Job Description

At EY, you\xe2\x80\x99ll have the chance to build a career as unique as you are, with the global scale, support, inclusive culture and technology to become the best version of you. And we\xe2\x80\x99re counting on your unique voice and perspective to help EY become even better, too. Join us and build an exceptional experience for yourself, and a better working world for all.
EY- Cyber Security (DPP) \xe2\x80\x93 Cloud Data Protection \xe2\x80\x93 Consulting \xe2\x80\x93 Senior As part of our EY-Cyber security in the Risk Consulting team, your role will be primarily responsible for the daily monitoring and/or maintenance of the enterprise Data Protection tools/solutions. The main duties of the person in this role will include proper care and administration of the Data Protection tools, monitoring and responding to the alerts that generate from the tool. This person will interface with IT Operations, Network Operations, Infrastructure teams, Legal, Risk Management, etc.
The opportunity We\xe2\x80\x99re looking for Security Analyst in the Risk Consulting team to work on various privacy/data protection related projects for our customers across the globe. In line with EY\xe2\x80\x99s commitment to quality, consultant shall confirm that work is of the highest quality as per EY\xe2\x80\x99s quality standards and is reviewed by the next-level reviewer. As an influential member of the team, consultant shall help to create a positive learning culture, coach and counsel junior team members and help them to develop.
Your key responsibilities

• Build DATA PROTECTION solution concepts and deployment requirements
• Deploying DATA PROTECTION tools and implementation of endpoint protection.
• Work with vendors to support the DATA PROTECTION technology (troubleshooting, upgrades, etc.)
• Administration of the Data Protection tools which includes configuring policies, upgrading and patching, etc.
• Monitor and respond to alerts generated from the Data Protection systems and other technologies
• Understand and follow the incident response process through event escalations
• Respond to escalations by the Incident Response Team
• Follow processes to maintain the leading DLP/DATA CLASSIFICATION/CASB/Discovery system
• Assisting clients in privacy related incident response activities.
• Supporting the client\xe2\x80\x99s team by acting as an interim team member (e.g. security officer, security manager, security analyst.)

Skills and attributes for success

• Hands-on experience with key components of Data Security including (but not limited to):
• Data Security concepts related to Governance, Risk & Compliance
• Primary Skills: DLP / Data Classification / CASB / DAM
• Secondary Skills: Encryption, Tokenization, PKI, CLM Technology support and Event Handling
• Experience of Administration of the DLP, CLASSIFICATION, CASB, DAM tools which includes configuring policies, upgrading, and patching for leading vendors. (Microsoft MIP, McAfee, Forcepoint, Netskope, Digital Guardian, IBM, Vormetric, Venafi, MS PKI etc.)
• Experience with Design and Implementation of the above tools will be preferred
• Experience with Regulations / standards such as ISO 27001, PCI DSS, HIPAA, HITRUST, GDPR, CCPA
• Extend required support for any reported data protection and privacy incidents such as information breaches and leakages.
• Ability to guide teams through the design and implementation of Data security solutions that reduce vulnerability, strengthen controls, and optimize organizational efficiency
• In depth knowledge of general security concepts, such as Defense-in-depth, least privilege, security architecture and design, etc.
• Develops budget, scope and staffing recommendations based on understanding of client budget and project economics
• Experience of managing a large team to deliver Cyber services on its own or within large complex projects
• Review of Data Protection & Privacy engagements during different phases of the lifecycle \xe2\x80\x93 assess, design, and implementation
• Develop strategic and tactical Data security remediation recommendations / cyber risk roadmap to address identified security gaps
• Should be a good team player.
• Excellent verbal and written communication skill.
• Proficient Documentation and Power Point skills
• Good social, communication and technical writing skills
• Should interface with internal and external clients.
• Strong analytical/problem solving skills.
• Ability to prioritize tasks and work accurately under pressure in order to meet deadlines.
• Should understand and follow workplace policies and procedures.
• Should independently manage the assigned project/engagement with minimal oversight/guidance from the manager.

To qualify for the role, you must have

• Bachelor\'s or master\xe2\x80\x99s degree in Computer Science, Information Systems, Engineering or a related field.
• At least 5+ years of experience in one or more of the following:
• Data Security concepts related to Governance, Risk & Compliance
• DLP / Data Classification / CASB / Data Discovery Technology support and Event Handling
• Experience of Administration of the DLP, CLASSIFICATION, CASB, Data Discovery tools which includes configuring policies, upgrading, and patching for leading vendors. (Microsoft MIP, Boldon James, Titus, Forcepoint, Digital Guardian, McAfee etc.)
• Experience with Design and Implementation of above tools will be preferred
• Technical/Vendor certification will be added advantage.
• Maintain current data protection and privacy expertise, skills and competences.
• Ability to independently research and solve technical issues.
• Demonstrated integrity in a professional environment.
• Knowledge of core Information Security concepts related to Governance, Risk & Compliance.
• Ability to work in and adapt to a changing environment.
• Extend required support for any reported data protection and privacy incidents such as information breaches and leakages.
• Ability to communicate in a clear and concise manner.

Ideally, you\xe2\x80\x99ll also have

• Professional certificate or be actively pursuing related professional certifications such as the CompTia Security+, CEH or Vendor/Technical certification. If not, certified candidates are expected to complete one of the business required certifications within 12 months of hire.
• To expect some weekend work and 20%-30% travel based on job requirement.

What we look for

• A Team of people with commercial acumen, technical experience and enthusiasm to learn new things in this fast-moving environment with consulting skills.
• An opportunity to be a part of market-leading, multi-disciplinary team of 1400 + professionals, in the only integrated global transaction business worldwide.
• Opportunities to work with EY Consulting practices globally with leading businesses across a range of industries.

What working at EY offers At EY, we\xe2\x80\x99re dedicated to helping our clients, from start\xe2\x80\x93ups to Fortune 500 companies \xe2\x80\x94 and the work we do with them is as varied as they are. You get to work with inspiring and meaningful projects. Our focus is education and coaching alongside practical experience to ensure your personal development. We value our employees and you will be able to control your own development with an individual progression plan. You will quickly grow into a responsible role with challenging and stimulating assignments. Moreover, you will be part of an interdisciplinary environment that emphasizes high quality and knowledge exchange. Plus, we offer:

• Support, coaching and feedback from some of the most engaging colleagues around
• Opportunities to develop new skills and progress your career
• The freedom and flexibility to handle your role in a way that\xe2\x80\x99s right for you

EY | Building a better working world

EY exists to build a better working world, helping to create long-term value for clients, people and society and build trust in the capital markets.

Enabled by data and technology, diverse EY teams in over 150 countries provide trust through assurance and help clients grow, transform and operate.

Working across assurance, consulting, law, strategy, tax and transactions, EY teams ask better questions to find new answers for the complex issues facing our world today.