Security Advisory Consultant

As a Security Advisory Consultant at EY, you will play a crucial role in advising EY's Advisory and TAS service lines on security matters, including managing a global managed services platform, big data and analytics solutions, as well as individual line of business solutions. Your responsibilities will involve defining security architectures, providing security guidance, identifying security-related requirements, promoting secure designs, and facilitating the delivery of information security services throughout the system development life cycle. You will also be responsible for translating technical vulnerabilities into business risk terminology for effective communication with stakeholders. **Key Responsibilities:** - Define security architectures and provide pragmatic security guidance. - Engage IT project teams to identify and prioritize applicable security controls. - Perform risk assessments of information systems and infrastructure. - Maintain and enhance the Information Security risk assessment methodology. - Develop appropriate risk treatment and mitigation options. - Translate technical vulnerabilities into business risk terminology. - Act as a Subject Matter Expert in responsible technologies. **Skills And Attributes For Success:** - Strategic skills for developing a long-term vision for the firm's risk management security framework. - Ability to balance firm security needs with business impact. - Capacity to facilitate compromise to advance security strategy. - Understanding of EY's business objectives and ability to build relationships across EY IT. - Experience in facilitating meetings and building consensus. - High tolerance for ambiguity. - Strong technical expertise in web-based multi-tier information systems and network infrastructures. - Familiarity with security architecture, design, and assessment of various solutions. - Experience with common information security standards such as ISO 27001/27002, NIST, PCI DSS, ITIL, and COBIT. - Exposure to cloud technologies and cloud-based solutions, preferably Microsoft Azure. **Qualifications:** - An advanced degree in Computer Science or a related discipline, or equivalent work experience. - Five or more years of experience in Information Security risk management. - Eight or more years of experience in Information Security or Information Technology discipline. - Exceptional judgment, decision-making, and communication skills. - Two or more years of experience with cloud technologies and solutions. - Strong English language skills. **Additional Company Details:** EY aims to build a better working world by creating long-term value for clients, people, and society while fostering trust in the capital markets. With diverse teams in over 150 countries, EY provides assurance through data and technology, helping clients grow, transform, and operate across various sectors. EY's services span assurance, consulting, law, strategy, tax, and transactions, addressing complex global challenges with innovative solutions.,