The Business Security Consultant (CNAPP) role at EY focuses on enhancing cloud security for applications hosted on the Microsoft Azure platform. The consultant will work within a DevSecOps model to implement security best practices and automate security processes. This hands-on position requires collaboration with various teams to ensure the security of cloud services and infrastructure. The ideal candidate will have expertise in Cloud Native Application Protection Platform (CNAPP) technology and will be responsible for identifying and mitigating security risks.

• Bachelor's degree in Computer Science, Information Security, or a related field.
• 8+ years of experience working as a Cloud Security Engineer or Architect with CNAPP platforms.
• Hands-on experience with cloud security capabilities at the enterprise level, including CSPM and CWPP.
• Familiarity with CI/CD tools such as GitHub, GitLab, or Azure DevOps.
• Strong understanding of DevSecOps principles and practices.

• Serve as a subject matter expert to advance cloud security posture using the Wiz CNAPP across the Azure platform.
• Guide the integration of Wiz to drive risk-based remediation with product and DevOps teams.
• Develop, tune, and enforce security policies and procedures for cloud environments.
• Collaborate with cross-functional teams to integrate security best practices into the software development lifecycle.
• Conduct regular security assessments and vulnerability scans for cloud environments.

• Ernst & Young (EY) offers a comprehensive and competitive benefits package designed to support the well-being of its employees across various dimensions.