Network Engineering Security Specialist

Security Engineer
Today’s world is fueled by vast amounts of information. Data is more valuable than ever before. Protecting data and information systems is central to doing business, and everyone in EY Information Security has a critical role to play. Join a global team of almost 900 people who collaborate to support the business of EY by protecting EY and client information assets! Our Information Security professionals enable EY to work securely and deliver secure products and services, as well as detect and quickly respond to security events as they happen. Together, the efforts of our dedicated team help protect the EY brand and build client trust.

Within Information Security we blend risk strategy, digital identity, cyber defense, application security and technology solutions as we consider the entire security lifecycle. You will join a team of hardworking, security-focused individuals dedicated to supporting, protecting and enabling the business through innovative, secure solutions that provide speed to market and business value.

The opportunity
As a Security Engineer within the Security Technology Services (STS) group, become part of a global team responsible for the design, engineering, implementation and early life cycle support within our EY multi-cloud and on-premise environments. This role will work closely across teams and with Security Architects, Service Delivery, Security Operations, and Cyber Defense for the enablement of security solutions and services. You will also provide consulting services to other teams, and as a level four contact for operational issues.

Your key responsibilities

• Engineer security solutions and services following all relevant EY standards and practices for on-premise, Hybrid and Cloud-Based environments.
• Leads the design, implementation, testing of security solutions and services for a large or more complex project to its completion which includes production support and documentation.
• Takes accountability for the design, delivery and maintenance of new and existing security solutions or services, driving compliance with and contributing to the development of relevant standards.
• Apply modern standards/principles, global product-specific guidelines, security standards, design standards, to security solutions and services as appropriate.
• Improve existing security solutions and services in use by partnering with Security Architecture, STS Service Owner, and Security Operations. Drives automation and innovation across the security solutions supported.
• Work in a diverse, global environment and build strong relationships across all levels of a matrixed, geographically, and culturally dispersed organization.
• Flexible to work out of regular office hours to accommodate the team and organizational calls and meetings. Weekend or late-night work may occur during the project and early life cycle support phases.
• No direct supervision responsibilities though technical leadership required within assigned projects.

Skills and attributes for success

• Advanced skills in planning, designing, and solving complex security solutions and services
• Advanced technical proficiency in designing and implementing at least two or more of the following security solutions:
  • Next generation firewall, cloud firewall security solutions, like Check Point, FortiGate, etc.
  • Intrusion Detection working experience
  • Packet capture and analysis experience
  • Proxy, Web Proxy, Reverse Proxy experience
• Communicate fluently in English, both written and verbal and able to communicate technical concepts effectively
• Excellent interpersonal communication and organizational skills and the ability to work within tight timeframes
• Rapidly learn new and emerging technologies with ability to rapidly define engineering standards

To qualify for the role, you must have

• Desire to work in a diverse, multi-cultural, global environment
• Bachelor’s degree in computer science, Engineering, IT, Mathematics or a related field, or equivalent work experience required
• 4+ years of Information Security experience
• 3+ years demonstrated ability in an engineering function
• Have shown deep expertise in network security solutions
• Technical proficiency with writing custom, scripting tools (Python, PowerShell, etc.), interacting with API’s and shell scripting
• Have a strong knowledge of Linux Operating Systems
• SIEM working knowledge
• Good understanding of data center networking concepts
• Working knowledge with network security technologies;
  • Check Point Firewall and Management platforms
  • SD-WAN awareness preferably Versa
  • Cloud technologies, SAML Integrations, Azure AD
  • Remote Access and VPN technologies (SonicWall/ZPA/PAN)
  • In depth understanding of networking concepts how to deploy and configure in the security product set.
• Strong analytical and problem-solving skills
• Understanding of other technologies required to run a secure, enterprise level infrastructure that adhere to security best practices
• Excellent time management, organizational, and decision-making skills
• Ability to document processes, procedures, and security designs clearly and accurately for distribution to internal teams and customers
• Demonstrated experience in dealing with external vendors and suppliers in the security industry

Ideally, you’ll also have

• Technical experience in a large, complex, global IT environment
• Involved in large scale global IT deployments or application migrations
• At least one technical certification from network security, like Cisco for example