EY GDS Consulting Cyber Security - L2 SOC Analyst 

Philippines, Taguig 

912191997

Skills and attributes for success

• Assess incidents, understand the scope, and manage response efforts efficiently.
• Escalate incidents to higher authorities when needed and adhere to established incident response protocols.
• Awareness of current threat landscapes, including malware, phishing, and advanced persistent threats.
• Should be able to guide the team in critical situations.
• Excellent verbal and written communication skills for incident reporting and team collaboration.
• Ability to work with other people and teams to enhance overall security posture.
• Capable of training junior analysts and sharing knowledge with the team to strengthen capabilities.
• Participate in post-incident reviews to identify lessons learned and recommend improvements to processes and technologies.

To qualify for the role, you must have

• 4+ years of experience in SOC operations, including experience in investigation and response.
• Experience in Splunk, Sentinel, Logscale or any other SIEM tools. Good understanding of different log sources and their purpose.
• Good knowledge of EDR technologies and platforms such as CrowdStrike, Defender, XSIAM, Tanium.
• Skilled in analysing endpoint and network logs and alerts coming from security tools such as EDR, OS, firewall, IPS, email, WAF, proxy, authentication, VPN logs.
• Should be able to develop a logic and SIEM query to corelate different logs to extract the required data, anomaly pattern, and be able to investigate.
• Experience in SOC use case development. Minimum, building new monitoring use case logic and proposing to the stakeholders.
• Experienced in different attack investigation including, endpoint, network, web application, database, cloud resources, etc.
• Good understanding of recent vulnerabilities and attacks.
• Knowledgeable on Cyber Threat Intelligence, analysing intelligence alerts, and providing recommendations.

Ideally, you’ll also have

• Bachelor’s Degree relevant to Information Technology
• Related Certification such as CEH, CHFI, Sec+, ITILv3, GCFA, ECIH, GCIH, CySA+, etc

At EY, we’re dedicated to helping our clients, from start–ups to Fortune 500 companies — and the work we do with them is as varied as they are.
You get to work with inspiring and meaningful projects. Our focus is education and coaching alongside practical experience to ensure your personal development. We value our employees and you will be able to control your own development with an individual progression plan.You will quickly grow into a responsible role with challenging and stimulating assignments. Moreover, you will be part of an interdisciplinary environment that emphasizes high quality and knowledge exchange. Plus, we offer:

• Support, coaching and feedback from some of the most engaging colleagues around
• Opportunities to develop new skills and progress your career
• The freedom and flexibility to handle your role in a way that’s right for you

Apply now

EY exists to build a better working world, helping to create long-term value for clients, people and society and build trust in the capital markets.