EY
Vulnerability Mgt Research Analyst at EY.
At EY, we’re all in to shape your future with confidence. We’ll help you succeed in a globally connected powerhouse of diverse teams and take your career wherever you want it to go. Join EY and help to build a better working world.
Opportunity The Vulnerability Research Analyst at EY is vital in protecting the firm’s digital infrastructure by proactively identifying and evaluating vulnerability‑based security threats. This opportunity allows for the utilization and expansion of technical skills in a complex and dynamic environment. The analyst will collaborate with seasoned professionals, fostering a space for knowledge sharing and professional growth. EY’s commitment to ongoing training and development ensures the analyst remains at the cutting edge of industry practices. The role offers a chance to make a significant impact on the firm’s security posture and operational direction.
Key Responsibilities As a Vulnerability Research Analyst at EY, your primary role will be to research and analyze vulnerabilities, using assessment tools and sound analytic techniques to uncover potential security weaknesses. You will interpret technical data to provide actionable intelligence, prioritize vulnerabilities by severity and exploitability, and collaborate with partner teams within the Vulnerability Management team to recommend remediation strategies. You will stay updated on cybersecurity trends to improve research capabilities, document findings, prepare risk reports, and participate in incident response activities as needed.
Skills and Attributes for Success
Excellent analytical and problem‑solving skills
Effective communication skills, with the ability to articulate technical information to various audiences
A proactive and results‑driven individual with a strong sense of ownership
Keen attention to detail and a commitment to delivering high‑quality work
Ability to work independently as well as part of a collaborative team
Strong organizational skills with the ability to manage multiple tasks and deadlines
A continuous learner with a passion for staying at the forefront of cybersecurity developments
Comfortable justifying decisions and assessments
Qualifications
Minimum of 5 years of experience in information security
Minimum of 3 years in Vulnerability Management and/or research
Strong understanding of network protocols, operating systems, databases, and software vulnerabilities
Familiarity with industry frameworks and standards such as OWASP, NIST, and CVE
Demonstrated experience assessing and communicating the risk of vulnerabilities to senior levels of an organization
An in‑depth understanding of security control functionality in the context of threats
An interest and aptitude for engaging stakeholders and developing a functional network of subject matter experts
Proficiency developing non‑traditional solutions to complex challenges
Ideally you’ll also have
Purple Team expertise
Experience in analytical tradecraft
What We Look For We are looking for an experienced, self‑driven analyst that can operate with minimal guidance and help develop more junior analysts. The candidate will be able to improve the attack surface while enabling the business. The ideal candidate will seek to improve others while continuously learning and identifying ways to strengthen the organization.
What We Offer You The compensation ranges below are provided in order to comply with United States pay transparency laws. Other geographies will follow their local salary guidelines, which may not be a direct conversion of published US salary ranges. At EY, we’ll develop you with future‑focused skills and equip you with world‑class experiences. We’ll empower you in a flexible environment, and fuel you and your extraordinary talents in a diverse and inclusive culture of globally connected teams. Learn more.
We offer a comprehensive compensation and benefits package where you’ll be rewarded based on your performance and recognized for the value you bring to the business. The base salary range for this job in all geographic locations in the US is $91,100 to $170,400. The base salary range for New York City Metro Area, Washington State and California (excluding Sacramento) is $109,300 to $193,600. Individual salaries within those ranges are determined through a wide variety of factors including but not limited to education, experience, knowledge, skills and geography. In addition, our Total Rewards package includes medical and dental coverage, pension and 401(k) plans, and a wide range of paid time off options.
Join us in our team‑led and leader‑enabled hybrid model. Our expectation is for most people in external, client‑serving roles to work together in person 40–60% of the time over the course of an engagement, project or year.
Under our flexible vacation policy, you’ll decide how much vacation time you need based on your own personal circumstances. You’ll also be granted time off for designated EY Paid Holidays, Winter/Summer breaks, Personal/Family Care, and other leaves of absence when needed to support your physical, financial, and emotional well‑being.
Equal Employment Opportunity EY provides equal employment opportunities to applicants and employees without regard to race, color, religion, age, sex, sexual orientation, gender identity/expression, pregnancy, genetic information, national origin, protected veteran status, disability status, or any other legally protected basis, including arrest and conviction records, in accordance with applicable law. EY is committed to providing reasonable accommodation to qualified individuals with disabilities including veterans with disabilities. If you have a disability and either need assistance applying online or need to request an accommodation during any part of the application process, please call 1‑800‑EY‑HELP3, select Option 2 for candidate related inquiries, then select Option 1 for candidate queries and finally select Option 2 for candidates with an inquiry which will route you to EY’s Talent Shared Services Team (TSS) or email the TSS at ssc.customersupport@ey.com.
#J-18808-Ljbffr
At EY, we’re all in to shape your future with confidence. We’ll help you succeed in a globally connected powerhouse of diverse teams and take your career wherever you want it to go. Join EY and help to build a better working world.
Opportunity The Vulnerability Research Analyst at EY is vital in protecting the firm’s digital infrastructure by proactively identifying and evaluating vulnerability‑based security threats. This opportunity allows for the utilization and expansion of technical skills in a complex and dynamic environment. The analyst will collaborate with seasoned professionals, fostering a space for knowledge sharing and professional growth. EY’s commitment to ongoing training and development ensures the analyst remains at the cutting edge of industry practices. The role offers a chance to make a significant impact on the firm’s security posture and operational direction.
Key Responsibilities As a Vulnerability Research Analyst at EY, your primary role will be to research and analyze vulnerabilities, using assessment tools and sound analytic techniques to uncover potential security weaknesses. You will interpret technical data to provide actionable intelligence, prioritize vulnerabilities by severity and exploitability, and collaborate with partner teams within the Vulnerability Management team to recommend remediation strategies. You will stay updated on cybersecurity trends to improve research capabilities, document findings, prepare risk reports, and participate in incident response activities as needed.
Skills and Attributes for Success
Excellent analytical and problem‑solving skills
Effective communication skills, with the ability to articulate technical information to various audiences
A proactive and results‑driven individual with a strong sense of ownership
Keen attention to detail and a commitment to delivering high‑quality work
Ability to work independently as well as part of a collaborative team
Strong organizational skills with the ability to manage multiple tasks and deadlines
A continuous learner with a passion for staying at the forefront of cybersecurity developments
Comfortable justifying decisions and assessments
Qualifications
Minimum of 5 years of experience in information security
Minimum of 3 years in Vulnerability Management and/or research
Strong understanding of network protocols, operating systems, databases, and software vulnerabilities
Familiarity with industry frameworks and standards such as OWASP, NIST, and CVE
Demonstrated experience assessing and communicating the risk of vulnerabilities to senior levels of an organization
An in‑depth understanding of security control functionality in the context of threats
An interest and aptitude for engaging stakeholders and developing a functional network of subject matter experts
Proficiency developing non‑traditional solutions to complex challenges
Ideally you’ll also have
Purple Team expertise
Experience in analytical tradecraft
What We Look For We are looking for an experienced, self‑driven analyst that can operate with minimal guidance and help develop more junior analysts. The candidate will be able to improve the attack surface while enabling the business. The ideal candidate will seek to improve others while continuously learning and identifying ways to strengthen the organization.
What We Offer You The compensation ranges below are provided in order to comply with United States pay transparency laws. Other geographies will follow their local salary guidelines, which may not be a direct conversion of published US salary ranges. At EY, we’ll develop you with future‑focused skills and equip you with world‑class experiences. We’ll empower you in a flexible environment, and fuel you and your extraordinary talents in a diverse and inclusive culture of globally connected teams. Learn more.
We offer a comprehensive compensation and benefits package where you’ll be rewarded based on your performance and recognized for the value you bring to the business. The base salary range for this job in all geographic locations in the US is $91,100 to $170,400. The base salary range for New York City Metro Area, Washington State and California (excluding Sacramento) is $109,300 to $193,600. Individual salaries within those ranges are determined through a wide variety of factors including but not limited to education, experience, knowledge, skills and geography. In addition, our Total Rewards package includes medical and dental coverage, pension and 401(k) plans, and a wide range of paid time off options.
Join us in our team‑led and leader‑enabled hybrid model. Our expectation is for most people in external, client‑serving roles to work together in person 40–60% of the time over the course of an engagement, project or year.
Under our flexible vacation policy, you’ll decide how much vacation time you need based on your own personal circumstances. You’ll also be granted time off for designated EY Paid Holidays, Winter/Summer breaks, Personal/Family Care, and other leaves of absence when needed to support your physical, financial, and emotional well‑being.
Equal Employment Opportunity EY provides equal employment opportunities to applicants and employees without regard to race, color, religion, age, sex, sexual orientation, gender identity/expression, pregnancy, genetic information, national origin, protected veteran status, disability status, or any other legally protected basis, including arrest and conviction records, in accordance with applicable law. EY is committed to providing reasonable accommodation to qualified individuals with disabilities including veterans with disabilities. If you have a disability and either need assistance applying online or need to request an accommodation during any part of the application process, please call 1‑800‑EY‑HELP3, select Option 2 for candidate related inquiries, then select Option 1 for candidate queries and finally select Option 2 for candidates with an inquiry which will route you to EY’s Talent Shared Services Team (TSS) or email the TSS at ssc.customersupport@ey.com.
#J-18808-Ljbffr