Cloud Security Architect - Tech Consulting - AM/Manager
General Information
Location: Dublin
Available for Work Visa Sponsorship: NO
Business Area: Tech Consulting - Cyber Security
Contract Type: Full-Time - Permanent
The opportunity
EY's Cyber Security practice is one of the fastest growing areas of the business with an immediate requirement for a security architect. As part of our Cyber team, you will be providing advisory and technical support to help our clients improve their cyber security posture to respond to the dynamic Cyber Security threats. You will provide security domain expertise and utilise your business insight to work closely with our clients to advise, design, build, deploy and test pragmatic security solutions that will give real and tangible benefits and security enhancement.
Your key responsibilities
Your role will be as a security architect to assist in security architecture design reviews through the lifecycle of complex projects across a wide selection of technologies and platforms for our client's digital solutions. You will secure enterprise information by determining security requirements; planning, implementing, and testing security systems; preparing security standards, policies, and procedures; mentoring team members.
Knowledge and Skills for the role include
* Ability to take on responsibility for project security review reports and to follow these through to completion including liaising with security and project stakeholders and offer robust security posture advice and ensuring formal security approval of 'go live' scenarios.
* Ability to independently lead and support remote teams in performing complex architecture reviews in a variety of environments, liaising with several teams across different client sites.
* Expert-level security knowledge in technical domains.
* Understanding and experience designing and implementing enterprise security and solution security architectures for large organisations leveraging frameworks such as SABSA and TOGAF.
* Implementation of cybersecurity controls using industry-leading practices such as NIST CSF, NIST 800-53, OWASP, Centre for Internet Security (CIS), ISO 27001, COBIT etc.
* Experience in maintaining compliance with regulations and standards such as NISD, GDPR, PCI-DSS etc in executing security architecture design reviews and advice, in addition to audit requirements and exacting reporting formats.
* Experience in security vulnerability identification, application security remediation and threat modelling approaches such as cyber kill chain, STRIDE, exposure analysis etc.
* An in-depth awareness and understanding of the cyber and business risks associated with the threat and vulnerability and penetration testing domain.
* Requirement to stay up-to-date on current security threats, trends and control solutions.
* Experience in preparing system security reports by collecting, analysing, and summarizing data and trends for project and operational and project governance reporting.
* A consultative manner and customer-facing skills with the ability to communicate with stakeholders at all levels and advise on best practices in the security domain.
* Excellent communication and stakeholder management skills and ability to negotiate and manage expectations with business as well as technology stakeholders.
Experience and attributes for success:
Experience:
* 5-7 years' experience working in cyber security technical roles advising on security controls design, implementation and testing across various sectors.
* Experience with audits of compliance frameworks such as PCI, ISO, or HIPAA.
* Experience in 'Big 4' or similar consultancy experience in the Irish market.
* Track record in supporting the delivery of a broad range of cyber security controls and projects in an Enterprise environment.
* Government, Transport, Financial sector experience desirable.
* Driven cyber security professional with a passion for information security and securing client infrastructures.
* Strong analytical skills to solve technical issues and flexibility in handling multiple issues at once.
Qualifications:
* Undergraduate or master's degree preferably in one of the following areas: Information Security, Cyber Security, Cloud Computing, Information Systems, Computer Science, Engineering, and/or other equivalent industry certification.
* Industry-related certification preferred (e.g. CISSP, CISM, SANS, SABSA, TOGAF).
* Cloud Security (Azure AZ900, AZ500 and AWS Security an advantage).
What working at EY offers
We offer a competitive remuneration package. Our comprehensive Total Rewards package includes support for flexible working and career development, and with FlexEY you can select benefits that suit your needs, covering holidays, health and well-being, insurance, savings and a wide range of discounts, offers and promotions. Plus, we offer:
* Support and coaching from some of the most engaging colleagues around.
* Opportunities to develop new skills and progress your career.
* The freedom and flexibility to handle your role in a way that's right for you.
Join us in building a better working world. That's Why, EY.
Apply now. #J-18808-Ljbffr