Security Technology Siem Support Engineer Job in Ernst & Young Global Limited

Security Technology SIEM Support Engineer

EY Technology

Technology has always been at the heart of what we do and deliver at EY.We need technology to keep an organization the size of ours working efficientlyand securely. We have more than 300,000people in more than 160 countries, all of whom rely on secure technology to beable to do their job every day.Everything we use as a firm depends on our security mindset. Securing technology is our passion. Please join us and show us your passion.

Theopportunity

We are looking for a SIEM Support Engineer, who will become part of our SecurityTechnology Operations team. The ideal candidate will have prior experienceimplementing and supporting an SIEM technologies such as Splunk, SOAR,Securonix, Microsoft Azure Sentinel as well as RSA Archer.

Yourkey Responsibilities

Key responsibilities will include the implementation and run station ofSIEM Support technologies. The role performs Level 3 support forInformation Security SIEM technologies.Responsibilities involve the daily management of incidents, operationalmaintenance and support, and proactive/preventative analysis of systems. Applications can reside in EY as well aswithin vendor facilities and cloud.

• Provide technicaloversight of Information Security technologies that fall under the teamsresponsibilities, confirming they are operating within agreed service levelsand at peak possible performance

• Monitoringperformance of correlated and scheduled searches and identify opportunities tomake searches/dashboards more efficient in Splunk to improve their performance

• Creating/Testing/DeployingSplunk upgrades, configurations changes, etc. in multiple environments

• Monitoring the Splunk infrastructure(including but not limited to non-performant queries and dashboards, key healthindicators of the platform).

• Manage, drive andcoordinate planned maintenance activities as well as the standardization andautomation of processes and procedures for Information Security technologies.

• Represent the team inspecific project activities, including participating in projects and driving teamdeliverables towards successful completion.

• Articulate technologyissues/concerns that may emerge at any level of the technical stack, and fromany component across the ecosystem, to technology leaders

Skills and attributes for success

We are interested in people who bring in operational experience in large environment having performeddetailed troubleshooting of issues, by using their analytical skills andcollaborating with other technical teams, stakeholders and internal andexternal customers. As a successfulcandidate, you will have functional and/or technical experience in supporting avariety of Security Information and Event Management tools.

Toqualify for the role, you must have

• 5-7 yearsof experience in an enterprise IT support role

• Working knowledge of scripting languages such as Python and Power Shell

• Knowledge of Query Languages such as SPL (Search ProcessingLanguage) and KQL (Keyword Query Language) is a plus

• Splunkexperience in Multi cluster/Multi site environment.

• Possessskills within the Azure cloud technology stack including knowledge of Azure AD,Sentinel, DevOps is a large plus.

• Severalyears experience working in a large global virtual environment

• StrongEnglish language skills written and verbal

Ideally, youll also have

• Bachelor'sdegree in computer related field or equivalent work experience.

• InformationTechnology Infrastructure Library (ITIL v2 or v3 Foundations training)(preferred)

• Experiencein project management, service introduction, and service readiness

Whatwe look for

• This role is perfectfor you, if you haveexcellent problem solving, decision making and communication skills.
• We are looking forpeople who are comfortable working with culturally diverse on/offshore teammembers, able to react appropriately during stressful and ambiguous situations.

What working at EY offers

We offer a competitive remuneration package whereyoull be rewarded for your individual and team performance. Our comprehensiveTotal Rewards package includes support for flexible working and careerdevelopment, and with FlexEY you can select benefits that suit your needs,covering holidays, health and well-being, insurance, savings and a wide rangeof discounts, offers and promotions. Plus, we offer:

• Support, coaching and feedback fromsome of the most engaging colleagues around

• Opportunities to develop new skillsand progress your career

• The freedom and flexibility to handleyour role in a way thats right for you