Security Consultant
EY is seeking an experienced Security Consultant to design, implement, and certify security controls for complex global applications built on Microsoft Azure and the broader Microsoft technology stack. The role is primarily an individual contributor working across multiple project teams.
Main Responsibilities
Develop and implement security architectures for complex global applications on Microsoft Azure and other cloud platforms.
Participate in implementation and certification of security controls across multiple projects and applications.
Leverage expertise in IAM, network security, firewalls, user account management, auditing and logging, and security principles from ISO27001, OWASP, and other standards.
Support internal application development teams and onboarding of suppliers to ensure adherence to EY security policies and international best practices.
Interpret security reports (SAST, DAST) and recommend corrective actions.
Collaborate with developers, architects, and business leaders to embed security across the entire development lifecycle.
Required Skills and Experience
Extensive experience implementing security controls in complex IT architectures, including cloud environments (Microsoft Azure, Azure, GCP, AWS) and on‑premises solutions.
Deep knowledge of IT system architecture, cloud technologies, IAM, network security, firewalls, software development best practices, system auditing, and hardening.
Proficiency in interpreting SAST/DAST reports and translating findings into actionable recommendations.
Proven ability to collaborate across multidisciplinary teams in Agile and DevOps environments.
Bachelor’s degree in Computer Science or a related field.
Excellent communication skills in English; Spanish is an advantage.
Advanced English for corporate/business communication.
Preferred Qualifications
Experience with operational security models and procedures.
Knowledge of information security standards such as ISO27001/27002, NIST CSF, FEDRAMP, CSA, CIS Controls.
Cloud security certifications (e.g., AZ-300, Azure Architect Technologies).
Experience with product management and security aspects across design, implementation, and operations.
CISSP, Security+, CISA certifications.
Spanish language skills.
Availability for occasional travel.
Key Responsibilities
Support internal application development teams and supplier onboarding to align with EY security policies.
Collaboration with multiple project teams to secure dynamic environments.
Interpret security reports and apply corrective measures.
Seniority Level
Associate
Employment Type
Full‑time
Job Function
Information Technology
Industries
Professional Services
#J-18808-Ljbffr