Full-Time
GMS-Senior-Threat Intelligence Analyst
Posted on 11/17/2025
Ernst & Young
5,001-10,000 employees
Global professional services: consulting, assurance, tax
No salary listed
Bengaluru, Karnataka, India
In Person
Requires EST timezone overlap; on-call duties may be required.
 IT & Security (1) |
|---|
- Minimum of 2 years of experience with threat intelligence monitoring tools.
- At least 1 year of experience in threat intelligence report writing.
- Proficiency with OSINT, IOC lookup and validation, Domain Registrar lookups, VirusTotal, and Dark Web search.
- Experience with scripting in Python, Azure, and Linux.
- Familiarity with one or more threat intelligence platforms for feed management.
- Experience integrating threat intelligence feeds into SIEMs, especially Microsoft Sentinel.
- Proven experience with domain and social media account takedowns.
- Strong understanding of MITRE ATT&CK, D3F3ND frameworks, and the Cyber Kill Chain.
- Excellent English writing skills.
- Proficiency in Excel and/or Power BI for data visualization.
- Strong experience with PowerPoint presentations and reporting.
- Strong verbal English and presentation skills.
- Ability to work in the EST timezone (evening shift for overlap with onshore/client team).
- Strong analytical skills and ability to prioritize tasks effectively.
- Experience working with Managed Security Service Providers for backend and client-facing work.
- Monitor and analyze threat intelligence using tools such as ZeroFox, Recorded Future, Digital Shadows, or similar platforms.
- Write comprehensive and technical cybersecurity reports with strong attention to detail.
- Utilize OSINT, IOC lookup and validation, Domain Registrar lookups, VirusTotal, and Dark Web search for threat intelligence gathering.
- Develop, sustain, and enrich custom threat intelligence feeds using platforms like MISP, with scripting in Python, Azure, and Linux.
- Manage threat intelligence feeds using platforms such as Anomali, ThreatQ, Cyble, Cyware, OpenCTI, and MISP.
- Integrate threat intelligence feeds into common SIEMs, particularly Microsoft Sentinel.
- Execute domain and social media account takedowns as necessary.
- Create custom, in-depth reports specific to client requirements.
- Apply knowledge of MITRE ATT&CK, D3F3ND frameworks, and the Cyber Kill Chain in threat analysis.
- Utilize Excel and/or Power BI for data visualization and graph creation.
- Experience with Excel data cleansing, VLOOKUPs, Pivot Tables.
- Prepare and deliver PowerPoint presentations and reports to stakeholders.
- Maintain strong verbal and written communication skills in English.
- Work independently under pressure and prioritize tasks effectively.
- Be available for on-call duties for high-priority urgent tasks.
- Collaborate with Managed Security Service Providers (MSSPs) for backend and client-facing work.
- Experience with additional threat intelligence platforms.
- Advanced technical writing and reporting skills.
- Strong analytical and problem-solving abilities.
- Ability to work independently and as part of a team.
- Cybersecurity certifications (e.g., COMPTIA, SANS GIAC, ISC, EC-Council) are a plus.
- Certifications specific to cyber threat intelligence are an asset.
EY (Ernst & Young) provides professional services at a global scale, offering consulting, assurance, tax, and transaction advisory services. It serves clients across industries such as technology, media, real estate, hospitality, and construction. Instead of selling a single product, EY works with clients through tailored engagements where cross-disciplinary teams analyze challenges, design strategies, perform audits, help with tax planning, and assist with mergers or divestitures. What sets EY apart is its worldwide reach and integrated service model, industry-specific expertise, and focus on responsible business practices like sustainability, cybersecurity, and workforce flexibility. EY’s goal is to help organizations improve performance, manage risk, and achieve sustainable growth while building a better working world.
Company Size
5,001-10,000
Company Stage
N/A
Total Funding
N/A
Headquarters
Boston, Massachusetts
Founded
1991
Simplify's Take
What believers are saying
- ESG and sustainability services capture growing enterprise carbon tracking demand.
- AI-driven consulting from whyaye acquisition expands high-margin advisory revenue.
- Diverse entrepreneur network expansion opens mid-market consulting growth opportunities.
What critics are saying
- NMC Health £2bn lawsuit alleges negligent audits from 2012-2018 period.[2]
- SEC $100 million penalty for CPA exam cheating and evidence withholding.[1]
- Super Micro Computer auditor resignation cites governance and transparency concerns.[4]
What makes Ernst & Young unique
- Blockchain carbon tracking platform on Ethereum differentiates ESG advisory services.
- whyaye acquisition strengthens AI and data analytics consulting capabilities.
- Tony Jordan appointed Chief Ethics Officer signals governance and compliance focus.
Help us improve and share your feedback! Did you find this helpful?
Benefits
Professional Development Budget
Flexible Work Hours
Remote Work Options
Company News
EY has deployed enterprise-scale agentic AI across its global assurance practice, integrating a multi-agent AI framework into EY Canvas, its audit technology platform. The system, built on Microsoft Azure, Microsoft Foundry and Microsoft Fabric, aims to help audit teams coordinate complex tasks and respond to risks more adaptively. The rollout follows extensive piloting and testing, with AI now embedded across all audit stages for engagements worldwide. EY expects the technology to underpin all end-to-end audit activities by 2028. The company says the platform will reduce administrative burdens on clients whilst enhancing risk evaluation and maintaining professional judgement. EY Global chair Janet Truncale described it as a "human-led, AI-powered audit of the future" designed to deliver greater value and insight for clients and stakeholders.
EY has launched the EY Blockchain Privacy Sandbox, a web-based development environment enabling organisations to experiment with privacy-preserving smart contracts on public Ethereum Virtual Machine-compatible blockchains. The sandbox uses Starlight, an open-source zero-knowledge proof compiler originally developed by EY and now in the public domain. The platform allows developers to transform standard Solidity smart contracts into privacy-preserving applications without requiring local setup, lowering technical barriers to zero-knowledge technology adoption. It includes sample projects that can be explored and modified to accelerate proof-of-concept development. Grand View Research projects the global zero-knowledge proof market will reach approximately $7.6 billion by 2033. The sandbox is designed for experimentation and validation, helping businesses assess feasibility before broader enterprise integration. The platform is now available via request.
Kenyan waste management enterprise TakaTaka Ni Mali and India-based TrashCon have partnered to modernise Kenya's circular economy infrastructure through decentralised waste segregation technology. The collaboration was facilitated by TRANSFORM, an impact accelerator led by Unilever, the UK Government's FCDO, and EY. The partnership addresses implementation challenges of Kenya's Sustainable Waste Management Act (2022), which requires household waste separation. TrashCon's TrashBot technology automatically separates wet organic material from dry recyclables, creating safer conditions for waste workers whilst improving recovery rates. Urban waste collection in Kenya currently reaches only 20-30%. TakaTaka Ni Mali will serve as local reseller for TrashBot, supporting installation and maintenance whilst deploying its Ecomali digital traceability platform. The first TrashBot model will be showcased at Kenya International Investment Conference from 25-27 March, with two additional machines planned.
Ernst & Young LLP has launched EY.ai Product Development Lifecycle in partnership with 8090, introducing an AI-native approach to software development. The system, powered by 8090's Software Factory platform, uses AI agents with human oversight to deliver production-ready software in days or weeks rather than months. The framework addresses traditional development challenges including project failures and budget overruns. An EY US use case demonstrates a 70% increase in productivity and cost efficiency, with delivery speeds 80 times faster and over 95% automated test coverage. EY.ai PDLC will be deployed to tens of thousands of EY US consultants. The platform targets two key areas: legacy system modernisation and new product development. EY plans to expand the programme with additional technology partners over time.
Ernst & Young LLP has selected CrowdStrike's Falcon platform to power its Agentic Security Operations Centre services, accelerated by NVIDIA AI infrastructure. The collaboration aims to help enterprises transform security operations using AI agents capable of responding to threats at machine speed. The partnership comes as average eCrime breakout time has dropped to 29 minutes, with the fastest observed attack occurring in just 27 seconds. CrowdStrike's agentic platform leverages NVIDIA's AI tools, including Nemotron models and NeMo microservices, to enable more accurate threat analysis and faster response times. The system includes AI-ready data layers, mission-ready agents trained on real response expertise, and Charlotte AI AgentWorks, which allows organisations to build custom agents without coding. The platform aims to address the challenge of analysts manually investigating the growing volume of security alerts.