Cyber Threat Detection - Active Defense Analyst jobs in United States
cer-icon
Apply on Employer Site
company-logo

EY · 16 hours ago

Cyber Threat Detection - Active Defense Analyst

positionBoston, MA
timeFull-time
remoteHybrid
seniorityMid, Senior Level
money$128K/yr - $240K/yr
date6+ years exp

EY is a global leader in assurance, consulting, strategy and transactions, and technology services. They are seeking an Active Defense Analyst to enhance the firm's enterprise security by emulating attacker behaviors, conducting threat hunting operations, and collaborating with teams to identify and remediate vulnerabilities.

AccountingAdviceBusiness IntelligenceConsultingFinancial ServicesProfessional Services
check
Growth Opportunities
check
H1B Sponsor Likelynote

Responsibilities

Perform research and analysis of attacker techniques and methodologies, and emulate those attacks in a collaborative and controlled environment
Identify security breaches through ‘Hunting’ operations within a SIEM, full packet capture, EDR, and other tools and treat intelligence
Identify patterns consistent with sophisticated attacker methodologies, and report on security concerns as they are escalated or identified
Analyze artifacts collected during a security test or passive investigation
Communicate with server owners, system custodians, and IT contacts to pursue security testing activities, including: obtaining access to systems, digital artifact collection, and containment and/or remediation actions
Create presentations in MS Word, PowerPoint, and/or Excel that support findings
Maintain, manage, improve and update security testing process and protocol documentation
Assist in analyzing findings, and develop fact based reports
Identify means to disrupt attacker actions, and enhance defender response capabilities

Qualification

Threat intelligenceIncident responsePenetration testingSIEMMalware analysisEDRNetwork operationsSecurity auditsWindows OSUnix/Linux OSIP networkingJudgmentWork-life balanceCultural awarenessIndependenceTrainingCommunication skillsTeamworkAttention to detailIntegrityPresentation skillsWriting skillsCollaborationMentoringFlexibility

Required

6+ years of relevant experience in one or more of the following areas: threat intelligence, intrusion analysis, incident response, malware analysis, security and network operations, penetration tester, or similar roles
Demonstrated understanding of the threat intelligence life cycle, network threats, attacks, attack vectors and methods of exploitation with an understanding of intrusion set tactics, techniques and procedures (TTPs)
Knowledgeable in security incident response process, procedures, and life-cycle, including performing security audits as part of red team
Good understanding of both Windows and Unix/Linux based operating systems
Understanding of IP networking concepts, to include addressing, routing, common protocol usage, use of proxies, load balancers, firewalls, routers, and switches in network architecture
Global mind-set for working with different cultures and backgrounds
Demonstrated integrity and judgment within a professional environment
Ability to appropriately balance work/personal priorities
Teaming skills as well as ability to work independently on taskings
Good social, communication, and writing skills
Qualifications, Certifications and Education requirements: Associates Degree and/or any of the following certifications: GPEN, CISSP, Security+, GCIH, OSCP, GCFE, CFCE, other relevant GIAC certs
Familiarity with EDR, SIEM, Scripting, Malware Analysis

Preferred

Some hands-on experience as an administrator configuring one or more of SIEM, Endpoint Protection, Vulnerability Scanners, or Data Loss Prevention
Proficient with one or more scripting languages such as Perl, Python, PowerShell etc. in a threat intelligence or incident response environment

Benefits

Medical and dental coverage
Pension and 401(k) plans
Paid time off options
Flexible vacation policy
Designated EY Paid Holidays
Winter/Summer breaks
Personal/Family Care
Other leaves of absence when needed to support your physical, financial, and emotional well-being

Company

EY

twittertwittertwitter
Glassdoor3.8
company-logo
EY is building a better working world by creating new value for clients, people, society, the planet, while building trust in the capital markets.
dateFounded in 1989
location
London, England, GBR
people-size10001+ employees
web-link
http://www.ey.com

H1B Sponsorship

EY has a track record of offering H1B sponsorships. Please note that this does not guarantee sponsorship for this specific role. Below presents additional info for your reference. (Data Powered by US Department of Labor)
Distribution of Different Job Fields Receiving Sponsorship
Represents job field similar to this job
Trends of Total Sponsorships
2025 (10242)
2024 (9877)
2023 (10966)
2022 (9394)
2021 (5652)
2020 (8849)

Funding

Current Stage
Late Stage

Leadership Team

leader-logo
Jonathan Williamson
Chief Operating Officer
linkedin
leader-logo
Abhishek Sen
Partner
linkedin

Recent News

GlobeNewswire
Major Organizations Support Membership in CPA Canada, Strengthening the Profession Nationally and Internationally
2026-01-16
IndiaTimes
Delhi HC quashes I-T order to EY on withholding tax
2026-01-16
PRLog
Boys & Girls Clubs of Silicon Valley names Jon Cisler to its Board of Directors
2026-01-11
Company data provided by crunchbase