Cybersecurity (XDR/ITDR/NDR) MSS Resident Engineer, Technology Consulting

As a Resident Engineer at EY, you will play a crucial role in providing Managed Security Services (MSS) by handling escalated alerts from the SIEM platform efficiently and effectively. Your primary responsibilities include liaising with SOC analysts and systems stakeholders to ensure timely resolution of security incidents, documenting response actions taken, performing alert triaging when necessary, and collaborating with the team to implement enhancements based on telemetry insights. Additionally, you will contribute to the development and refinement of alert triaging processes and procedures, stay updated on industry best practices, and participate in incident response activities as needed. Key Responsibilities: - Serve as the primary communication liaison with SOC analysts for escalated alerts - Communicate with systems stakeholders to follow up response actions for escalated alerts - Facilitate effective communication with various stakeholders for timely resolution of security incidents - Ensure proper closure of escalations and document response actions - Perform alert triaging, especially in high-pressure situations - Review and analyze telemetry data for trends and areas for improvement - Collaborate with the team to implement enhancements based on telemetry insights - Contribute to the development of alert triaging processes - Stay updated on industry best practices and emerging threats - Work closely with other security teams for a cohesive approach to threat detection and response - Participate in incident response activities as required Skills and attributes for success: - Excellent verbal and written communication skills - Proficient in problem-solving and developing effective solutions under pressure - Solid understanding of SIEM platforms, security operations, and threat detection methodologies - Collaborative mindset with the ability to work effectively within a team environment - Comfortable working in a fast-paced, dynamic environment - Eagerness to stay updated on the latest security trends and technologies - Ability to guide and mentor junior team members - Capable of maintaining composure during high-stress situations Qualifications Required: - Recognized university degree in Computer Science, Computer/Electrical Engineering, Information Technology, or equivalent - Minimum of 3-5 years of experience in security analyst or security operation role with hands-on experience in SIEM/Splunk platform - Strong interest in information security - Creative, independent, and good problem-solving skills - Excellent communicator with strong analytical, interpersonal, and writing skills Join EY and shape your future with confidence in a diverse and inclusive culture of globally connected teams. EY offers a competitive remuneration package, continuous learning opportunities, transformative leadership insights, and a diverse and inclusive culture where you can make a meaningful impact.,