Cyber Security team - Multiple Opportunities - Katowice

Press Tab to Move to Skip to Content Link

Other locations: Primary Location Only

Date: May 23, 2025

Requisition ID: 1610201

Let us introduce you to the job offers by EY GDS Poland – a member of the global integrated service delivery center network by EY.

We are looking for top-notch, technology-savvy specialists willing to move our projects onto a new track! You will use the most advanced technology stack and have an opportunity to develop and implement new solutions while working with top leaders in their industries. As part of our global team, you will participate in international projects.

Right now, we are looking for multiple roles to join the Cyber Security team within EY GDS Consulting:

The Pentester is responsible for delivering Attack & Penetration Testing projects and various other security projects including application code review, social engineering, Red Team Assessments, Purple Team Assessments, Threat Modeling, and Security Architecture reviews.

• Minimum 2 years of experience in conducting penetration tests,
• Knowledge of security issues at the technical level,
• Knowledge of solutions and recommendations to prevent or mitigate security vulnerabilities,
• Knowledge of application security verification standards,
• Understanding of how information technology systems work: networking architecture, protocols, operating systems, and web applications (backend to frontend).

The DevSecOps Specialist is responsible for designing and implementing Continuous Integration and Deployment/Delivery solutions. The Cloud Engineer should have an understanding of Cloud delivery, security, and deployment models for IaaS, PaaS, SaaS offerings from at least one major Cloud vendor such as AWS, Azure, or GCP.

• Experience in deployment security in SDLC and CI/CD, automation tools like Docker, Kubernetes, OpenShift, Jenkins, and Terraform.
• Knowledge of test automation and vulnerability scanning (DAST/SAST) is a plus.
• Understanding of cloud security standards like NIST, CIS, ISO, CSA STAR.

As an Information Security Consultant within Strategy, Risk, Compliance & Resilience (SRCR), you will help EY clients evaluate the effectiveness of their cybersecurity and resiliency programs.

• Strong analytical and problem-solving skills, effective team collaboration, and attention to detail.
• Project Management and Audit skills.
• Certifications such as CISA, CISSP, CISM, ISO27001 Lead Auditor/Implementer are advantageous.
• Knowledge of standards like ISO27001, NIST, TISAX, and IT controls including ITGC, ITAC, SOX compliance, SSAE16, and general controls.

The Data Protection Consultant is responsible for data identification and protection, applying policies accordingly.

• Experience with Data Security Technologies like DLP, CASB, DAM, Encryption, PKI, and related tools.

Responsible for designing and implementing identity management processes and leading technical teams on IAM platform projects using tools like SailPoint or Saviynt.

• Strong understanding of identity governance, lifecycle, and access management concepts.
• Experience with provisioning workflows, solution design, and configuration.

Responsible for creating solutions and architectures as a Subject Matter Expert in SIEM, SOC, vulnerability management, and RFP solutioning.

EY GDS offers a dynamic, global environment with opportunities for continuous learning, leadership, and diversity. We work across multiple locations and sectors, providing a wide range of career opportunities and exciting projects.

• Continuous learning and development.
• Flexible work environment to make an impact your way.
• Leadership development and inclusive culture.

EY exists to build a better working world, leveraging data and technology with diverse teams across over 150 countries, providing trust through assurance, and helping clients grow and transform.

If you meet the above criteria, please contact us promptly. The EY experience is yours to build.

In accordance with the Whistleblower Protection Act, misconduct should be reported via the EY Ethics Hotline.