3 days ago Be among the first 25 applicantsGet AI-powered advice on this job and more exclusive features.OverviewThis Security Consultant position will play a key role in the development and implementation of all security aspects for complex global applications based on Microsoft Azure technology and, more broadly, the Microsoft technology stack. The role is primarily that of an individual contributor capable of supporting multiple project teams, including detailed participation in implementation, certification of security controls across various projects/applications. This requires knowledge of multiple IT system architectures and cloud technologies, as well as supporting technologies such as IAM, network security, firewalls, user account management, auditing and logging, and other security concepts as described in ISO27001, OWASP, and related security standards.
Responsibilities
Support internal application development teams, as well as onboarding suppliers and their applications, ensuring alignment with EY security policies and international best practices.
Collaborate effectively with multiple project teams, ensuring security certification in a dynamic and evolving environment.
Interpret security reports and apply corrective measures to maintain the integrity and protection of developed solutions.
Skills And Attributes For Success
Significant experience in implementing and operating security controls in one or more of the following areas: Agile and DevOps methodologies, application security, cloud security (Azure, GCP, AWS), infrastructure security, and IAM.
Experience designing security controls for multilayered solutions, including API security, data isolation, encryption, and logging; familiarity with REST APIs and microservices.
Technical understanding of virtualization, cloud infrastructure, and cloud security best practices across providers, with emphasis on Microsoft Azure.
Knowledge of IT system architectures, IAM, network security, firewalls, auditing, hardening, and related security standards (ISO27001, OWASP).
Qualifications
Extensive experience in implementing, advising, and consulting on security configurations in complex IT architectures, including cloud environments and on‑premises solutions.
Proficiency in interpreting security reports (SAST/DAST) and advising on fixes based on policies and non‑functional requirements.
A degree in Computer Science or a related field.
Excellent communication skills, fluency in English; Spanish knowledge is an advantage.
Desirable
Certifications: CISSP, Security+, CISA.
Spanish language skills; availability for occasional travel.
Additional experience in cloud security and product management interactions.
Requirements
Bachelor’s degree in Technology or related fields.
Experience in security configurations for complex IT architectures, including cloud environments (primarily Microsoft Azure).
Strong knowledge of IT system architecture, IAM, and security principles aligned with ISO27001 and OWASP.
Knowledge of Python programming is preferred.
Advanced English for corporate/business communication.
Key Responsibilities
Support internal development teams and onboarding of suppliers and their applications in line with EY security policies.
Collaborate with project teams to ensure security certification in a dynamic environment.
Interpret security reports and implement corrective measures to protect developed solutions.
Seniority level
Associate
Employment type
Full-time
Job function
Information Technology
Industries
Professional Services
Referrals increase your chances of interviewing at EY by 2xGet notified about new Security Consultant jobs in Fortaleza, Ceará, Brazil.
#J-18808-Ljbffr