At EY, you’ll have the chance to build a career as unique as you are, with the global scale, support, inclusive culture and technology to become the best version of you. And we’re counting on your unique voice and perspective to help EY become even better, too. Join us and build an exceptional experience for yourself, and a better working world for all.
Job Summary
As a Technical Engagement Manager in the Cyber Security Team, you will
Serve as the primary technical interface between the EY and the client, including managing client engagements and ensuring customer satisfaction. Provide technical input and guidance in the development of process improvements, tool development and other technical projects.
Client responsibilities:
Provide guidance and share knowledge with team members and participate in performing procedures focusing on complex, judgmental and/or specialized issues. Work with the team and the client to create plans for accomplishing engagement objectives and a strategy that complies with professional standards and addresses the risks inherent in the engagement. Brief the engagement team on the client's environment and industry trends. Maintain relationships with client management to manage expectations of service, including work deliverables and technical operations. Demonstrate a thorough understanding of complex information systems and apply it to client situations. Use extensive knowledge of the client's business/industry to identify technological developments and evaluate impacts on the client's business. Understand EY and its service lines and actively assess what the firm can deliver to serve clients. Create innovative insights for clients, adapts methods & practices to fit operational team needs & contributes to thought leadership documents. Facilitate discussions / knowledge sharing with key client personnel and contribute to EY thought leadership. Maintain a strong client focus by effectively serving client needs and developing productive working relationships with client personnel. Stay abreast of current business and economic developments and new pronouncements/standards relevant to the client's business. Demonstrate industry expertise (deep understanding of the industry, emerging trends, issues/challenges, key players & leading practices) Review status updates and prepare management presentations. Actively contribute to improving operational efficiency on projects & internal initiatives.
People responsibilities:
Identify buyers, influencers & stakeholders in existing client engagements and build strong relationships. Display teamwork, integrity and leadership. Work with team members to set goals and responsibilities for specific engagements. Foster teamwork and innovation. Drive performance management for self and team. Driving the quality culture agenda at GDS Manage the performance management for the direct reports, as per the organization policies Training and mentoring of project resources Participating in the organization-wide people initiatives
KEY RESPONSIBILITIES:
Planning
Work with the Service Delivery Manager in the management of client security services lifecycle Support the Service Transition Team in on boarding activities. Work with internal and external teams to establish clear agreements on scope and timeline. Provide guidance and review of technical security communications to client stakeholders. Provide client and operational teams guidance in the identification and development of relevant use-cases. Continual Service Improvement Proactively understand client needs and identify solutions to non-standard tasks/queries, while working with SDM to develop risk mitigation strategies to ensure contracted KPI/SLA are attained/maintained. Influence and advise client in ways to improve risk posture.
Communications and Reporting
Communicate and translate technical security information and operational capabilities to client personnel. Conduct periodic security workshops, e.g., Threat Hunting, Threat Modelling, TTPs, client sector threats and relevant vulnerabilities, etc. Review security reports from varied sources for presentation to internal and external audiences with differing levels of technical experience Present reports and incidents to the client during operational meetings; addressing advanced/complex questions on reported incidents and threats. Provide regular review and reporting around key performance metrics, providing formal or informal presentations to senior management and other stakeholders. Annual in person technical account review and workshop Weekly meetings (remote / telephone unless in proximity) Monthly reporting on overall security service delivery (technical)
Security Management
Monitor through closure escalated issues and/or security requests, and actions. Represent the client towards internal CMS stakeholders and other partners. Management of complex escalations relating to the service Provide oversight on Change Management activities ensuring actions taken are aligned with Client Change Management policies and changes are reviewed for risk. Advise the client security management or board of significant emerging threats, and recommend both strategic and tactical steps to counteract these threats. Lead quarterly reviews of the incident response plan to ensure accuracy in accordance with organizational and infrastructure changes.
To qualify, candidates must have:
B. Tech./ B.E./BCA/MCA/MSc/BSc/MBA/PGDM/ Ph.D. with sound technical skills Strong command on verbal and written English language. Strong Hands-on expertise of SIEM technologies such as Microsoft Sentinel, Splunk from a security analyst’s point of view Expert knowledge and experience in Security Monitoring Expert knowledge and experience in Cyber Incident Response Knowledge in cloud security and IOT/OT is a value add. Knowledge in Network monitoring technology platforms such as Fidelis XPS and ExtraHop Knowledge in endpoint protection tools, techniques, and platforms such as Carbon Black, Defender, CrowdStrike Any two of the following certifications: CISSP, GCIH, GMON, GCIA, CISM. In-depth knowledge of security concepts such as cyber-attacks and techniques, threat vectors, risk management, incident management etc. Excellent communication and leadership skills Good analytical, problem solving and interpersonal skills
EY | Building a better working world
EY exists to build a better working world, helping to create long-term value for clients, people and society and build trust in the capital markets.
Enabled by data and technology, diverse EY teams in over 150 countries provide trust through assurance and help clients grow, transform and operate.
Working across assurance, consulting, law, strategy, tax and transactions, EY teams ask better questions to find new answers for the complex issues facing our world today.