Security Engineer

Security Engineer

Location: Wrocław - 2 days in office / 3 days remote

Let us introduce you the job offer by EY GDS Poland – a member of the global integrated service delivery center network by EY.

Today’s world is fueled by vast amounts of information, which means that data is even more valuable than ever before. Protecting data and information systems is central to doing business, and therefore everyone in EY Information Security has an important role to play. Join a global team of almost 950 people who collaborate to support the business of EY by protecting EY and client information assets! Information Security professionals enable EY to work securely and deliver secure products and services, as well as detect and quickly respond when things go wrong. Together, the efforts of our dedicated team help protect the EY brand and build client trust.

Within Information Security we blend risk strategy, digital identity, cyber defense, application security and technology service solutions as we consider the entire security lifecycle. You will join a team of hardworking, security-focused individuals dedicated to supporting, protecting, and enabling the business through secure solutions and information systems.

The opportunity

As a Security Engineer focused on Compliance, Vulnerability and SaaS technologies within the Security Technology Services (STS) group, you will be part of a global team responsible for the full lifecycle of security solutions, including design, engineering, implementation, and early lifecycle support across EY’s multi‑cloud and on‑premises environments.

Additionally, this role supports the implementation and ongoing operation of SaaS applications and tools used by internal Information Security teams to reduce risk, improve detection and response times, and offload operational burden while maintaining strong governance and visibility. You will work closely with Security Architects, Security Service Delivery, Security Operations, and other internal Information Security teams to enable and integrate security solutions across multiple security domains and global technology platforms, while also providing consultative support to partner teams and serving as a level‑four escalation point for complex operational issues.

Your key responsibilities

• Articulate technology issues/concerns that may emerge at any level of the technical stack, and from any component across the ecosystem, to technology leaders.
• Engineer security solutions and services following all relevant EY standards and practices for On-Premise, Hybrid and Cloud-Based environments.
• Provide detailed input into the design and leads the implementation and testing of security solutions and services for large, complex projects from initial design to completion which includes production support and documentation.
• Take accountability for the design, delivery and maintenance of new and existing security solutions or services, driving compliance with and contributing to the development of relevant standards.

• Apply modern standards/principles, global product-specific guidelines, security standards, design standards, to security solutions and services as appropriate.
• Collaborate with Security Architecture, Service Owners, and Security Operations teams to promote automation and innovation throughout the security solutions that are being maintained, thereby enhancing the security posture of these solutions.
• Represent the team in specific Project activities, including participating in projects and driving your deliverables towards successful completion.

• Work in a diverse global environment and build strong relationships across all levels of a matrixed, geographically and culturally dispersed organization.
• No direct supervisory responsibilities, however, Technical Leadership will be required within assigned services and solutions.

Skills and attributes for success

We are seeking individuals with practical experience in functional and/or technical security engineering within a large enterprise setting, specifically in the implementation and maintenance of Compliance, Vulnerability and Response security solutions.

The successful candidate will have:

Advanced technical proficiency in designing and implementing security compliance and risk solutions within a very large enterprise:

• Experience with Qualys applications, solutions, and components.
• Experience with Cloud Platform Security solutions.
• Experience with SaaS implementations.
• Knowledge and experience in vulnerability management.
• Knowledge of languages such as Python and or PowerShell a plus.
• Knowledge of Azure Data Factory.
• Several years’ experience working in a large global virtual environment.

• Communicate fluently in English, both written and verbal, and able to communicate technical concepts effectively.
• Excellent interpersonal communication and organizational skills and the ability to work within tight timeframes.
• Rapidly learn new and emerging technologies with the ability to define engineering standards quickly and efficiently.

To qualify for the role, you must have

• Detailed knowledge of several of the following: EDR, AV/AM, Vulnerability Scanning, Cloud Operations, IPS/IDS, O365 Tenants, networking concepts & mechanisms, scripting in Python or another language, and other relevant technologies.

• At least 8 years of experience in Security, including demonstratable knowledge of Compliance and Vulnerability technologies.
• 3+ years demonstrated ability in an engineering function.
• Several years’ experience working in a large global virtual environment and enterprise environments at scale.
• A strong understanding of other technologies required to run a secure, enterprise level infrastructure that adhere to security best practices.
• Excellent time management, organizational, and decision-making skills.
• The ability to design and document processes, procedures, and security designs clearly and accurately for distribution to internal teams and customers.
• Demonstrated experience in dealing with external vendors and suppliers in the security industry.
• Technical proficiency with interacting with APIs and scripting tools (Python, Ansible, PowerShell, etc.), is a plus.

Ideally, you’ll also have

• A bachelor's degree in Computer Science, Engineering, IT, Mathematics or a related field, or equivalent work experience.
• GSEC/CISSP or other security related generalist certification from ISC2 or GIAC.
• Experience in project management, service introduction, and service readiness.

What we look for

This role is perfect for you, if you have excellent problem solving, decision making, and communication skills.

We are looking for people who are comfortable working with culturally diverse on/offshore team members, able to react appropriately during stressful and ambiguous situations.

Independent thinkers with team driven values.

What we offer

EY Global Delivery Services (GDS) is a dynamic and truly global delivery network. We work across nine locations –  Argentina, Hungary, India, the Philippines, Poland, Sri Lanka, Mexico, Spain and the United Kingdom – and with teams from all EY service lines, geographies and sectors, playing a vital role in the delivery of the EY growth strategy. From accountants to coders to advisory consultants, we offer a wide variety of fulfilling career opportunities that span all business disciplines. In GDS, you will collaborate with EY teams on exciting projects and work with well-known brands from across the globe. We’ll introduce you to an ever-expanding ecosystem of people, learning, skills and insights that will stay with you throughout your career.

• Continuous learning: You’ll develop the mindset and skills to navigate whatever comes next.
• Success as defined by you: We’ll provide the tools and flexibility, so you can make a meaningful impact, your way.
• Transformative leadership: We’ll give you the insights, coaching and confidence to be the leader the world needs.
• Diverse and inclusive culture: You’ll be embraced for who you are and empowered to use your voice to help others find theirs.

About EY

EY | Building a better working world

EY exists to build a better working world, helping to create long-term value for clients, people and society and build trust in the capital markets.

Enabled by data and technology, diverse EY teams in over 150 countries provide trust through assurance and help clients grow, transform and operate.

Working across assurance, consulting, law, strategy, tax and transactions, EY teams ask better questions to find new answers for the complex issues facing our world today.

If you can demonstrate that you meet the criteria above, please contact us as soon as possible.

The exceptional EY experience. It’s yours to build.

In compliance with the requirements of the Whistleblower Protection Act, our company has established the Procedure for reporting breaches of law and undertaking appropriate follow-up actions. Any misconduct should be reported through the EY Ethics Hotline.