CTM - SOC Deployment Engineer

Job description / Role

Grade: Manager

EY is seeking the region’s best Cybersecurity Engineer who wants to join an elite team and have access to the latest global technologies for a Security Operations Center (SOC). This position fulfils the most critical role of deploying SOC technologies that are properly configured to identify the most sophisticated of Cyber-attacks. They will work closely with specialized and dedicated SOC operational teams, architects and engineers to onboard clients and be part of a global network of engineers that drive innovation. In addition, the SOC Deployment Engineer will be working closely with the Architect and Project Manager to ensure every project is a success.

The SOC Engineer for deployment will be responsible to deploy SOC services at client sites and internal SOC new services. The SOC Engineer will be required to review the customer current security technology configuration, identify the gaps based on industry best practices, standards, EY recommended practices as per clients requirements, and recommend the solutions to mitigate the identified gaps. They may also deploy, configure and tune security technology and controls to the client site and integrate that into the EY SOC ecosystem.

Key Responsibilities:
- Work closely with the SOC Deployment PM and SOC Deployment Architect
- Lead the technical deployment team to deliver successful SOC services at client locations
- Coordinate with client and EY engagement team to ensure client expectations are met
- Working closely with customers to understand their ecosystem network
- Configure agent, script rules and tune alerts as required
- Generate gap assessment reports
- Conduct technical training for client on use of products
- Maintain personal awareness of trends in security regulatory, technology, and operational requirements
- Assist with evaluation and integration of new products and technologies
- Ensure working Cyber technology are operational and smooth handover to the operational team and SOC Engineer

Requirements

We are looking for Cyber Security Operations Centre Professionals with capability and experience in some of the following areas:
- Excellent team work skills, passion and drive to succeed and combat Cyber threats
- Deployment and configuring SIEM technologies and platforms such as Splunk, Arcsight, QRadar or others
- Network monitoring technology platforms such as Fidelis XPS, RSA or others
- End point protection tools, techniques and platforms such as CarbonBlack, Symantec, McAfee or others
- Deployment of specific endpoint and network cybersecurity technical controls
- Threat Intelligence / feeds platform integration in SOCs
- Thorough knowledge of how the systems support Security Monitoring for the Analysts
- Cyber Incident Response
- Cyber Security Architectures
- Awareness of Big data analytics, dashboards, eGRC and behavioral analysis tools
- Awareness of Cyber OT and IoT issues
- Awareness of Attack & Penetration Testing / Ethical Hacking
- Awareness of Application Security Risk Assessment

Qualifications & Experience:

- Must have a Bachelor degree in either Computer, Information Systems or Engineering related field preferred
- 5 + years’ experience with Cyber technologies and preferrable within SOC
- In depth Desktop OS and Server OS knowledge
- Strong networking and application knowledge
- Strong analytical and problem solving skills
- Network monitoring technology platforms such as Fidelis XPS, RSA or others
- End point protection tools, techniques and platforms such as CarbonBlack, Symantec, McAfee or others
- Internationally recognized technical certifications in relevant areas
- Hands-on experience with TCP/IP, security concepts, WAN and LAN concepts, Routing Protocols, Firewall Security policies
- Hands-on experience with industry leading security vendor platforms, including products such as Juniper security devices, ASA, Snort, Cisco IDS, Websense, NetForensics, etc
- Hands-on experience with industry leading network management platforms
- Practical experience on customer service processes and solving issues
- Experience in VPN technology, PKI, AAA, and IDS concepts
- Ability and willingness to travel (75% +), often at short notice, on customer needs

About the Company

EY is a global leader in assurance, tax, transaction and advisory services. The insights and quality services we deliver help build trust and confidence in the capital markets and in economies the world over. We develop outstanding leaders who team to deliver on our promises to all of our stakeholders. In so doing, we play a critical role in building a better working world for our people, for our clients and for our communities.

EY refers to the global organization, and may refer to one or more, of the member firms of Ernst & Young Global Limited, each of which is a separate legal entity. Ernst & Young Global Limited, a UK company limited by guarantee, does not provide services to clients. Information about how EY collects and uses personal data and a description of the rights individuals have under data protection legislation are available on our site.

The MENA practice of EY has been operating in the region since 1923. For over 95 years, we have grown to over 7,500 people united across 21 offices and 16 countries, sharing the same values and an unwavering commitment to quality. As an organization, we continue to develop outstanding leaders who deliver exceptional services to our clients and who contribute to our communities. We are proud of our accomplishments over the years, reaffirming our position as the largest and most established professional services organization in the region