Cyber-Senior

Job Description

We are looking for a highly skilled and experienced Manager to join our EY Technology Risk team. The ideal candidate will have between 6 to 11 years of experience in the field. ### Roles and Responsibility Evaluate portfolio controls for design, operating effectiveness, and risk management outcomes. Ensure accurate, effective, and timely control assessments that meet quality standards. Test and supervise control delivery, including ITGC, ITAC, System Architecture, Operating Systems, Databases, Networks, Security Systems, Cloud Services, Asset Inventories, Incident Management, Recovery Management, ISO27001 & NIST assessment, Privacy Assessment, Cyber Maturity Assessment, IT Policies and Standards Assessment, and Software Development Lifecycle (SDLC). Manage control owners and stakeholders to ensure successful reviews and minimize contention. Apply judgment and risk management concepts to identify, formulate findings, and provide valuable insights to clients. Review IT Policies and Standards to ensure compliance with industry standards. Work closely with cross-functional teams and develop strong relationships as a project lead within IT security and GRC projects. Stay current with regulatory standards, upstream risks, and industry best practices across the enterprise. Familiarity with control frameworks such as COSO, internal control principles, and related regulations including SOX and J-SOX. Knowledge of IT industry frameworks such as ISO27001, NIST, PCI-DSS, SOX, FDA, HIPAA: Privacy, HIPAA: Security, and HITECH Act. Experience in third-party reporting standards (particularly SSAE16), other reporting and industry-specific standards, and trust-based standards such as SysTrust and WebTrust. ### Job Requirements A graduate degree in CS/IT, Electronics, or Telecommunications, or an MBA/M.Sc. is required. At least 6 years of experience in applying relevant technical knowledge in engagements such as ISO assessments, NIST assessments, Data privacy audits, Network and Infrastructure audits, Cyber Maturity Assessment, IT Policies and Standards Assessment, IAM and IT Asset Management, IT Health Check. Possess a robust understanding of program and project management practices. Demonstrate familiarity with a typical IT systems development life cycle. Exhibit commercial acumen, technical experience, and enthusiasm for learning new things in a fast-paced environment. Be able to work with inspiring and meaningful projects, focusing on education and coaching alongside practical experience to ensure personal development. Have the opportunity to work with leading businesses across various industries, developing new skills and progressing your career. Enjoy freedom and flexibility to handle your role effectively.