Credential Protection Security Analyst Job in Ernst & Young Global Limited

Job Summary:

The Credential Protection Security Analyst will be responsible for the operation, maintenance, and security of an Active Directory forest supporting multiple enterprise forests . The Analyst will be responsible for protecting the highly privileged accounts and their associated credentials. The analyst will also work with team members to enhance security monitoring tools with contextual information. The analyst must be able to review vulnerability scans and provide an assessment of the vulnerabilities as they relate to the environment. The analyst will review various sources for security information and threats and determine the potential impact to the environment. Risk assessment techniques are a plus.

Essential Functions of the Job:
Ability to manage and maintain a highly secured Active Directory forest infrastructure
Ability to troubleshoot common Windows and Active Directory issues
Ability to locate and assimilate new information to provide context for security events
Identifies and resolves complex issues on the engagement/ project, demonstrating a broad technical skillset.
Strong understanding of security incident/ problem and change management and vulnerability management processes
Daily health check of security platforms and publishing health check report
Execute Maintenance Procedures to keep the security systems patched and up to date

Analytical/Decision Making Responsibilities:
Ability to recognize and research attacks and attack patterns
Ability to prioritize events so that the most impactful are addressed first
Communicates critical areas of risk to the team and manager on a timely basis, consulting where appropriate to help resolve issues.
Can quickly understand fast- moving situations, rapidly understands the context of different situations and responds to new challenges and demands effectively.

Knowledge and Skills Requirements:
Strong network and/or system admin background
TCP/IP network expertise
Strong knowledge of Windows Server technologies and Active Directory
Experience with scripting languages especially PowerShell
Experience with CyberArk Privileged Account Security Solution desirable
Security monitoring experience with one or more SIEM (SPLUNK/SCOM) and intrusion detection technologies

Knowledge of IPsec/PKI desired
Strong knowledge of information security technologies
Excellent team skills and integrity in a professional environment
Exceptional social, communication, and technical and general writing skills

Supervision Responsibilities:
Must be self-motivated and able to work independently, often unsupervised
Responsible for oversight of some projects assigned
Assists management in the selection and retention of software applications, support staff, and on-going maintenance
Provides project management assistance to the Project Manager for any size project

Job Requirements:

Education:

Bachelors or Masters Degree in Computer Science, Information Systems, Engineering or related field.

Experience:
3+ years experience in one or more of the following:
Active Directory configuration, administration, and troubleshooting
Windows Server platform administration, including knowledge of 2012 R2/2016/2019 core
Scripting and writing PowerShell Cmdlets
Reviewing security events and threats
Deep understanding of the TCP/IP protocol stack
Understanding of Public Key Infrastructure (PKI)
Experience with programming languages such as Java, Java script, C, C++, C#, ASP, .NET, Visual Basic and is a plus (perl, python as well)
Open to work flexible schedule as needed to provide 24x7 support coverage
Experience with ServiceNow IT Service Management system desired

Certification Requirements:
CISSP, CISM or CISA desirable