The cybersecurity landscape is in a constant state of change . Organizations today must increasingly rely on new and disruptive technologies to help them grow and differentiate in the evolving marketplace. Organizations that lack effective cybersecurity measures to help manage this change, face breaking the trust of their customers, stakeholders, and the marketplace while exposing themselves to ever increasing risk. As a part of our Cybersecurity team, you'll be right at the heart of that goal, helping clients gain insight and context to their complex environments and assessing, improving, and building infrastructure, processes and policies to meet the client's cybersecurity needs. You'll get to use your technical and business skills to help us drive this mission and have an impact on cybersecurity at a global level.
You'll work alongside respected industry professionals, learning about and using the latest tools and
Your key responsibilities
Our cybersecurity services assist our clients in aligning security management strategy with business goals. With a focus on cloud security and security architecture, you will serve in a key role of leading technical discussions, guiding the development of strategic and tactical security architecture efforts, designing and driving remediation and implementations to completion, and function overall as a technical security leader for traditional (i.e. on-premises) and cloud-based security architectures.
Skills and attributes for success
- Effectively lead and motivate client engagement teams and provide technical leadership in the assessment, design, and implementation of security and IT risk solutions
- Foster an innovative and inclusive team-oriented work environment, including playing an active role in counselling and mentoring junior consultants within the firm
- Knowledge of the current IT environment and industry trends to identify engagement and client service issues, and communicate this information to the engagement team and client management through written correspondence and verbal presentations, including staying abreast of current business and industry trends relevant to the client's business
- Knowledge of cloud delivery, cloud services, leading security practices, and deployment models for Infrastructure as a Service (IaaS), Platform as a Service (PaaS), and Software as a Service (SaaS) offerings
- Knowledge of key cloud security standards (e.g., NIST, CIS, ISO, CSA STAR)
- Knowledge of good industry practice in tiered security architecture design
- Consistently deliver quality client services by driving high-quality work products within expected timeframes and on budget, monitoring progress, managing risk, ensuring key stakeholders are kept informed about progress and expected outcomes, and assisting with business development opportunities
- Ability to document reference architectures, network schematics, blueprints, patterns, and other types of architectural documentation
- Knowledge and ability to leverage artificial intelligence (AI) technologies across security domains
To qualify for the role you must have
- A bachelor's degree in a related field and approximately five (5) years of related work experience; a graduate degree and approximately four (4) years of related work experience
- Experience in one or more of the following:
- Amazon Web Services (AWS), Microsoft Azure, and Google Cloud Platform (GCP), Alibaba Cloud, Oracle Cloud
- Zero Trust and other security edge technologies such as Zscaler, Netskope, Cloudflare, etc.
- Providing security review of network and system architecture designs
- Operating as an IT architect or security architect within complex projects
- Technical knowledge in some of the following domains in a cloud or on-premise context: routing/switching, stateful or next gen firewalls (NGFW), distributed denial of service (DDoS) mitigation, web application firewalls, intrusion detection / prevention systems (IDS/IPS), network segregation, security information and event management (SIEM), Container and Orchestration technologies, Infrastructure as Code, and other threat and vulnerability management capabilities
- Creating or securing cloud solutions for some of the following cloud / cloud security technologies: identity and access management (IAM), two-factor authentication (2FA), SIEM, public key infrastructure (PKI), network security, firewalls, IDS/IPS, anti-malware, email security, web content filtering, DDoS mitigation, endpoint detection & response, patch management, configuration management, data loss protection (DLP), application security, Zero Trust, Secure Access Service Edge (SASE) and other relevant cloud / cloud security technologies
- AI technologies and how those can be utilized in security domains
- Experience in process definition, workflow design, and process mapping
- A valid driver's license in the US and a valid passport required; willingness and ability to travel internationally and a willingness to travel; travel is estimated at 60-80%
Ideally, you'll also have
- Strong presentation and communication skills and ability to speak with director, C-suite and VP levels
- Relevant security certifications (e.g., CISSP, CISM, CCSP)
- Relevant cloud certifications (e.g., AWS, GCP, Azure)
What we offer
We offer a comprehensive compensation and benefits package where you’ll be rewarded based on your performance and recognized for the value you bring to the business. The base salary range for this job in all geographic locations in the US is $143,500 to $263,200. The salary range for New York City Metro Area, Washington State and California (excluding Sacramento) is $172,200 to $299,100. Individual salaries within those ranges are determined through a wide variety of factors including but not limited to education, experience, knowledge, skills and geography. In addition, our Total Rewards package includes medical and dental coverage, pension and 401(k) plans, and a wide range of paid time off options. Join us in our team-led and leader-enabled hybrid model. Our expectation is for most people in external, client serving roles to work together in person 40-60% of the time over the course of an engagement, project or year. Under our flexible vacation policy, you’ll decide how much vacation time you need based on your own personal circumstances. You’ll also be granted time off for designated EY Paid Holidays, Winter/Summer breaks, Personal/Family Care, and other leaves of absence when needed to support your physical, financial, and emotional well-being.
- Continuous learning: You’ll develop the mindset and skills to navigate whatever comes next.
- Success as defined by you: We’ll provide the tools and flexibility, so you can make a meaningful impact, your way.
- Transformative leadership: We’ll give you the insights, coaching and confidence to be the leader the world needs.
- Diverse and inclusive culture: You’ll be embraced for who you are and empowered to use your voice to help others find theirs.
EY exists to build a better working world, helping to create long-term value for clients, people and society and build trust in the capital markets.