Senior Cybersecurity Triage and Forensic Analyst

At EY, we are dedicated to shaping your future with confidence. Join us to thrive in a globally connected powerhouse filled with diverse teams, and take your career wherever you desire. Become a part of EY and contribute to building a better working world. In a world driven by vast amounts of information, the protection of data and information systems has never been more crucial. At EY, everyone in Information Security plays a vital role in safeguarding our business. Join a global team of nearly 950 professionals dedicated to protecting EY and client information assets! Our Information Security experts empower EY to operate securely and deliver trustworthy products and services, while swiftly detecting and responding to security events. Together, our committed team defends the EY brand and enhances client trust. The opportunity As a Cyber Triage and Forensics Incident Analyst, you will be a senior member of the technical team, focusing on security incident response at EY. You will act as an escalation point for suspicious or confirmed security incidents, performing digital forensic analysis, adhering to incident response best practices, analyzing malware, identifying indicators of compromise, and coordinating remediation efforts. Your role involves developing documentation to support the security incident response process. Your key responsibilities Investigate and resolve security incidents, producing detailed reports on findings. Conduct forensic analysis of end-user systems and servers showing possible indicators of compromise. Analyze artifacts collected during security incidents and forensic investigations. Identify security incidents through proactive hunting operations using SIEM, EDR, and other relevant tools. Collaborate with server owners, system custodians, and IT contacts to execute security incident response activities, including system access, digital artifact collection, and remediation. Consult on perceived security threats and recommend assessments. Maintain and enhance security incident process and protocol documentation. Provide regular reporting and metrics on case work. Identify root causes of security incidents and propose effective solutions. Develop detailed fact-based reports on investigative findings. Be on-call to deliver global incident response as necessary. Skills and attributes for success Strong ability to resolve security incidents through root cause identification. Capability to analyze investigative findings and develop fact-based reports. Proven integrity and sound judgment in a professional environment. Ability to balance work and personal priorities effectively. Bachelor's or Master's Degree in Computer Science, Information Systems, Engineering, or a related field. 7+ years of experience in incident response, computer forensic analysis, and/or malware reverse engineering. Comprehensive understanding of security threats, vulnerabilities, and incident response procedures. Knowledge of electronic investigation methods, forensic tools, and methodologies. Familiarity with legal requirements surrounding electronic discovery and analysis. Proficiency with EDR and SIEM technologies, such as Splunk. Deep knowledge of Windows and Unix/Linux operating systems. Ideally, you'll also have Professional certifications such as GCFE, GCFA, or GREM. Experience in security incident response within cloud environments (e.g., Azure). Programming skills in PowerShell, Python, or C/C++. Familiarity with best security practices for network architecture and server configuration. What we look for Demonstrated integrity in a professional setting. Ability to work independently and collaboratively. A global mindset to work with diverse cultures and backgrounds. Knowledge of industry-standard security incident response processes and life cycles. A positive attitude and excellent teamwork skills. Strong social, communication, and writing skills. Good presentation abilities. Exceptional investigative, analytical, and problem-solving capabilities. What we offer you At EY, we will develop your future-focused skills and provide you with world-class experiences. We empower you in a flexible work environment, fueling your extraordinary talents in a diverse and inclusive culture of globally connected teams. We provide a comprehensive benefits package, rewarding you based on performance and recognizing the value you bring to the business. The base salary range for this role in the US is $128,100 to $239,600, with higher ranges for specific metro areas. Salaries are determined by various factors, including education, experience, knowledge, and location. Join us in a hybrid model that promotes teamwork, requiring in-person collaboration 40-60% of the time. Our flexible vacation policy allows you to determine your vacation needs, complemented by designated paid holidays and supportive leave options for your well-being. Are you ready to step into a future filled with confidence? Apply today. EY welcomes applications for this position continuously. For candidates in California, please refer to additional information available. Our focus on high ethical standards and integrity is paramount; we expect all candidates to embody these qualities. EY | Building a better working world At EY, we create new value for our clients, people, society, and the planet while fostering trust in capital markets. Our teams leverage data, AI, and advanced technology, helping clients navigate today's and tomorrow's most pressing issues. With services across assurance, consulting, tax, strategy, and transactions, EY operates in over 150 countries and territories, fueled by insights and a globally connected, multi-disciplinary network. EY is an equal opportunity employer and values diversity. We welcome all applicants, regardless of race, color, religion, age, sex, sexual orientation, gender identity/expression, pregnancy, genetic information, national origin, protected veteran status, disability status, or any other legally protected basis. We are committed to providing reasonable accommodations to qualified individuals with disabilities, including veterans. If you require assistance applying or need accommodation during the application process, please reach out for support.

Created: 2026-03-11