CMS-Senior-Incident Responder

In your role at EY, you'll have the chance to be part of a team of bright minds in cyber security, working together to provide the best solutions for clients. As a Security Operations Center (SOC) Level 3 (L3) team member, your responsibilities will include: - Leading the response to high-severity incidents, coordinating with other teams as needed. - Gathering and preserving evidence, performing data collection, and conducting structured analysis of forensic data. - Working closely with IT and security teams to address security incidents. - Analyzing network packet captures and performing endpoint analysis. - Proactively searching for threats and vulnerabilities within the environment. - Staying updated on the latest security trends and technologies. - Formulating response and recovery steps for security incidents. - Reviewing and improving incident response processes. - Documenting incidents, response actions, and lessons learned. - Providing guidance and mentorship to lower-level incident responders. To qualify for this role, you must have: - Experience with digital forensics tools and techniques. - Proficiency in utilizing SIEM solutions such as Splunk, Microsoft Sentinel, etc. - Experience with EDR/XDR solutions like CrowdStrike, Microsoft Defender, etc. - Understanding of security principles, techniques, and technologies. - In-depth knowledge of network protocols, operating systems, and security technologies. - Proficiency in incident detection and response tools. - Familiarity with malware analysis and reverse engineering. - Proficiency in scripting languages for automating tasks. - 5+ years of security-related experience. - Analytical mindset and willingness to work in a 24/7 operations center. - Strong problem-solving abilities and excellent communication skills. Additionally, having a Bachelors Degree relevant to Information Technology and related certifications such as CEH, CHFI, Sec+, etc., would be ideal. EY offers you the opportunity to work on inspiring projects, with a focus on education, coaching, and personal development. You will have the support of engaging colleagues, opportunities to develop new skills, and the freedom to handle your role in a way that suits you best. EY is committed to building a better working world by providing long-term value for clients, people, and society through trust, data, and technology. In your role at EY, you'll have the chance to be part of a team of bright minds in cyber security, working together to provide the best solutions for clients. As a Security Operations Center (SOC) Level 3 (L3) team member, your responsibilities will include: - Leading the response to high-severity incidents, coordinating with other teams as needed. - Gathering and preserving evidence, performing data collection, and conducting structured analysis of forensic data. - Working closely with IT and security teams to address security incidents. - Analyzing network packet captures and performing endpoint analysis. - Proactively searching for threats and vulnerabilities within the environment. - Staying updated on the latest security trends and technologies. - Formulating response and recovery steps for security incidents. - Reviewing and improving incident response processes. - Documenting incidents, response actions, and lessons learned. - Providing guidance and mentorship to lower-level incident responders. To qualify for this role, you must have: - Experience with digital forensics tools and techniques. - Proficiency in utilizing SIEM solutions such as Splunk, Microsoft Sentinel, etc. - Experience with EDR/XDR solutions like CrowdStrike, Microsoft Defender, etc. - Understanding of security principles, techniques, and technologies. - In-depth knowledge of network protocols, operating systems, and security technologies. - Proficiency in incident detection and response tools. - Familiarity with malware analysis and reverse engineering. - Proficiency in scripting languages for automating tasks. - 5+ years of security-related experience. - Analytical mindset and willingness to work in a 24/7 operations center. - Strong problem-solving abilities and excellent communication skills. Additionally, having a Bachelors Degree relevant to Information Technology and related certifications such as CEH, CHFI, Sec+, etc., would be ideal. EY offers you the opportunity to work on inspiring projects, with a focus on education, coaching, and personal development. You will have the support of engaging colleagues, opportunities to develop new skills, and the freedom to handle your role in a way that suits you best. EY is committed to building a better working world by providing long-term value for clients, people, and society through trust, data, and technology.