Full-Time
Gms – Senior
Sigdev, E
Posted on 11/18/2025
Ernst & Young
5,001-10,000 employees
Global professional services: consulting, assurance, tax
No salary listed
Thiruvananthapuram, Kerala, India
In Person
 IT & Security (1) |
|---|
- Experience in working with SIEM Solutions such as Splunk or Azure Sentinel.
- Experience in working with Endpoint Detection and Response tools preferably CrowdStrike, Sentinel One or Microsoft Defender for Endpoint.
- Expertise in SIEM and EDR content development with an eye towards behavior-based detection logic.
- Strong background in host based and network-based behaviors.
- Familiarity of Windows Event IDs and common application logs.
- Knowledge in programming or scripting languages such as Batch Scripting, Python PowerShell, etc.
- Experience in purple teaming activities.
- Hands-on experience on threat Hunting for identification of interested events for content development.
- Analyze and investigate broad range of threats or cyber activities occurring on daily basis.
- Provide actionable insights to help identify, detect, prevent, and respond to potentially malicious activities.
- Minimum of 3 to 7 years’ experience with in-depth host, network architecture knowledge that will translate over to effective content development.
- Minimum of 3 years SOC experience.
- An adversarial mindset, understanding the goals, behaviors, and TTPs of threat actors.
- Strong oral, written and listening skills are an essential component to effective consulting.
- Ability to work at all layers of the OSI models, including being able to explain communication at any level is necessary.
- Must have content development knowledge in Endpoint Detection and Response (Defender/CrowdStrike), SIEM (Splunk/Sentinel).
- Must have knowledge of Windows and Linux basics including command and script interpreters, PowerShell, registries etc.
- Troubleshoot EDR and SIEM platform and application issues, escalate and work with relevant teams to resolve issues.
- Certifications in a core security related discipline will be an added advantage.
- Certification in any one of the SIEM, EDR or Network Solutions such as Splunk, Azure Sentinel, Falcon Crowdstrike, SentinelOne will be an added advantage.
- Analyze and investigate broad range of threats or cyber activities occurring on daily basis.
- Provide actionable insights to help identify, detect, prevent, and respond to potentially malicious activities.
- Hands-on experience on threat Hunting for identification of interested events for content development.
- Participate in purple teaming activities.
- Troubleshoot EDR and SIEM platform and application issues, escalate and work with relevant teams to resolve issues.
- Purple teaming experience.
- Certifications in a core security discipline will be an added advantage.
- Certification in any one of the SIEM, EDR or Network Solutions such as Splunk, Azure Sentinel, Falcon CrowdStrike, SentinelOne will be an added advantage.
EY (Ernst & Young) provides professional services at a global scale, offering consulting, assurance, tax, and transaction advisory services. It serves clients across industries such as technology, media, real estate, hospitality, and construction. Instead of selling a single product, EY works with clients through tailored engagements where cross-disciplinary teams analyze challenges, design strategies, perform audits, help with tax planning, and assist with mergers or divestitures. What sets EY apart is its worldwide reach and integrated service model, industry-specific expertise, and focus on responsible business practices like sustainability, cybersecurity, and workforce flexibility. EY’s goal is to help organizations improve performance, manage risk, and achieve sustainable growth while building a better working world.
Company Size
5,001-10,000
Company Stage
N/A
Total Funding
N/A
Headquarters
Boston, Massachusetts
Founded
1991
Simplify's Take
What believers are saying
- ESG and sustainability services capture growing enterprise carbon tracking demand.
- AI-driven consulting from whyaye acquisition expands high-margin advisory revenue.
- Diverse entrepreneur network expansion opens mid-market consulting growth opportunities.
What critics are saying
- NMC Health £2bn lawsuit alleges negligent audits from 2012-2018 period.[2]
- SEC $100 million penalty for CPA exam cheating and evidence withholding.[1]
- Super Micro Computer auditor resignation cites governance and transparency concerns.[4]
What makes Ernst & Young unique
- Blockchain carbon tracking platform on Ethereum differentiates ESG advisory services.
- whyaye acquisition strengthens AI and data analytics consulting capabilities.
- Tony Jordan appointed Chief Ethics Officer signals governance and compliance focus.
Help us improve and share your feedback! Did you find this helpful?
Benefits
Professional Development Budget
Flexible Work Hours
Remote Work Options
Company News
EY has deployed enterprise-scale agentic AI across its global assurance practice, integrating a multi-agent AI framework into EY Canvas, its audit technology platform. The system, built on Microsoft Azure, Microsoft Foundry and Microsoft Fabric, aims to help audit teams coordinate complex tasks and respond to risks more adaptively. The rollout follows extensive piloting and testing, with AI now embedded across all audit stages for engagements worldwide. EY expects the technology to underpin all end-to-end audit activities by 2028. The company says the platform will reduce administrative burdens on clients whilst enhancing risk evaluation and maintaining professional judgement. EY Global chair Janet Truncale described it as a "human-led, AI-powered audit of the future" designed to deliver greater value and insight for clients and stakeholders.
EY has launched the EY Blockchain Privacy Sandbox, a web-based development environment enabling organisations to experiment with privacy-preserving smart contracts on public Ethereum Virtual Machine-compatible blockchains. The sandbox uses Starlight, an open-source zero-knowledge proof compiler originally developed by EY and now in the public domain. The platform allows developers to transform standard Solidity smart contracts into privacy-preserving applications without requiring local setup, lowering technical barriers to zero-knowledge technology adoption. It includes sample projects that can be explored and modified to accelerate proof-of-concept development. Grand View Research projects the global zero-knowledge proof market will reach approximately $7.6 billion by 2033. The sandbox is designed for experimentation and validation, helping businesses assess feasibility before broader enterprise integration. The platform is now available via request.
Kenyan waste management enterprise TakaTaka Ni Mali and India-based TrashCon have partnered to modernise Kenya's circular economy infrastructure through decentralised waste segregation technology. The collaboration was facilitated by TRANSFORM, an impact accelerator led by Unilever, the UK Government's FCDO, and EY. The partnership addresses implementation challenges of Kenya's Sustainable Waste Management Act (2022), which requires household waste separation. TrashCon's TrashBot technology automatically separates wet organic material from dry recyclables, creating safer conditions for waste workers whilst improving recovery rates. Urban waste collection in Kenya currently reaches only 20-30%. TakaTaka Ni Mali will serve as local reseller for TrashBot, supporting installation and maintenance whilst deploying its Ecomali digital traceability platform. The first TrashBot model will be showcased at Kenya International Investment Conference from 25-27 March, with two additional machines planned.
Ernst & Young LLP has launched EY.ai Product Development Lifecycle in partnership with 8090, introducing an AI-native approach to software development. The system, powered by 8090's Software Factory platform, uses AI agents with human oversight to deliver production-ready software in days or weeks rather than months. The framework addresses traditional development challenges including project failures and budget overruns. An EY US use case demonstrates a 70% increase in productivity and cost efficiency, with delivery speeds 80 times faster and over 95% automated test coverage. EY.ai PDLC will be deployed to tens of thousands of EY US consultants. The platform targets two key areas: legacy system modernisation and new product development. EY plans to expand the programme with additional technology partners over time.
Ernst & Young LLP has selected CrowdStrike's Falcon platform to power its Agentic Security Operations Centre services, accelerated by NVIDIA AI infrastructure. The collaboration aims to help enterprises transform security operations using AI agents capable of responding to threats at machine speed. The partnership comes as average eCrime breakout time has dropped to 29 minutes, with the fastest observed attack occurring in just 27 seconds. CrowdStrike's agentic platform leverages NVIDIA's AI tools, including Nemotron models and NeMo microservices, to enable more accurate threat analysis and faster response times. The system includes AI-ready data layers, mission-ready agents trained on real response expertise, and Charlotte AI AgentWorks, which allows organisations to build custom agents without coding. The platform aims to address the challenge of analysts manually investigating the growing volume of security alerts.