Senior InfoSec Consultant
EY · Jericho, NY · 3 wk ago
On-siteConsulting$128k–$240k/yrFull-time
About the role
The EY Global Information Security team is seeking a Senior InfoSec Consultant to lead the design, development, and implementation of security controls for market-leading regional and global systems based primarily on Cloud technologies. This role involves working closely with client engagement teams and technologists worldwide to support digitally-enabled services leveraging leading technologies like AI, Blockchain, and Cloud Security.
Responsibilities
- Design, implement, and access security controls for Cloud-based systems
- Support Agile and DevOps methodologies in the development of security protocols for blockchain technologies
- Work with CI/CD pipelines for automated deployment of security configurations
- Develop and enforce security protocols for multi-tier business solutions, including application-level access and entitlement management
- Integrate infrastructure security technologies into business solution architectures, including identity & access management, intrusion detection/prevention, and security monitoring
- Implement security measures in a Microsoft Azure environment and manage global systems using PaaS and SaaS architectures
- Apply knowledge of ISO27001/2, OWASP, and related security standards
- Manage operational models and procedures for business solutions, including infrastructure and application security controls
Requirements
- Significant working security experience and knowledge in one or more of the following areas:
- Hands-on experience with developing and implementing AI security technologies, especially Gen AI and rapid-growing LLMs
- Experiences with designing and enforcing security protocols for blockchain technologies and applications
- Experience with Agile & DevOps Methodologies
- Technical understanding of virtualization, cloud infrastructure, and public cloud offerings, particularly Microsoft Azure and Azure PAAS services
- Experience with application security, including REST API and microservices architecture
- Infrastructure security experience, including identity & access management, intrusion detection and prevention, security monitoring, and data encryption solutions
- Working experience with open-source web technologies and programming languages, preferably with InfoSec Code Review
- Significant experience in implementing security in a Microsoft Azure environment and practical knowledge of global systems using PaaS and SaaS architectures
- Advanced degree in Computer Science or a related discipline; or equivalent work experience
- CISSP, CCSP, CISM, or similar security certifications preferred
Skills and attributes for success
- Strong communication skills and ability to work with stakeholders ranging from developers to architects to business leaders to EY’s clients