EY GDS Hiring for Developer – TDR at   Bangalore Full Time

At EY, you’ll have the chance to build a career as unique as you are, with the global scale, support, inclusive culture and technology to become the best version of you. And we’re counting on your unique voice and perspective to help EY become even better, too. Join us and build an exceptional experience for yourself, and a better working world for all.

Description

Senior (CTM – Threat Detection & Response)

KeyCapabilities:

Experience in QRadar (on-prem) Design, BoM Preparation, Implementation and content development
Should have experience in implementing (preferred) or administrating distributed QRadar installation with High Availability as per Vendor guidelines and industry best practices
Should have QRadar Fundamental or deployment professional certification
Good knowledge in programming or Scripting languages such as Python/JavaScript (preferred), Bash, PowerShell, etc.
Perform remote and on-site gap assessment (and fixing) of the SIEM solution.
Define evaluation criteria & approach based on the Client requirement & scope factoring industry best practices & regulations
Conduct interview with stakeholders, review documents (SOPs, Architecture diagrams etc.)
Evaluate SIEM based on the defined criteria and prepare audit reports
Good experience in providing consulting to customers during the testing, evaluation, pilot, production and training phases to ensure a successful deployment.
Understand customer requirements and recommend best practices for QRadar SIEM solutions.
Offer consultative advice in security principles and best practices related to SIEM operations
Design and document QRadar SIEM solution to meet the customer needs
Experience in onboarding data into QRadar from various sources including unsupported by creating custom DSM
Experience in other modules like UBA, QVM, QRM, Incident Forensic etc.
Hands-on experience in creating custom rules, dashboards, reports
Hands-on experience in QRadar components upgradation
Experience in writing AQL Queries and Add-ons
Experience in consulting, development and sales activities
Hands-on experience Migration/ Upgradation for SIEM with the latest stable updates
Responsibilities, Qualifications, Certifications

Qualification & experience:

Minimum of 5 to 11 years’ experience with a depth of network architecture knowledge that will translate over to deploying and integrating a complicated security intelligence solution into global enterprise environments.
Strong oral, written and listening skills are an essential component to effective consulting.
Strong background in network administration. Ability to work at all layers of the OSI models, including being able to explain communication at any level is necessary.
Must have knowledge of Vulnerability Management, Windows and Linux basics including installations, Windows Domains, trusts, GPOs, server roles, Windows security policies, user administration, Linux security and troubleshooting.
Certification in any one of the SIEM Solution such as Splunk, Exabeam, Securonix, ELK etc. will be an added advantage
Certifications or experience in other core security related discipline will be an added advantage.

EY | Building a better working world

EY exists to build a better working world, helping to create long-term value for clients, people and society and build trust in the capital markets.

Enabled by data and technology, diverse EY teams in over 150 countries provide trust through assurance and help clients grow, transform and operate.

Working across assurance, consulting, law, strategy, tax and transactions, EY teams ask better questions to find new answers for the complex issues facing our world today.