EY Cyber SDC- Endpoint Security Lead Engineer - Senior - Consulting - Location OPEN in Providence, Rhode Island

At EY, you’ll have the chance to build a career as unique as you are, with the global scale, support, inclusive culture and technology to become the best version of you. And we’re counting on your unique voice and perspective to help EY become even better. Join us and build an exceptional experience for yourself, and a better working world for all.

Key Responsibilities:

1. Endpoint Security Management: Administer and support endpoint security solutions, including CrowdStrike, Microsoft Defender for Endpoint, Microsoft Defender for Mobile, and CyberArk EPM. Monitor endpoint security alerts and incidents, responding promptly to potential threats and vulnerabilities.
2. Threat Detection and Response: Analyze security events and alerts to identify potential threats and respond to incidents in a timely manner. Conduct forensic investigations on security incidents to determine the root cause and implement corrective actions.
3. Policy Configuration and Enforcement: Develop, implement, and enforce endpoint security policies and procedures to protect organizational assets. Configure and optimize security settings within endpoint security tools to enhance protection against threats.
4. User Support: Provide technical support to end-users regarding endpoint security tools and best practices.
5. Collaboration and Communication: Work closely with IT and security teams to integrate endpoint security solutions with existing security frameworks and incident response processes. Communicate effectively with stakeholders to report on security incidents, trends, and recommendations for improvement.
6. Documentation and Reporting: Maintain accurate documentation of endpoint security configurations, processes, and incident response actions. Generate reports on endpoint security metrics, incidents, and compliance for management review. Stay updated on the latest trends, threats, and technologies in endpoint security. Identify opportunities for process improvements and automation within endpoint security operations. Automate activities through scripting (PowerShell, Python) and automation (Tines, PowerAutomate, etc.)

Qualifications:

1. Bachelor’s degree in computer science, Information Technology, Cybersecurity, or a related field.
2. Proven experience in managing and supporting endpoint security solutions, including CrowdStrike, Microsoft Defender for Endpoint, Microsoft Defender for Mobile, and CyberArk EPM.
3. Strong understanding of endpoint security principles, threat detection, and incident response methodologies.
4. Proficiency in security monitoring tools and SIEM solutions.
5. Excellent problem-solving skills and attention to detail.
6. Strong communication and interpersonal skills.
7. Ticket and change management experience in ServiceNow.
8. Relevant cybersecurity certifications (e.g., CompTIA Security+, Certified Information Systems Security Professional (CISSP), Certified Ethical Hacker (CEH)) are a plus.

Preferred Skills:

1. Experience with scripting languages (e.g., PowerShell, Python) for automation and reporting.
2. Familiarity with compliance frameworks (e.g., NIST, ISO 27001) and risk management practices.
3. Knowledge of network security concepts and technologies.

What we offer:

We offer a comprehensive compensation and benefits package where you’ll be rewarded based on your performance and recognized for the value you bring to the business. The base salary range for this job in all geographic locations in the US is $73,100 to $132,900. The salary range for New York City Metro Area, Washington State and California (excluding Sacramento) is $87,600 to $151,400. Individual salaries within those ranges are determined through a wide variety of factors including but not limited to education, experience, knowledge, skills and geography.

Join us in our team-led and leader-enabled hybrid model. Our expectation is for most people in external, client serving roles to work together in person 40-60% of the time over the course of an engagement, project or year. Under our flexible vacation policy, you’ll decide how much vacation time you need based on your own personal circumstances.

EY accepts applications for this position on an on-going basis. If you can demonstrate that you meet the criteria above, please contact us as soon as possible.

EY is an equal opportunity, affirmative action employer providing equal employment opportunities to applicants and employees without regard to race, color, religion, age, sex, sexual orientation, gender identity/expression, pregnancy, genetic information, national origin, protected veteran status, disability status, or any other legally protected basis, including arrest and conviction records, in accordance with applicable law.