EY
Risk Consulting - Cyber Risk - Senior Consultant - Multiple Cities
EY, Baltimore, Maryland, United States, 21276
Join to apply for the
Risk Consulting - Cyber Risk - Senior Consultant - Multiple Cities
role at
EY EY focuses on high-ethical standards and integrity among its employees and expects all candidates to demonstrate these qualities. At EY, you’ll have the chance to build a career as unique as you are, with the global scale, support, inclusive culture and technology to become the best version of you. The opportunity
The objective of our consulting risk services is to provide clients with a candid and reliable overview of their risk landscape. Our solutions can be used by our clients to build confidence and trust with their customers, the overall market and when required by regulation or contract. For our Cyber Risk services, the ideal candidate will be responsible for identifying, evaluating, and managing cyber risks across the organization. This role involves working closely with IT, security teams, and business units to ensure that our cyber risk posture is aligned with our business objectives and regulatory requirements. Your Key Responsibilities
You will operate as a fieldwork leader to assist clients in employing proper information systems, resources, and controls to maximize efficiencies and minimize risk. You can expect to work with client personnel to analyze, evaluate, and enhance information systems facilitating the business internal control process, and will assist clients and other Risk Assurance professionals in performing information technology control and security engagements. Skills And Attributes For Success
Collaborate with other members of the engagement team to plan the engagement and develop work program timelines, risk assessments, and other planning documents. Demonstrate and apply a thorough understanding of complex information systems. Conduct comprehensive cyber risk assessments to identify vulnerabilities, threats, and potential impacts to the organization. Develop and implement risk mitigation strategies and controls to protect against cyber threats. Collaborate with IT and security teams to ensure that cybersecurity policies and procedures are up-to-date and effectively implemented. Monitor the cyber threat landscape and provide timely intelligence to relevant stakeholders. Facilitate risk management discussions with business leaders to ensure they understand their cyber risk exposure. Oversee the cyber risk management lifecycle, including risk identification, analysis, response, and monitoring. Prepare and present risk reports and dashboards to senior management and the board of directors. Ensure compliance with relevant laws, regulations, and industry standards related to cybersecurity and data protection. To qualify for the role you must have
A bachelor's or master's degree in Information Technology, Cybersecurity, Risk Management, or a related field. Professional certifications such as CISSP, CISM, CRISC, or similar are highly desirable. Minimum of 2 years of experience in cybersecurity, risk management, or a related role. Strong understanding of cybersecurity frameworks (e.g., NIST, ISO 27001) and regulatory requirements. Proven experience in risk assessment methodologies and tools. Excellent analytical and problem-solving skills. Strong communication and interpersonal skills, with the ability to convey complex information to non-technical stakeholders. What We Offer
We offer a comprehensive compensation and benefits package where you’ll be rewarded based on your performance and recognized for the value you bring to the business. The salary range for this job in most geographic locations in the US is $84,400 to $154,700. EEO Statement
EY provides equal employment opportunities to applicants and employees without regard to race, color, religion, age, sex, sexual orientation, gender identity/expression, pregnancy, genetic information, national origin, protected veteran status, disability status, or any other legally protected basis, including arrest and conviction records, in accordance with applicable law.
#J-18808-Ljbffr
Risk Consulting - Cyber Risk - Senior Consultant - Multiple Cities
role at
EY EY focuses on high-ethical standards and integrity among its employees and expects all candidates to demonstrate these qualities. At EY, you’ll have the chance to build a career as unique as you are, with the global scale, support, inclusive culture and technology to become the best version of you. The opportunity
The objective of our consulting risk services is to provide clients with a candid and reliable overview of their risk landscape. Our solutions can be used by our clients to build confidence and trust with their customers, the overall market and when required by regulation or contract. For our Cyber Risk services, the ideal candidate will be responsible for identifying, evaluating, and managing cyber risks across the organization. This role involves working closely with IT, security teams, and business units to ensure that our cyber risk posture is aligned with our business objectives and regulatory requirements. Your Key Responsibilities
You will operate as a fieldwork leader to assist clients in employing proper information systems, resources, and controls to maximize efficiencies and minimize risk. You can expect to work with client personnel to analyze, evaluate, and enhance information systems facilitating the business internal control process, and will assist clients and other Risk Assurance professionals in performing information technology control and security engagements. Skills And Attributes For Success
Collaborate with other members of the engagement team to plan the engagement and develop work program timelines, risk assessments, and other planning documents. Demonstrate and apply a thorough understanding of complex information systems. Conduct comprehensive cyber risk assessments to identify vulnerabilities, threats, and potential impacts to the organization. Develop and implement risk mitigation strategies and controls to protect against cyber threats. Collaborate with IT and security teams to ensure that cybersecurity policies and procedures are up-to-date and effectively implemented. Monitor the cyber threat landscape and provide timely intelligence to relevant stakeholders. Facilitate risk management discussions with business leaders to ensure they understand their cyber risk exposure. Oversee the cyber risk management lifecycle, including risk identification, analysis, response, and monitoring. Prepare and present risk reports and dashboards to senior management and the board of directors. Ensure compliance with relevant laws, regulations, and industry standards related to cybersecurity and data protection. To qualify for the role you must have
A bachelor's or master's degree in Information Technology, Cybersecurity, Risk Management, or a related field. Professional certifications such as CISSP, CISM, CRISC, or similar are highly desirable. Minimum of 2 years of experience in cybersecurity, risk management, or a related role. Strong understanding of cybersecurity frameworks (e.g., NIST, ISO 27001) and regulatory requirements. Proven experience in risk assessment methodologies and tools. Excellent analytical and problem-solving skills. Strong communication and interpersonal skills, with the ability to convey complex information to non-technical stakeholders. What We Offer
We offer a comprehensive compensation and benefits package where you’ll be rewarded based on your performance and recognized for the value you bring to the business. The salary range for this job in most geographic locations in the US is $84,400 to $154,700. EEO Statement
EY provides equal employment opportunities to applicants and employees without regard to race, color, religion, age, sex, sexual orientation, gender identity/expression, pregnancy, genetic information, national origin, protected veteran status, disability status, or any other legally protected basis, including arrest and conviction records, in accordance with applicable law.
#J-18808-Ljbffr