Red Team - Offensive Security Analyst - Manager
Job in
Rochester, Monroe County, New York, 14651, USA
Listed on 2026-07-18
Listing for:
EY
Full Time
position Listed on 2026-07-18
Job specializations:
-
IT/Tech
Cybersecurity, Information Security, Data Security, Security Management & Operations
Job Description & How to Apply Below
We'll help you succeed in a globally connected powerhouse of diverse teams and take your career wherever you want it to go. Join EY and help to build a better working world.
** EY Technology:*
* Technology has always been at the heart of what we do and deliver need technology to keep an organization the size of ours working efficiently. We have 250,000 people in more than 140 countries, all of whom rely on secure technology to be able to do their job every single day. Everything from the laptops we use, to the ability to work remotely on our mobile devices and connecting our people and our clients, to enabling hundreds of internal tools and external solutions delivered to our clients.
Technology solutions are integrated in the client services we deliver and is key to us being more innovative as an organization.
EY Technology supports our technology needs through three business units:
Client Technology (CT) - focuses on developing new technology services for our clients. It enables EY to identify new technology-based opportunities faster, and pursue those opportunities more rapidly.
Enterprise Workplace Technology (EWT) - EWT supports our Core Business Services functions and will deliver fit-for-purpose technology infrastructure at the cheapest possible cost for quality services. EWT will also support our internal technology needs by focusing on a better user experience.
Information Security (Info Sec) - Info Sec prevents, detects, responds and mitigates cyber-risk, protecting EY and client data, and our information management systems.
** The opportunity*
* The Active Defense team is responsible for four core areas:
Adversarial Testing (Purple Team), Proactive Threat Hunting, Anomaly Analysis, and Cyber Deception. This function plays a critical role in strengthening and maturing the firm's enterprise security capabilities through threat-informed defense and continuous validation of security controls.
We are seeking an Active Defense Analyst with a strong information security background and a passion for using offensive security techniques to improve defensive outcomes. In its Purple Team capacity, the role will emulate adversary behaviors, validate security detections and defensive controls, and identify opportunities to enhance the effectiveness of security operations and incident response teams. In its Threat Hunting capacity, the analyst will proactively identify malicious activity, suspicious behaviors, and emerging threats through analysis of security telemetry, SIEM data, EDR platforms, threat intelligence, and other relevant sources.
The successful candidate will communicate findings to both technical and non-technical audiences and collaborate across teams to identify, prioritize, and remediate security gaps. The position requires strong analytical and problem-solving skills, attention to detail, and the ability to work effectively both independently and as part of a team.
** Skills and attributes for success*
* Essential Functions of the job:
+ Perform research and analysis of attacker tactics, techniques, and procedures (TTPs), and emulate those attacks in a collaborative and controlled environment.
+ Conduct proactive threat hunting operations leveraging SIEM, EDR, threat intelligence, and other security telemetry sources to identify malicious activity and previously unknown threats.
+ Identify patterns consistent with sophisticated attacker methodologies, and report on security concerns as they are escalated or identified.
+ Evaluate, develop, and operationalize Artificial Intelligence (AI) and Machine Learning (ML) capabilities to enhance cyber defense operations, including threat detection, threat hunting, anomaly detection, adversary emulation, attack simulation, and security automation.
+ Analyze digital artifacts, forensic evidence, logs, malware samples, and system telemetry collected during adversarial testing, investigations, and threat hunting activities.
+ Communicate with system owners, custodians, and IT stakeholders to facilitate security testing activities, including obtaining access to systems, digital artifact collection, and remediation activities.
+ Develop and present technical findings, attack narratives, risk assessments, and remediation recommendations to both technical and non-technical stakeholders using written reports, presentations, and executive briefings.
+ Maintain, manage, improve, and update security testing processes, procedures, and protocol documentation.
+ Identify means to disrupt attacker actions, validate security detections and defensive controls, identify coverage gaps, and enhance defender response capabilities.
** To qualify for the role, you must have:*
* + 6+ years of relevant experience in one or more of the following areas:
Red Teaming, Purple Teaming, Offensive Security Operations, Exploit Development, Penetration Testing, Security Research, or similar roles.
+ Demonstrated understanding of common and advanced…
To View & Apply for jobs on this site that accept applications from your location or country, tap the button below to make a Search.
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).
Search for further Jobs Here:
×