals (Windows, UNIX, or mainframe), security technologies (firewalls or IDS/IPS) and application programming/scripting languages (C, Java, Perl, or Shell);
    • Technical architecture experience integrating data protection software into clients' infrastructure; network architecture design, implementation and administration;
    • Operating systems, virtual machine environments, mainframe security packages, and relational database management systems.
  • Must have one of the following:
    • 1 year of experience in 2 of the following areas:
      • Data leakage/content monitoring and filtering;
      • Secure messaging/email encryption;
      • Mobile device security;
      • Disk, file, device, and database encryption;
      • Key management/Public Key Infrastructure (PKI);
      • Data classification, data tagging, data labeling, and privacy policies;
      • Digital Rights Management (DRM);
      • Logging, monitoring, and security event management;
      • Secure information storage.
    • 1 year of experience in one of the following regulatory requirements and/or compliance issues affecting clients related to privacy and data protection: PCI DSS, GLBA, Basel II, EU Data Protection Directive, International Cross Border and United States State Data Privacy Laws.
  • Travel required to meet client needs up to 80%, of which 10% may be international.
  • Employer will accept any suitable combination of education, experience, or training.
What we offer
We offer a comprehensive compensation and benefits package where you’ll be rewarded based on your performance and recognized for the value you bring to the business. The base salary for this job is $141,510 per year. In addition, our Total Rewards package includes medical and dental coverage, pension and 401(k) plans, and a wide range of paid time off options. Under our flexible vacation policy, you’ll decide how much vacation time you need based on your own personal circumstances. You’ll also be granted time off for designated EY Paid Holidays, Winter/Summer breaks, Personal/Family Care, and other leaves of absence when needed to support your physical, financial, and emotional well-being.
  • Continuous learning: You’ll develop the mindset and skills to navigate whatever comes next.
  • Success as defined by you: We’ll provide the tools and flexibility, so you can make a meaningful impact, your way.
  • Transformative leadership: We’ll give you the insights, coaching and confidence to be the leader the world needs.
  • Diverse and inclusive culture: You’ll be embraced for who you are and empowered to use your voice to help others find theirs.
If you can demonstrate that you meet the criteria above, please contact us as soon as possible.
EY exists to build a better working world, helping to create long-term value for clients, people and society and build trust in the capital markets.
This particular position at Ernst & Young in the United States requires the qualified candidate to be a "United States worker" as defined by the U.S. Department of Labor regulations at 20 CFR 656.3. You can review this definition at https://www.gpo.gov/fdsys/pkg/CFR-2011-title20-vol3/pdf/CFR-2011-title20-vol3-sec656-3.pdf at the bottom of page 750. Please feel free to apply to other positions that do not require you to be a "U.S. worker".