1. Home
  2. Risk_Cyber Security_NGSO - TEM - Vulnerability Management_Staff

Offers “Ernst & Young”

Expires soon
Ernst & Young

Risk_Cyber Security_NGSO - TEM - Vulnerability Management_Staff

  • Internship
  • Bangalore (Bangalore Urban)
Apply Now

Job description



Staff (TEM – Vulnerability Management)

 

Job Summary

 

As a Staff with with EY’s Global Delivery Services (GDS) Cybersecurity Team, you will contribute technically to vulnerability assessment and penetration testing engagements and internal projects. An important part of your role will be to deliver high quality work products as per firm’s guidelines. You will need to actively establish, maintain and strengthen relationships with other team members. You’ll need to report any identified risks within engagements and share any issues and updates with senior members of the team.

 

Responsibilities

 

· 
Work effectively as a team member, sharing responsibility, providing support, maintaining communication and updating senior team members on progress

· 
Support vulnerability management process including management of asset groups, scheduling and monitoring of scans

· 
Identify, analyze, and develop mitigation plans for system and identified vulnerabilities and associated reporting to senior team members

· 
Review of working papers and client folders. Suggest ideas on improving engagement productivity and identify opportunities for improving client service

· 
Accomplish assigned task within the engagement budgets and support senior team members in developing marketing collaterals, business proposals and new solution / methodology development

· 
Demonstrate an application and solution-based approach to the problem solving technique

· 
Contribute to EY’s advisory specific people related initiatives

· 
Understand and follow workplace policies and procedures

· 
Able to adapt to dynamic environment and desire to learn new skills quickly

Skill set requirements

· 
Knowledge of TCP/IP, concepts of OSI layer and protocols, networking and security concepts

· 
Knowledge of OS (Windows / Linux) security, Database security  

· 
Knowledge of cyber / information security concepts, risk and controls concepts

· 
Knowledge of standards such as ISO 27001/2, ISO 22301, ISO 27018, PCI – DSS, NIST standards on Cyber Security, HITRUST, etc. is a plus  

· 
Knowledge of IT infrastructure (switches, routers, firewalls, IDS, IPS, etc.)

· 
Knowledge on tools like Qualys, Nessus, Nexpose, Tenable, BackTrack, NMAP, BurpSuite, etc. is a plus

· 
Knowledge of latest cyber threats and vulnerabilities related to platform and infrastructure (OWASP Top 10)

· 
Basic knowledge of encryption, key management, cloud security

·  Willingness to work in shifts  

Educational qualifications and certifications

· 
Graduates / BSc / BE / BTech / MSc / MTech / MBA in the fields of Computer Science, Information Systems, Engineering, Business or related major

· 
CEH, ECSA, ISO 27001, and similar certification would be desirable

· 
Fluency in English, other foreign language skills are considered an asset

Make every future a success.
  • Job directory
  • Business directory
    •