EY
At EY, we’re all in to shape your future with confidence. We’ll help you succeed in a globally connected powerhouse of diverse teams and take your career wherever you want it to go. Join EY and help to build a better working world.
Today’s world is fueled by vast amounts of information. Data is more valuable than ever before. Protecting data and information systems is central to doing business, and everyone in EY Information Security has a critical role to play. Join a global team of almost 950 people who collaborate to support the business of EY by protecting EY and client information assets! Our Information Security professionals enable EY to work securely and deliver secure products and services, as well as detect and quickly respond to security events as they happen.
Within Information Security we blend risk strategy, digital identity, cyber defense, application security and technology solutions as we consider the entire security lifecycle. You will join a team of hardworking, security-focused individuals dedicated to supporting, protecting and enabling the business through innovative, secure solutions that provide speed to market and business value.
The Opportunity
As the Red Team Coordinator EY, you will orchestrate red team activities against the EY environment to identify security gaps and create a hardened security posture. You will operate autonomously to collaborate with top-tier IT and security teams to mitigate potential threats, ensuring our operations remain resilient against the ever-evolving cyber threat landscape. Your Key Responsibilities
Devising and executing a robust Red Team strategy to safeguard the firm's extensive digital infrastructure. Meticulous identification and evaluation of potential security gaps and working with third party providers to devise and execute a comprehensive simulated attack to test incident response and security controls. Managing relationships and meticulous attention to details in incident response will be critical to success in overseeing the exercises. In close collaboration with IT and security teams, the Lead will oversee the prompt and effective resolution of security weaknesses. The Coordinator will be a key communicator, engaging with stakeholders throughout the organization to promote a culture of heightened security awareness and proactive risk management. Providing leadership and guidance to a Tabletop Exercise Analyst responsible for designing and executing tabletop exercises for EY’s internal Cyber & Investigative Services function. Skills And Attributes For Success
Strong analytical and problem-solving skills Excellent communication and interpersonal abilities Leadership and team collaboration experience Adaptability to diverse cultural environments Technical proficiency in cybersecurity tools Strategic thinking and planning capabilities Proactive risk management mindset Experience in incident response coordination To Qualify For The Role You Must Have
10+ years of Information Security experience with a focus on offensive security and/or threat intelligence Minimum 3 years of Red Team experience Experience managing and/or executing exercises and simulations An expert ability to assess an organization’s strengths and weaknesses, and building remediation plans Demonstrated experience documenting and communicating the risk of security gaps An expert understanding of threat modelling and risk assessment An in-depth understanding of security control functionality in the context of threats An interest and aptitude for engaging stakeholders and developing a functional network of subject matter experts Proficiency developing non-traditional solutions to complex challenges Ideally, You’ll Also Have
Functional understanding of the TIBER Framework Experience engaging regulators Incident Response experience Time spent working with a globally dispersed team in a large enterprise What We Look For
We are looking for an experienced Red Team operator that can develop the Red Team program into a mature function capable of protecting a firm as diverse as EY. What We Offer You
A comprehensive compensation and benefits package where you’ll be rewarded based on your performance and recognized for the value you bring to the business. Medical and dental coverage, pension and 401(k) plans, and a wide range of paid time off options. A flexible vacation policy, you’ll decide how much vacation time you need based on your own personal circumstances. EY provides equal employment opportunities to applicants and employees without regard to race, color, religion, age, sex, sexual orientation, gender identity/expression, pregnancy, genetic information, national origin, protected veteran status, disability status, or any other legally protected basis, including arrest and conviction records, in accordance with applicable law.
#J-18808-Ljbffr
As the Red Team Coordinator EY, you will orchestrate red team activities against the EY environment to identify security gaps and create a hardened security posture. You will operate autonomously to collaborate with top-tier IT and security teams to mitigate potential threats, ensuring our operations remain resilient against the ever-evolving cyber threat landscape. Your Key Responsibilities
Devising and executing a robust Red Team strategy to safeguard the firm's extensive digital infrastructure. Meticulous identification and evaluation of potential security gaps and working with third party providers to devise and execute a comprehensive simulated attack to test incident response and security controls. Managing relationships and meticulous attention to details in incident response will be critical to success in overseeing the exercises. In close collaboration with IT and security teams, the Lead will oversee the prompt and effective resolution of security weaknesses. The Coordinator will be a key communicator, engaging with stakeholders throughout the organization to promote a culture of heightened security awareness and proactive risk management. Providing leadership and guidance to a Tabletop Exercise Analyst responsible for designing and executing tabletop exercises for EY’s internal Cyber & Investigative Services function. Skills And Attributes For Success
Strong analytical and problem-solving skills Excellent communication and interpersonal abilities Leadership and team collaboration experience Adaptability to diverse cultural environments Technical proficiency in cybersecurity tools Strategic thinking and planning capabilities Proactive risk management mindset Experience in incident response coordination To Qualify For The Role You Must Have
10+ years of Information Security experience with a focus on offensive security and/or threat intelligence Minimum 3 years of Red Team experience Experience managing and/or executing exercises and simulations An expert ability to assess an organization’s strengths and weaknesses, and building remediation plans Demonstrated experience documenting and communicating the risk of security gaps An expert understanding of threat modelling and risk assessment An in-depth understanding of security control functionality in the context of threats An interest and aptitude for engaging stakeholders and developing a functional network of subject matter experts Proficiency developing non-traditional solutions to complex challenges Ideally, You’ll Also Have
Functional understanding of the TIBER Framework Experience engaging regulators Incident Response experience Time spent working with a globally dispersed team in a large enterprise What We Look For
We are looking for an experienced Red Team operator that can develop the Red Team program into a mature function capable of protecting a firm as diverse as EY. What We Offer You
A comprehensive compensation and benefits package where you’ll be rewarded based on your performance and recognized for the value you bring to the business. Medical and dental coverage, pension and 401(k) plans, and a wide range of paid time off options. A flexible vacation policy, you’ll decide how much vacation time you need based on your own personal circumstances. EY provides equal employment opportunities to applicants and employees without regard to race, color, religion, age, sex, sexual orientation, gender identity/expression, pregnancy, genetic information, national origin, protected veteran status, disability status, or any other legally protected basis, including arrest and conviction records, in accordance with applicable law.
#J-18808-Ljbffr