EY Senior Consultant - SIEM Engineer Cybersecurity 

New Zealand, Auckland, Auckland 

927545381

Ko te rourou kei ō ringa I The choice is yours

This role is based in our [Tāmaki Makaurau (Auckland) office, you’ll work with a values-based team of amazing technologists who are always growing, learning, and adapting, both in and out of the office.

• Technical Lead for threat detection and response onboarding projects
• Design, build, support, and optimise SIEM and EDR platforms used in threat detection and response services
• Monitor and respond to security alarms\alerts\incidents in SIEM and EDR platforms
• Escalate security alarms\alerts\incidents to clients as defined per engagement
• Monitor and manage tickets in accordance with processes defined in the security operations manual and SLA’s
• Support junior team members in delivering SOC services to clients
• Participate in client facing meetings
• Deliver services to contract terms and SLA’s
• Follow Information Technology Infrastructure Library (ITIL) practices regarding service request, incident, problem and change management
• Contribute to security operations continuous improvement program
• Communicate effectively with customers, teammates, and management.

He Rourou Pūmanawa I What we look for

We’re interested in your strengths, what you want to learn, and how far you want to go.

• Proven experience within information security, specifically in a security operations and vulnerability discovery or information operations/incident role.
• Strong working knowledge of at least three of the following security tools: SIEM, EDR, host-based antivirus, anti-spam gateway solutions, firewalls, IDS/IPS, server and network device hardening, data loss prevention, forensics software, vulnerability management, website security
• Experience with utilising security tools, specifically Microsoft Sentinel, is a must. It is also beneficial to have experience with Splunk, Crowdstrike NextGen SIEM & Falcon, MS Defender, Tenable, Qualys, and ServiceNow.
• Knowledge of general security concepts and methods

It's great, but not required, if you have:

• Experience with Windows, Linux, UNIX, any other major operating systems
• Ability to mesh sound technical and security practices to problem solving
• Demonstrate in-depth technical capabilities and professional knowledge
• Additional certifications and training preferred in the following areas: Network Security certifications (CISSP, Security+, SANS, ISACA, Vendor Certificates), Project Management training/certification, and Quality Management (ITIL, Six Sigma, TQM, etc.) training/certification

• Career development:

• Flexible work arrangements:Our flexible work policies empower you to balance your professional and personal life, fostering a culture of trust and autonomy.

• A comprehensive benefits package: From a yearly wellness incentive, to access to additional 8 weeks of flex leave per year, and family-friendly policies, including 26 weeks of gender-neutral paid parental leave, we cater to your diverse needs to help you thrive both personally and professionally

• We offer a competitive salary which is open to negotiation pending on skills and experience.

or +61 3 8650 7788 (option 2). Anything you tell us will be kept completely confidential.

Our preferred applicant will be required to undertake employment screening by EY or our external third-party provider.

© 2025 Ernst & Young New Zealand. A member firm of Ernst & Young Global Limited. All Rights Reserved. Liability limited by a scheme approved under Professional Standards Legislation.