EY
Risk Consulting - Cyber Risk - Senior Consultant - Multiple Cities
EY, Portland, Oregon, United States, 97204
Overview
Risk Consulting - Cyber Risk - Senior Consultant - Multiple Cities at EY EY focuses on high-ethical standards and integrity among its employees and expects all candidates to demonstrate these qualities. At EY, you’ll have the chance to build a career with global scale, support, an inclusive culture and technology to become the best version of you. The Opportunity
The objective of our consulting risk services is to provide clients with a candid and reliable overview of their risk landscape. Our solutions help clients build confidence and trust with customers, the overall market, and when required by regulation or contract. For our Cyber Risk services, the ideal candidate will be responsible for identifying, evaluating, and managing cyber risks across the organization. This role involves working closely with IT, security teams, and business units to ensure that our cyber risk posture is aligned with business objectives and regulatory requirements. Your Key Responsibilities
Operate as a fieldwork leader to assist clients in employing proper information systems, resources, and controls to maximize efficiencies and minimize risk. Work with client personnel to analyze, evaluate, and enhance information systems facilitating the business internal control process. Assist clients and other Risk Assurance professionals in performing information technology control and security engagements. Skills And Attributes For Success
Collaborate with the engagement team to plan the engagement, develop work program timelines, risk assessments, and other planning documents; document business processes dependent on information technology; lead daily fieldwork progress and manage staff performance. Demonstrate a thorough understanding of complex information systems and current IT environment trends; identify engagement and client service issues and communicate them to the team and client management through written and verbal means. Demonstrate strong project management, teamwork, and use of current technology to enhance deliverables. Conduct comprehensive cyber risk assessments to identify vulnerabilities, threats, and potential impacts. Develop and implement risk mitigation strategies and controls to protect against cyber threats. Collaborate with IT and security teams to ensure cybersecurity policies and procedures are up-to-date and effectively implemented. Monitor the cyber threat landscape and provide timely intelligence to stakeholders. Facilitate risk management discussions with business leaders to explain cyber risk exposure. Oversee the cyber risk management lifecycle, including risk identification, analysis, response, and monitoring. Coordinate with external partners to manage and transfer cyber risks where appropriate. Prepare and present risk reports and dashboards to senior management and the board of directors. Ensure compliance with relevant laws, regulations, and industry standards related to cybersecurity and data protection. Conduct training and awareness programs to promote a culture of cybersecurity across the organization. Qualifications
Bachelor’s or Master’s degree (information technology, cybersecurity, risk management or related field). Professional certifications such as CISSP, CISM, CRISC, or similar are highly desirable. Minimum of 2 years of experience in cybersecurity, risk management, or a related role. Strong understanding of cybersecurity frameworks (e.g., NIST, ISO 27001) and regulatory requirements. Experience in risk assessment methodologies and tools; excellent analytical and problem-solving skills. Strong communication and interpersonal skills; ability to convey complex information to non-technical stakeholders. Ability to work independently and as part of a team in a fast-paced environment. Willingness to travel outside of assigned office location at least 50% of the time; valid passport required. Ideally, You’ll Also Have
Bachelor’s or Master’s degree in business, accounting, finance, computer science, information systems, engineering, or related discipline. Certification such as CPA, CA, CISA, CISSP, CISM, CBCP, CIA, CIPP, CGEIT is desirable. Additional cloud-based certifications (e.g., CCSP, CCSK, CCAK, Microsoft Azure Fundamentals, AWS Certified Cloud Practitioner, Google Cloud Digital Leader) are beneficial; non-certified hires would need to pursue certification for promotion eligibility. What We Look For
We’re looking for passionate leaders with strong vision and a desire to stay on top of trends in the risk industry. If you have a genuine passion for helping businesses achieve their full potential, this role is for you. What We Offer
We offer a comprehensive compensation and benefits package with a salary range of (varies by geography). Our Total Rewards package includes medical and dental coverage, pension and 401(k) plans, and a wide range of paid time off options. Flexible vacation policy and designated EY holidays are provided to support well-being, along with other leaves of absence as needed. Continuous learning: you’ll develop the mindset and skills to navigate whatever comes next. Success as defined by you: tools and flexibility to make a meaningful impact, your way. Transformative leadership: insights, coaching and confidence to be the leader the world needs. Diverse and inclusive culture: you’ll be embraced for who you are and empowered to use your voice. EY accepts applications for this position on an on-going basis. If you meet the criteria, please apply. EY exists to build a better working world by delivering value for clients, people and society and by building trust in capital markets. EY teams in over 150 countries provide trust through assurance and help clients grow, transform and operate. For those living in California, additional information is available. EY is an Equal Opportunity Employer. Reasonable accommodations are available for qualified individuals with disabilities during the application process.
#J-18808-Ljbffr
Risk Consulting - Cyber Risk - Senior Consultant - Multiple Cities at EY EY focuses on high-ethical standards and integrity among its employees and expects all candidates to demonstrate these qualities. At EY, you’ll have the chance to build a career with global scale, support, an inclusive culture and technology to become the best version of you. The Opportunity
The objective of our consulting risk services is to provide clients with a candid and reliable overview of their risk landscape. Our solutions help clients build confidence and trust with customers, the overall market, and when required by regulation or contract. For our Cyber Risk services, the ideal candidate will be responsible for identifying, evaluating, and managing cyber risks across the organization. This role involves working closely with IT, security teams, and business units to ensure that our cyber risk posture is aligned with business objectives and regulatory requirements. Your Key Responsibilities
Operate as a fieldwork leader to assist clients in employing proper information systems, resources, and controls to maximize efficiencies and minimize risk. Work with client personnel to analyze, evaluate, and enhance information systems facilitating the business internal control process. Assist clients and other Risk Assurance professionals in performing information technology control and security engagements. Skills And Attributes For Success
Collaborate with the engagement team to plan the engagement, develop work program timelines, risk assessments, and other planning documents; document business processes dependent on information technology; lead daily fieldwork progress and manage staff performance. Demonstrate a thorough understanding of complex information systems and current IT environment trends; identify engagement and client service issues and communicate them to the team and client management through written and verbal means. Demonstrate strong project management, teamwork, and use of current technology to enhance deliverables. Conduct comprehensive cyber risk assessments to identify vulnerabilities, threats, and potential impacts. Develop and implement risk mitigation strategies and controls to protect against cyber threats. Collaborate with IT and security teams to ensure cybersecurity policies and procedures are up-to-date and effectively implemented. Monitor the cyber threat landscape and provide timely intelligence to stakeholders. Facilitate risk management discussions with business leaders to explain cyber risk exposure. Oversee the cyber risk management lifecycle, including risk identification, analysis, response, and monitoring. Coordinate with external partners to manage and transfer cyber risks where appropriate. Prepare and present risk reports and dashboards to senior management and the board of directors. Ensure compliance with relevant laws, regulations, and industry standards related to cybersecurity and data protection. Conduct training and awareness programs to promote a culture of cybersecurity across the organization. Qualifications
Bachelor’s or Master’s degree (information technology, cybersecurity, risk management or related field). Professional certifications such as CISSP, CISM, CRISC, or similar are highly desirable. Minimum of 2 years of experience in cybersecurity, risk management, or a related role. Strong understanding of cybersecurity frameworks (e.g., NIST, ISO 27001) and regulatory requirements. Experience in risk assessment methodologies and tools; excellent analytical and problem-solving skills. Strong communication and interpersonal skills; ability to convey complex information to non-technical stakeholders. Ability to work independently and as part of a team in a fast-paced environment. Willingness to travel outside of assigned office location at least 50% of the time; valid passport required. Ideally, You’ll Also Have
Bachelor’s or Master’s degree in business, accounting, finance, computer science, information systems, engineering, or related discipline. Certification such as CPA, CA, CISA, CISSP, CISM, CBCP, CIA, CIPP, CGEIT is desirable. Additional cloud-based certifications (e.g., CCSP, CCSK, CCAK, Microsoft Azure Fundamentals, AWS Certified Cloud Practitioner, Google Cloud Digital Leader) are beneficial; non-certified hires would need to pursue certification for promotion eligibility. What We Look For
We’re looking for passionate leaders with strong vision and a desire to stay on top of trends in the risk industry. If you have a genuine passion for helping businesses achieve their full potential, this role is for you. What We Offer
We offer a comprehensive compensation and benefits package with a salary range of (varies by geography). Our Total Rewards package includes medical and dental coverage, pension and 401(k) plans, and a wide range of paid time off options. Flexible vacation policy and designated EY holidays are provided to support well-being, along with other leaves of absence as needed. Continuous learning: you’ll develop the mindset and skills to navigate whatever comes next. Success as defined by you: tools and flexibility to make a meaningful impact, your way. Transformative leadership: insights, coaching and confidence to be the leader the world needs. Diverse and inclusive culture: you’ll be embraced for who you are and empowered to use your voice. EY accepts applications for this position on an on-going basis. If you meet the criteria, please apply. EY exists to build a better working world by delivering value for clients, people and society and by building trust in capital markets. EY teams in over 150 countries provide trust through assurance and help clients grow, transform and operate. For those living in California, additional information is available. EY is an Equal Opportunity Employer. Reasonable accommodations are available for qualified individuals with disabilities during the application process.
#J-18808-Ljbffr