Senior Cyber Security Engineer

Senior Cyber Security Engineer

At EY, we’re all in to shape your future with confidence. We’ll help you succeed in a globally connected powerhouse of diverse teams and take your career wherever you want it to go. Join EY and help to build a better working world.

Job Summary

We are seeking a skilled Cyber Security Engineer to join our dynamic team responsible for the creation and maintenance of hardened VM images in AWS and Azure environments. The ideal candidate will have a strong background in CI/CD pipeline deployment and coding, with proficiency in scripting languages such as Python, PowerShell and Bash. Experience with Azure DevOps, Ansible, Terraform, and Packer is essential. The role requires deep knowledge of CIS Benchmarks (L1/L2), OS hardening, and automated security remediation. The candidate should demonstrate strong problem-solving skills, effective communication abilities, and a proactive approach to security challenges. A commitment to continuous learning and staying updated with emerging threats, tools, and technologies is highly valued.

Key Responsibilities:

• Developing and maintaining secure VM images through automation and scripting.
• Implementing CI/CD pipelines for efficient deployment and management of images.
• Design and implement end-to-end automation workflows for image creation, validation, testing, and deployment.
• Create and maintain detailed documentation (runbooks, hardening guides, architecture diagrams).
• Conducting OS hardening for various operating systems, including RHEL, Rocky, OEL, Amazon Linux, Ubuntu, and Windows (2016/2019/2022).
• Debugging code and troubleshooting pipeline errors, OS issues, and service deployments.
• Build and manage automated patching mechanisms for Linux and Windows images.
• Applying in-depth knowledge of CIS L1/L2 frameworks to identify and remediate vulnerabilities using automated mechanisms.
• Track updates in CIS benchmarks and ensure continuous alignment with best practices.
• Support audits and compliance reviews by providing evidence, reports, and remediation strategies.
• Enhance pipelines with security validation, including vulnerability scanning, compliance checks, and integrity verification.
• Conduct peer reviews for scripts, automation logic, and IaC templates to ensure quality and consistency.
• Collaborate with cloud infrastructure, architecture, and security teams to align hardened images with enterprise requirements.
• Providing excellent customer service by communicating effectively with clients about team initiatives and project progress.

The successful candidate will possess strong problem-solving skills, a proactive approach to security challenges, and the ability to work collaboratively in a fast-paced environment. A commitment to continuous learning and staying updated on the latest security trends and technologies is highly valued.

Required Qualifications:

• Minimum of 5 years of IT experience.
• At least 3+ years of specialization in Image hardening.
• At least 2+ years of application development in Python.
• At least 2+ years of experience with programming languages such as Terraform.
• 3-5 years of experience in managing and securing multi-cloud environments (AWS, Azure, GCP) with native security tools.

About EY:

EY | Building a better working world. EY is building a better working world by creating new value for clients, people, society and the planet, while building trust in capital markets. Enabled by data, AI and advanced technology, EY teams help clients shape the future with confidence and develop answers for the most pressing issues of today and tomorrow. EY teams work across a full spectrum of services in assurance, consulting, tax, strategy and transactions. Fueled by sector insights, a globally connected, multi-disciplinary network and diverse ecosystem partners, EY teams can provide services in more than 150 countries and territories.

Key skills/competency

• Cyber Security Engineering
• VM Image Hardening
• CI/CD Pipeline Development
• Cloud Security (AWS, Azure, GCP)
• Infrastructure as Code (Terraform, Ansible)
• Scripting (Python, PowerShell, Bash)
• OS Hardening (Linux, Windows)
• CIS Benchmarks
• Vulnerability Management
• Security Automation