Job
Description
Role Overview: You will be joining EY as a Security Consultant where your responsibilities will include providing security guidance to IT project teams in the Travel, Meeting & Events industry. Your role will involve identifying and prioritizing security-related requirements, promoting secure-by-default designs, performing risk assessments of 3rd party information systems, and articulating findings and recommendations to IT project teams and management. You will be expected to work on multiple projects simultaneously and provide pragmatic, business-aligned security guidance. Key Responsibilities: - Support multiple project teams in the design, implementation, and certification of security controls across IT systems in new platforms/products used within EY - Possess knowledge of various IT system architecture and technology like Travel solutions, Meeting & Events apps hosted in different Cloud environments, as well as supporting technology such as IAM, network security, firewalls, user account management, audit & logging - Assess 3rd Party security assessments and understand the applicability of SOC1, SOC2 reports and concepts of vendor risk management Qualifications Required: - Eight or more years of IT industry experience with a minimum of eight years of relevant experience in Information Security discipline - Bachelor's/Masters degree in Computer Science or a related discipline, or equivalent work experience - Experience in reviewing Mobile applications & platforms, knowledge of Cloud Environment setup, and common information security requirements for such platforms is a plus - Experience providing and validating security requirements related to information system design and implementation - Experience conducting risk assessments, vulnerability assessments, and recommending risk remediation strategies - Familiarity with information system attack methods and vulnerabilities Additional Details: EY Technology plays a crucial role in supporting the organization's technology needs, with a focus on delivering new technology services for clients, supporting Core Business Services functions, and ensuring information security. The Business Enablement Security Consulting group, reporting to the Deputy CISO of Enterprise Workplace Technology, is involved in the secure design, architecture, and development of applications, working closely with various stakeholders to deliver secure business solutions. EY promotes innovative ideas and services across the globe, offering opportunities to lead the market with security in mind. As a Security Consultant, you will collaborate with different teams to ensure the secure design, build, deployment, and operation of business applications and related infrastructure. Role Overview: You will be joining EY as a Security Consultant where your responsibilities will include providing security guidance to IT project teams in the Travel, Meeting & Events industry. Your role will involve identifying and prioritizing security-related requirements, promoting secure-by-default designs, performing risk assessments of 3rd party information systems, and articulating findings and recommendations to IT project teams and management. You will be expected to work on multiple projects simultaneously and provide pragmatic, business-aligned security guidance. Key Responsibilities: - Support multiple project teams in the design, implementation, and certification of security controls across IT systems in new platforms/products used within EY - Possess knowledge of various IT system architecture and technology like Travel solutions, Meeting & Events apps hosted in different Cloud environments, as well as supporting technology such as IAM, network security, firewalls, user account management, audit & logging - Assess 3rd Party security assessments and understand the applicability of SOC1, SOC2 reports and concepts of vendor risk management Qualifications Required: - Eight or more years of IT industry experience with a minimum of eight years of relevant experience in Information Security discipline - Bachelor's/Masters degree in Computer Science or a related discipline, or equivalent work experience - Experience in reviewing Mobile applications & platforms, knowledge of Cloud Environment setup, and common information security requirements for such platforms is a plus - Experience providing and validating security requirements related to information system design and implementation - Experience conducting risk assessments, vulnerability assessments, and recommending risk remediation strategies - Familiarity with information system attack methods and vulnerabilities Additional Details: EY Technology plays a crucial role in supporting the organization's technology needs, with a focus on delivering new technology services for clients, supporting Core Business Services functions, and ensuring information security. The Business Enablement Security Consulting group, reporting to the Deputy CISO of Enterprise
