Tech Consulting - Cybersecurity - Threat & Vulnerability Managment (Cyber Threat Intel) - Manager

At EY, you’ll have the chance to build a career as unique as you are, with the global scale, support, inclusive culture and technology to become the best version of you. And we’re counting on your unique voice and perspective to help EY become even better. Join us and build an exceptional experience for yourself, and a better working world for all.

Consulting – Tech Consulting – Cybersecurity – Threat and Vulnerability Management (Cyber Threat Intelligence) - Manager

The opportunity

In a rapidly changing cybersecurity threat landscape, clients from all industries look to us for trusted solutions for increasingly complex threats and risks. Join our dynamic Cybersecurity team as a Manager in Response & Investigations, where you'll confront emergent threats, conduct detailed investigations, and develop strategies to enhance security measures. This role is pivotal in safeguarding our organization's digital infrastructure and requires a proactive approach to continuous improvement and the application of best practices.

Your key responsibilities

As a Manager on the Cyber Threat Intelligence team, your key responsibilities would include integrating an intelligence-led perspective across all domains of security. Your role would involve leading cross-disciplinary teams in conducting detailed intelligence analysis using industry frameworks and techniques and applying that analysis to inform and enhance other areas of cybersecurity. You would oversee teams’ collection, analysis, production, and dissemination of actionable cyber threat intelligence and ensure collaboration with other security and business teams is productive and valuable. You will be responsible for ensuring delivery of clear, concise, and actionable intelligence reports and support to both technical and executive audiences. Furthermore, as a manager, you would play a pivotal role in mentoring senior and junior analysts, setting and advancing a collaborative and trust-based culture, and bringing new ideas to enhance the team’s skillsets and capabilities. In addition to these responsibilities, you would be expected to stay abreast of the latest cyber threat trends and technologies, representing EY and the team in high-visibility industry groups, conferences, and events.

Skills and attributes for success

• The ability to communicate effectively and professionally both verbally and in written form when interacting with clients, senior leaders, technical teams, support staff, vendors, and business partners in both technical and non-technical terms.
• The ability to engage with clients by listening to and understanding their needs.
• The ability to recognize when to escalate risks, issues, and opportunities to enhance service delivery and increase revenue to appropriate client and EY leadership.
• The ability to manage the creation, review, and delivery of high-quality work products, client reports, and presentations.
• Adherence to service quality standards and program management requirements.
• The ability to work collaboratively in a cross-functional team environment that is culturally diverse and with geographically dispersed teams.
• Strong analytical and critical thinking skills, with the ability to process complex information and present it in a clear and understandable manner.
• A proactive mindset, with a keen interest in staying abreast of the latest cyber threats and trends.

To qualify for the role, you must have:

• A Bachelor’s degree in Computer Science, Computer Engineering, Cybersecurity, Management Information Systems, or a related field along with 6+ years of relevant experience in cyber threat intelligence or a related field, with some of that experience in professional services or similar fields.
• Demonstrated leadership experience with the ability to manage and mentor a team of consultants and analysts.
• Demonstrated experience with common standards such as STIX/TAXII, ICD203 & ICD206, DHS TLP, etc. and a thorough understanding of the intelligence lifecycle.
• The ability to conduct research and Open-Source Intelligence (OSINT) while understanding the importance of leveraging primary sources and validating findings.
• A strong understanding of Threat Intelligence Platforms (TIPs) and experience leading research and analysis using common CTI tools, whether open or closed source.
• Deep understanding of frameworks and concepts such as atomic Indicators of Compromise (IOCs), MITRE ATT&CK Tactics, Techniques, and Procedures (TTPs), the Pyramid of Pain, and higher-level behavioral patterns.
• Experience dealing with threat actors of varying motivations, resourcing, and goals, including Advanced Persistent Threat (APT) actors, cybercriminals, and hacktivist groups.

What we look for

We are looking for top performers with a deep understanding of technological threats and the capacity to lead teams in a dynamic, client-driven environment. Ideal candidates are adept at managing current challenges and anticipating future vulnerabilities within the cyber realm.

What we offer

We offer a comprehensive compensation and benefits package where you’ll be rewarded based on your performance and recognized for the value you bring to the business. The base salary range for this job in all geographic locations in the US is $143,500 to $263,200. The salary range for New York City Metro Area, Washington State and California (excluding Sacramento) is $172,200 to $299,100. Individual salaries within those ranges are determined through a wide variety of factors including but not limited to education, experience, knowledge, skills and geography. In addition, our Total Rewards package includes medical and dental coverage, pension and 401(k) plans, and a wide range of paid time off options. Join us in our team-led and leader-enabled hybrid model. Our expectation is for most people in external, client-serving roles to work together in person 40-60% of the time over the course of an engagement, project or year. Under our flexible vacation policy, you’ll decide how much vacation time you need based on your own personal circumstances.