Cyber Threat Detection - Active Defense Analyst

At EY, we're all in to shape your future with confidence. We'll help you succeed in a globally connected powerhouse of diverse teams and take your career wherever you want it to go. Join EY and help to build a better working world. The Active Defense team is responsible for four core areas: Network Reconnaissance, Proactive Penetration Testing (Purple Team), Anomaly Analysis, and Trapping and Coercion.

Requirements

• Perform research and analysis of attacker techniques and methodologies, and emulate those attacks in a collaborative and controlled environment
• Identify security breaches through 'Hunting' operations within a SIEM, full packet capture, EDR, and other tools and treat intelligence
• Identify patterns consistent with sophisticated attacker methodologies, and report on security concerns as they are escalated or identified.
• Analyze artifacts collected during a security test or passive investigation.
• Communicate with server owners, system custodians, and IT contacts to pursue security testing activities, including: obtaining access to systems, digital artifact collection, and containment and/or remediation actions
• Create presentations in MS Word, PowerPoint, and/or Excel that support findings
• Maintain, manage, improve and update security testing process and protocol documentation
• Assist in analyzing findings, and develop fact based reports
• Identify means to disrupt attacker actions, and enhance defender response capabilities.

Benefits

• Medical and dental coverage
• Pension and 401(k) plans
• Paid time off options