Cyber Triage and Forensics - Junior Analyst

Cyber Triage and Forensics - Junior Analyst

Get AI-powered advice on this job and more exclusive features.

At EY, we’re all in to shape your future with confidence. We’ll help you succeed in a globally connected powerhouse of diverse teams and take your career wherever you want it to go. Join EY and help build a better working world. Today’s world is fueled by vast amounts of information. Data is more valuable than ever before. Protecting data and information systems is central to doing business, and everyone in EY Information Security has a critical role to play.

Join a global team of almost 950 people who collaborate to support EY’s business by protecting EY and client information assets. Our Information Security professionals enable EY to work securely and deliver secure products and services, as well as detect and quickly respond to security events as they happen. Together, the efforts of our dedicated team help protect the EY brand and build client trust.

Within Information Security we blend risk strategy, digital identity, cyber defense, application security and technology solutions as we consider the entire security lifecycle.

Cyber Triage and Forensics (CTF) - The Cyber Defense Response Center is responsible for monitoring and detecting information security events that could adversely impact EY information assets and resources. Its mission is aligned with both the incident response and attack life cycles.

A qualified candidate will have the opportunity to work with highly talented Cyber security experts to learn and develop new skills. Candidates will be exposed to many technologies and security tools while working with EY and have career growth opportunities. CTF provides training to analysts.

• Perform front-line accurate and precise real-time monitoring and analysis correlation of logs/alerts from a multitude of security devices with a focus on determining what events constitute security incidents.
• Work multi-functionally to detect and respond to information security incidents, develop, maintain, and follow procedures for security event alerting, and participate in security investigations.
• Operate at a technical level, identify threats and vectors that cause security events, and follow defined procedures for mitigating said threats.

• Know how to respond to network, cloud, and host-based security events.
• Participate in detecting, investigating, and resolving security events.
• Work independently.
• Identify and propose areas for improvement within Cyber Triage and Forensics.
• Have good interpersonal skills.

• Bachelor’s in Computer Science, Information Systems, Engineering or 2–3 years of related work experience.

• Minimum of 1–2 years of experience in one or more of the following: working in a Security Monitoring/Security Operations Center (SOC) environment; investigating security events, threats, and/or vulnerabilities; demonstrating incident handling ability; analyzing log output from various devices; understanding electronic investigation and log correlation; proficiency with intrusion detection platforms; working knowledge of Windows system administration (including AD) and/or Linux.

• Information Security Principles, Technologies, and Practices.
• Proven experience with multiple security event detection platforms.
• Thorough understanding of TCP/IP.
• Demonstrated integrity in a professional environment.
• Good social, communication, and technical writing skills.
• Comfortable navigating and troubleshooting Windows system issues.
• Desired Certifications – Any Security Certifications.

Under limited supervision the CTF (Cyber Triage and Forensics) Analyst I will report to the CTF Global Service Manager. The Analyst will perform tasks including monitoring, research, classification and analysis of security events that occur on the network or endpoint. The Analyst should have familiarity with the principles of network and endpoint security, current threat and attack trends, a basic understanding of the OSI model, cloud security, and have a working knowledge of…