Job
Description
Your key responsibilities
As an Assistant Manager of Cyber practice within IDD group, you will be a vital member of the team supporting global EY practice teams to sell, manage and execute Cybersecurity focused projects. Part of your role will also involve developing experience across a range of different type of engagements, including pre-deal (e.g. Cyber Due Diligence and carve-out planning) and post-deal (e.g. integration planning, separation planning, Day one readiness plans, 100 days plan). Having a commercial mind-set is key to this consulting-based role. Conduct security assessments, identify gaps and red flags assessing clients on prem / cloud hosted applications, data and infrastructure. Conduct research on deep and dark web using various open-source intelligence (OSINT) tools to reveal potential data breaches, provide recommendations and roadmap to mitigate the security gaps. Develop Cybersecurity assessment reports, design Target Operating Models (ToM), Target state security strategy, security roadmaps, data privacy and protection assessment reports, benchmarking analysis from security costing perspectives. You will be exclusively focused on supporting transactions from a Cybersecurity perspective pre and post deal working primarily with Private Equity and Corporate clients executing deal mandates. You will be a vital member of the team advising clients across all industries and sectors. Supporting key decision makers in developing and executing strategies for transactions. You will work in a transaction environment operating under tight MA timeframes and demands. Develop strong relationships with regional EYP practice teams and establish yourself as a trusted point of contact. You will also assist in aspects of business origination, including pitches and presentations, and attending meetings with clients to generate new business opportunities. Demonstrate strong knowledge in the Information and Cyber security area. Should be able to translate cyber risks in business language for business leaders at client side. Experience on strategic consulting engagements developing detailed, compelling and analytical PowerPoint/Word/Excel/Visio deliverables to convey complex thoughts and ideas.
Skills and attributes for success
Experience in a range of different type of engagements, including pre-deal (e.g. Cyber due diligence, carve-out planning), post-deal (e.g. integration planning, tracking) and restructuring (e.g. rapid cost reduction). Lead work-streams comprising members of the client and colleagues from our transactions and advisory practices. Strong understanding of Security architecture and design principles e.g. Zero Trust, Defence in depth etc. Lead meetings with senior client stakeholders to advise, shape and drive the strategy and planning for pre-deal diligence, integration, carve-out / separation and operational restructuring. Contribute to our practice development initiatives, supporting the continued focus on our team as a great place to work. Have innovative mindset to think out of the box for development of new services as per client needs Act as a role model and support development of junior team members, coupled with the recruitment and training responsibilities. Be flexible to support for broader IT, Cyber Operational transaction work. Willingness to undertake international travel as per business requirement
To qualify for the role, you must have
6-8 years with technical experience in information and cybersecurity management, security testing, privacy and data protection, security architecture etc. B Tech / M. Tech. / MCA/MBA /PGDM (part time / full time) from a reputed institute with a technology background. A leading cybersecurity qualification, such as CISSP, CISA, CCSP, CISM or ISO 27001 ISMS. Well versed with cybersecurity and privacy requirements as defined in NIS2, GDPR CCPA. Practical exposure to security framework and standards such as PCI, NIST CIS, ISO 27001. Strong understanding about Cloud and OT security risks and controls. In-depth knowledge on various security platforms and technologies such as DLP, Firewalls, Vulnerability Scanning, Penetration Testing Security Incident Response.
Ideally, youll also have
Project management skills Strong communication and presentation skills with proven experience of producing high quality reports, papers, presentations and thought leadership Program and project management expertise with demonstrable experience in managing and being responsible for the delivery of successful cyber programs
