Technology Consulting- Cloud Security Architect, AM/Manager
General Information
Location: Dublin
Available for Work Visa Sponsorship: NO
Business Area: Tech Consulting - Cyber Security
Contract Type: Full-Time - Permanent
EY's Cyber Security practice is one of the fastest growing areas of the business with an immediate requirement for a security architect. As part of our Cyber team, you will provide advisory and technical support to help our clients improve their cyber security posture in response to dynamic Cyber Security threats. You will provide security domain expertise and utilize your business insight to work closely with our clients to advise, design, build, deploy, and test pragmatic security solutions that will yield real and tangible benefits and security enhancements.
The opportunity
You will be a core member of a highly skilled and rapidly growing team of Technical Security specialists. As a member of the team, you will have the opportunity to grow your career in leading the delivery of security architecture and design solutions with significant opportunities for leadership experience and career progression.
Your key responsibilities
Your role as a security architect will involve assisting in security architecture design reviews throughout the lifecycle of complex projects across a wide selection of technologies and platforms for our clients' digital solutions. You will secure enterprise information by determining security requirements; planning, implementing, and testing security systems; preparing security standards, policies, and procedures; and mentoring team members.
You will belong to an internationally connected team of specialists helping clients with their most complex cybersecurity needs and contributing toward their security posture and business resilience.
Knowledge and Skills for the role include
1. Ability to take on responsibility for project security review reports and to follow these through to completion, including liaising with security and project stakeholders and offering robust security posture advice, ensuring formal security approval of 'go live' scenarios.
2. Ability to independently lead and support remote teams in performing complex architecture reviews in a variety of environments, liaising with several teams across different client sites.
3. Expert-level security knowledge in technical domains.
4. Understanding and experience designing and implementing enterprise security and solution security architectures for large organizations leveraging frameworks such as SABSA and TOGAF.
5. Implementation of cybersecurity controls using industry-leading practices such as NIST CSF, NIST 800-53, OWASP, Centre for Internet Security (CIS), ISO 27001, COBIT, etc.
6. Experience in maintaining compliance with regulations and standards such as NISD, GDPR, PCI-DSS in executing security architecture design reviews and advice, in addition to audit requirements and exacting reporting formats.
7. Experience in security vulnerability identification, application security remediation, and threat modeling approaches such as cyber kill chain, STRIDE, exposure analysis.
8. An in-depth awareness and understanding of the cyber and business risks associated with the threat and vulnerability and penetration testing domain.
9. Requirement to stay up-to-date on current security threats, trends, and control solutions.
10. Experience in preparing system security reports by collecting, analyzing, and summarizing data and trends for project and operational governance reporting.
11. A consultative manner and customer-facing skills with the ability to communicate with stakeholders at all levels and advise on best practices in the security domain.
12. Excellent communication and stakeholder management skills, with the ability to negotiate and manage expectations with business and technology stakeholders.
Experience and attributes for success:
Experience:
1. 5-7 years' experience working in cyber security technical roles advising on security controls design, implementation, and testing across various sectors.
2. Experience with audits of compliance frameworks such as PCI, ISO, or HIPAA.
3. Experience in 'Big 4' or similar consultancy experience in the Irish market.
4. Track record in supporting the delivery of a broad range of cyber security controls and projects in an Enterprise environment.
5. Government, Transport, Financial sector experience desirable.
6. Driven cyber security professional with a passion for information security and securing client infrastructures.
7. Strong analytical skills to solve technical issues and flexibility in handling multiple issues at once.
You will also have focused on some of these areas in the past:
1. Application, Mobile, IoT, Cloud, Infrastructure, and Network Security controls.
2. Programming/scripting experience (Powershell, ASP, .NET, Python, Perl).
3. Log analysis and configuration reviews across infrastructure components including Servers, Firewalls, WAFs, SIEM, VMware.
4. Security Engineering or Architecture (SABSA an advantage).
5. Knowledge of CI/CD would be an advantage.
6. Specifying and performing vulnerability analysis and reviewing pen test and scan results.
Attributes:
1. Excellent communication and project management skills (verbal and written).
2. Excellent organizational and problem-solving skills in addition to strong attention to detail.
3. Excellent working knowledge of Microsoft PowerPoint, Word, Excel, and online research tools.
4. Strong collaboration skills, ideally working with global and multi-functional teams.
5. Ability to prioritize and work to tight deadlines and manage own caseload.
6. The ability to learn quickly and to work well under pressure.
7. The ability to listen attentively and express complex issues concisely to clients.
8. An enquiring mind, the tenacity to overcome technical challenges, and an ability to approach problems from different perspectives.
9. Show leadership and motivate teams, including project management of consultancy projects.
10. Participate in the implementation or deployment of new tools, processes, and best practices to improve knowledge sharing and to raise security levels while promoting security awareness among team members.
Qualifications:
1. Undergraduate or master's degree preferably in one of the following areas: Information Security, Cyber Security, Cloud Computing, Information Systems, Computer Science, Engineering, and/or other equivalent industry certification.
2. Industry-related certification preferred (e.g., CISSP, CISM, SANS, SABSA, TOGAF).
3. Cloud Security (Azure AZ900, AZ500 and AWS Security an advantage).
What working at EY offers
We offer a competitive remuneration package. Our comprehensive Total Rewards package includes support for flexible working and career development. With FlexEY, you can select benefits that suit your needs, covering holidays, health and well-being, insurance, savings, and a wide range of discounts, offers, and promotions.
* Support and coaching from some of the most engaging colleagues around.
* Opportunities to develop new skills and progress your career.
* The freedom and flexibility to handle your role in a way that's right for you.
Career Progression
* When you join EY, you will be supported to ensure that you are enhancing your skills from day one.
* Continuous learning, where you can develop the mindset and skills to navigate whatever comes next.
* As you grow and develop here, you'll discover opportunities to help customize your career journey, so that it's as unique as you are.
* Transformative leadership, we will give you the insights, coaching, and confidence to be the leader the world needs.
* Diverse and inclusive culture, you will be embraced for who you are and empowered to use your voice to help others find theirs.
* We have embraced Hybrid working at EY, adding greater flexibility and autonomy to the roles of our employees.
About EY
As a global leader in assurance, tax, transaction, and advisory services, we're using the finance products, expertise, and systems we've developed to build a better working world. That starts with a culture that believes in giving you the training, opportunities, and creative freedom to make things better.
Inclusion & Diversity
We hold a collective commitment to foster an environment where all differences are valued and respected. Our ability to include various viewpoints into our mindsets, behaviors, and operations is fundamental to driving innovation, building strong relationships, and delivering the best solutions for our clients.
As an equal opportunities employer, we welcome applications from people of all backgrounds. Reasonable accommodations are offered at every stage of our recruitment process.
Join us in building a better working world. That's Why, EY.
Apply now.
IMPORTANT: Where Agency assistance is required, our Talent Team will engage directly with suppliers. CVs / Profiles should not be shared directly with Hiring Managers. Unsolicited CVs / Profiles supplied to EY by Recruitment Agencies will not be accepted for this role. #J-18808-Ljbffr