TC-CS-Cyber Architecture- OT and Engineering-Devops- Cloud Security-Senior
EY · Chennai, Tamil Nadu, India
This listing has closed — view similar roles below.
- On site
- Full-time
- $150,000 / year
- Chennai, Tamil Nadu, India
Job highlights
- Develop and maintain secure VM images via automation.
- Implement CI/CD pipelines for efficient image deployment.
- Perform OS hardening and automated security remediation.
- Collaborate with cross-functional teams on cloud security.
- Support audits and compliance with security best practices.
About the role
Senior Cyber Security Engineer
At EY, we’re all in to shape your future with confidence. We’ll help you succeed in a globally connected powerhouse of diverse teams and take your career wherever you want it to go. Join EY and help to build a better working world.
Job Summary
We are seeking a skilled Cyber Security Engineer to join our dynamic team responsible for the creation and maintenance of hardened VM images in AWS and Azure environments. The ideal candidate will have a strong background in CI/CD pipeline deployment and coding, with proficiency in scripting languages such as Python, PowerShell and Bash. Experience with Azure DevOps, Ansible, Terraform, and Packer is essential. The role requires deep knowledge of CIS Benchmarks (L1/L2), OS hardening, and automated security remediation. The candidate should demonstrate strong problem-solving skills, effective communication abilities, and a proactive approach to security challenges. A commitment to continuous learning and staying updated with emerging threats, tools, and technologies is highly valued.
Key Responsibilities:
- Developing and maintaining secure VM images through automation and scripting.
- Implementing CI/CD pipelines for efficient deployment and management of images.
- Design and implement end-to-end automation workflows for image creation, validation, testing, and deployment.
- Create and maintain detailed documentation (runbooks, hardening guides, architecture diagrams).
- Conducting OS hardening for various operating systems, including RHEL, Rocky, OEL, Amazon Linux, Ubuntu, and Windows (2016/2019/2022).
- Debugging code and troubleshooting pipeline errors, OS issues, and service deployments.
- Build and manage automated patching mechanisms for Linux and Windows images.
- Applying in-depth knowledge of CIS L1/L2 frameworks to identify and remediate vulnerabilities using automated mechanisms.
- Track updates in CIS benchmarks and ensure continuous alignment with best practices.
- Support audits and compliance reviews by providing evidence, reports, and remediation strategies.
- Enhance pipelines with security validation, including vulnerability scanning, compliance checks, and integrity verification.
- Conduct peer reviews for scripts, automation logic, and IaC templates to ensure quality and consistency.
- Collaborate with cloud infrastructure, architecture, and security teams to align hardened images with enterprise requirements.
- Providing excellent customer service by communicating effectively with clients about team initiatives and project progress.
The successful candidate will possess strong problem-solving skills, a proactive approach to security challenges, and the ability to work collaboratively in a fast-paced environment. A commitment to continuous learning and staying updated on the latest security trends and technologies is highly valued.
Required Qualifications:
- Minimum of 5 years of IT experience.
- At least 3+ years of specialization in Image hardening.
- At least 2+ years of application development in Python.
- At least 2+ years of experience with programming languages such as Terraform.
- 3-5 years of experience in managing and securing multi-cloud environments (AWS, Azure, GCP) with native security tools.
About EY:
EY | Building a better working world. EY is building a better working world by creating new value for clients, people, society and the planet, while building trust in capital markets. Enabled by data, AI and advanced technology, EY teams help clients shape the future with confidence and develop answers for the most pressing issues of today and tomorrow. EY teams work across a full spectrum of services in assurance, consulting, tax, strategy and transactions. Fueled by sector insights, a globally connected, multi-disciplinary network and diverse ecosystem partners, EY teams can provide services in more than 150 countries and territories.
Key skills/competency
- Cyber Security Engineering
- VM Image Hardening
- CI/CD Pipeline Development
- Cloud Security (AWS, Azure, GCP)
- Infrastructure as Code (Terraform, Ansible)
- Scripting (Python, PowerShell, Bash)
- OS Hardening (Linux, Windows)
- CIS Benchmarks
- Vulnerability Management
- Security Automation
Skills & topics
- Cyber Security
- Cloud Security
- AWS
- Azure
- DevOps
- CI/CD
- Image Hardening
- IaC
- Python
- Security Automation
- Senior Engineer
- IT Experience
How to get hired
- Tailor your resume: Highlight experience in image hardening, CI/CD, and cloud security (AWS, Azure, GCP) using keywords from the job description.
- Showcase automation skills: Quantify achievements in scripting (Python, PowerShell, Bash) and IaC tools (Terraform, Ansible, Packer) to demonstrate impact.
- Prepare for technical questions: Be ready to discuss OS hardening techniques, CIS benchmarks, and security validation within pipelines.
- Demonstrate problem-solving: Prepare examples of troubleshooting complex security or deployment issues in cloud environments.
- Research EY's values: Understand their commitment to building a better working world and how your skills align.
Technical preparation
Behavioral questions
Frequently asked questions
- What are the primary cloud platforms for this Senior Cyber Security Engineer role at EY?
- This Senior Cyber Security Engineer role at EY primarily focuses on AWS and Azure environments. Experience with GCP is also beneficial for managing multi-cloud environments.
- What scripting languages are essential for the Cyber Security Engineer position?
- Proficiency in scripting languages such as Python, PowerShell, and Bash is essential for this Cyber Security Engineer role at EY, particularly for automation and CI/CD pipelines.
- Does EY require experience with Infrastructure as Code tools for this role?
- Yes, experience with Infrastructure as Code tools like Terraform, Ansible, and Packer is essential for this Senior Cyber Security Engineer position at EY for automating VM image creation and deployment.
- What level of knowledge is expected regarding CIS Benchmarks for this EY job?
- This role requires deep knowledge of CIS Benchmarks at L1/L2 levels for OS hardening and automated security remediation. Staying updated with CIS benchmarks is crucial.
- How much experience is needed in IT and specific cyber security specializations for this EY role?
- The role requires a minimum of 5 years of IT experience, with at least 3 years specializing in image hardening, and at least 2 years in application development (Python) and IaC programming (Terraform).
- Will I be involved in auditing and compliance activities as a Senior Cyber Security Engineer at EY?
- Yes, you will support audits and compliance reviews by providing evidence, reports, and remediation strategies. This role actively contributes to maintaining compliance with security standards.
- What kind of collaboration is expected in this Senior Cyber Security Engineer role at EY?
- You will collaborate closely with cloud infrastructure, architecture, and security teams to ensure hardened images align with enterprise requirements and provide excellent customer service to clients.
- Is continuous learning important for the Cyber Security Engineer position at EY?
- Absolutely. A commitment to continuous learning and staying updated with emerging threats, tools, and technologies is highly valued for this Senior Cyber Security Engineer role at EY.