EY Security Monitoring SIEM Engineer 

Poland, Masovian Voivodeship, Zgorzała 

247108980

Your key responsibilities

The successful candidate will be primarily responsible for:

• Engineer security solutions and services following all relevant EY standards and practices for On-Premise, Hybrid and Cloud-Based environments
• Collaborate with architecture to plan, design, and implement SIEM solutions within multi-cloud environments such Azure, AWS, GCP or similar technologies including
• Strong understanding of data pipeline architecture and implementation, data collection experience, out of the box data connectors, Linux configuration, Syslog/CEF (Common Event Format)
• Experience with log collection methods including CRIBL implementation and Architecture
• Data retention options within Sentinel Platform
• Testing, Deployment, Configuration of Azure Monitoring Agent (AMA) and Azure ARC for connected machines in a global environment
• Azure RBAC as it applies to Microsoft Sentinel and Log Analytics Workspaces, at Tenant, Subscription, Resource and Table Level.
• Experience with KQL query language and KQL Functions
• Knowledge of Analytic rules, Logic Apps, Azure Function, and other cloud service workflow tools
• Accountable for the implementation, integration, delivery, and maintenance of new and existing SIEM solutions

Skills and attributes for success

We are interested in people who bring in security experience from having implemented and supported solutions in a large enterprise environment. As a successful candidate you will have functional, technical, and delivery experience in implementing both Cloud and On-Premises SIEM technologies.

• Communicate fluently in English, both written and verbal and able to communicate technical concepts effectively
• Excellent interpersonal communication and organizational skills and the ability to work within tight time periods.
• Rapidly learn new and emerging technologies with ability to rapidly define engineering standards
• Experience working in a diverse global environment building strong relationships across all levels of a matrixed, geographically, and culturally dispersed organization.
• Flexibilty to periodically work off hours to implement complex changes

To qualify for the role, you must have

• Approximately 5-7 years of experience in Security, including demonstratable knowledge of SIEM technologies
• 3+ years proven ability in an engineering function.
• Technical ability in Azure, Google and/or AWS Cloud services, hybrid, and on-premises security solutions including Linux and Windows Operating Systems
• Technical ability with SaaS, IaaS, and PaaS solutions.
• Understanding of other technologies required to run a secure, enterprise level infrastructure that adhere to security best practices.
• Excellent time management, organizational, and decision-making skills
• Ability to design and document processes, procedures, and security designs clearly and accurately for distribution to internal teams and customers.
• Demonstrated experience in dealing with external vendors and suppliers in the IT industry.
• Technical proficiency interacting with APIs and scripting tools (Python, Ansible, PowerShell, etc.), is a plus.

Ideally, you’ll also have

• Bachelor’s Degree in Computer Science, Engineering, IT, Mathematics or a related field, or equivalent work experience required.
• GSEC/GCLD/CISSP/GCSP or other security related generalist certification from ISC2 or GIAC
• At least one technical certification from a public cloud provider, ideally Azure, AWS, or Google
• Experience in project management, service introduction, and service readiness

What we look for

• Critical thinking skills demonstrating analytical and systematic approach to problem solving and a high degree of self-motivation
• Experience working in a global virtual environment
• Good interpersonal, communication and presentation skills
• Good judgement, tact, and decision-making ability
• Ability to deal with ambiguity and change, and exercise appropriate time management to meet deliverables
• Prioritization of work items to ensure timelines are achieved

What we offer

•Continuous learning:You’ll develop the mindset and skills to navigate whatever comes next.

•Success as defined by you:We’ll provide the tools and flexibility, so you can make a meaningful impact, your way.

•Transformative leadership:We’ll give you the insights, coaching and confidence to be the leader the world needs.

•
Diverse and inclusive culture:You’ll be embraced for who you are and empowered to use your voice to help others find theirs.

EY exists to build a better working world, helping to create long-term value for clients, people and society and build trust in the capital markets.

If you can demonstrate that you meet the criteria above, please contact us as soon as possible.

In compliance with the requirements of the Whistleblower Protection Act, our company has established the Procedure for reporting breaches of law and undertaking appropriate follow-up actions. Any misconduct should be reported through the EY Ethics Hotline.