Senior Consultant - Tech Consulting - Cybersecurity - CMS Ernst & Young AE

Deliver cyber threat monitoring, threat hunting, and incident response engagements for a diverse range of clients.

Design, implement, and optimizeNext-Gen SOCs, including people, process, and technology components.

Guide clients in establishing 24x7 monitoring models, incident escalation plans, procedures, and runbooks.

Lead major security incident response efforts and support cyber crisis simulation exercises.

Define and develop use cases, alert logic, and detection engineering strategies for SIEM, SOAR, and EDR/XDR platforms.

Conduct SOC maturity assessments, gap analysis, and create roadmaps aligned with NIST CSF, MITRE ATT&CK, and regional regulations.

Integrate threat intelligence platforms, contextual enrichment, and TTP-based detection methods into client environments.

Develop detailed reports, articulate technical findings, and deliver actionable recommendations to both technical teams and executive stakeholders.

• Mentor junior team members and contribute to knowledge development across the team.

Skills and attributes for success

• Strong technical background in SIEM, SOAR, and EDR/XDR platforms, including architecture, rule finetuning, and end-to-end use case lifecycle development.
• In-depth understanding of the threat intelligence lifecycle, attacker TTPs, and emerging threats such as APT, ransomware, and insider threats.
• Hands-on knowledge of MITRE ATT&CK, NIST CSF and incident handling best practices.
• Experience in developing SOC playbooks, use cases, KPIs, and SOC operating models.
• Ability to communicate technical/complex cyber risks and threats effectively to both technical and non-technical stakeholders, including senior management.
• Proven experience managing large-scale SOC transformation and threat detection programs across diverse client environments.
• Collaborating with other members of the engagement team to develop the engagement plan, timelines, risk assessments and other documents/templates.
• Ability to analyze and interpret complex technical results and present insights to business stakeholders.
• Strong analytical, problem-solving, and critical-thinking skills.
• Excellent communication and collaboration skills.

To qualify for the role, you must have

• Bachelor s or Master s degree in Cybersecurity, Computer Science, Information Technology, or related field.
• 2 5 years of hands-on experience in Security Operations, Threat Detection, or Incident Response.
• Experience working with SIEM/SOAR/EDR tools (implementation or operations).
• Strong written and verbal communication skills in English.
• Valid passport and willingness to travel across the MENA region.