Senior Consultant, Cyber Security

Job details
Posting date: 12 November 2019
Salary: Not specified
Additional salary information: Competitive
Hours: Full time
Closing date: 11 December 2019
Location: London and Manchester
Company: Ernst & Young LLP
Job type: Permanent
Job reference: ENG0001O

Apply for this job


Salary: Competitive
Location: London and Manchester
Opening Date: 12th November 2019
Closing Date: 11th December 2019
Multiple roles available

The opportunity

EY has ambitious plans to expand our market leading Cyber Security practice - part of a global cyber team focused on delivering leading edge information security assessment, security transformation programmes, cyber threat management, identity and access management, data protection and privacy, and resilience services.

Your key responsibilities

You will have exposure to Cyber Security assessments and work in teams to deliver security implementations or remediation programmes. You will identify opportunities where policies, procedures, or process require improvement to strengthen security.

· Working across cyber engagements with clients, reporting to a Manager / Senior Manager, responsible for day to day completion of security assessments or delivering elements of a security transformation programme on time and on budget
· Creating high quality reports for review
· Identifying and escalating opportunities for EY to assist clients
· Establishing and building a network of contacts
· Assisting the engagement manager with engagement planning and delivery
· Contributing to creation of proposals and marketing material
· Contributing to team development by sharing knowledge, leading by example, and helping others to develop.

Skills and attributes for success

· Security strategy, assessment, design and implementation
· Governance frameworks over processes, controls, organisation and infrastructure
· Security transformation programmes – design and management of security solution implementations and/or remediation programmes to address risks across AV, patching, secure build, vulnerability scanning & remediation, logging and monitoring, segregation, threat management, user awareness
· Identity and access management (IDAM), assessing current practices and designing solutions to improve JML processes, privileged access and recertification programmes
· Breach and incident management, design and implementation
· Security policies and procedures, design and implementation of security policies, procedures, standards and controls in line with regulation and/or current standards, ISO27001, NIST, SANS etc.
· Data privacy, implementation of data protection / GDPR programmes to address confidentiality and security over customer, employee or patient data.
· Resilience, design, and implementation of programmes to improve IT Disaster Recovery, Business Continuity
· Cyber awareness programmes, design and delivery of Cyber Security awareness programmes
· Security over operational technology and control systems (SCADA)
· Working with Internet of Things solutions, working with clients to implement security
· Working within agile development environments to embed security successfully into systems prior to product / production release
· Security architecture – creating secure architecture designs for solutions, designing secure patterns for reuse and the delivery of architectural reviews using TOGAF or SABA
· Security around emerging technology platforms – mobile device platforms (iOS, Android), cloud services (IaaS, PaaS, SaaS), Big Data, Social media

To qualify for the role you must have

· Minimum 2 years professional experience in Information Security and Cyber Security is essential
· Demonstrable experience in Information Security Management
· Strong, relevant academic record – Bachelor and Master degrees in a technology or scientific field – or equivalent industry experience
· Security related qualification e.g. CISSP, CISM, CISMP, CCNA, ISO27001 lead implementer/auditor, MBCI, IAPP

Ideally, you’ll also have

· Project and programme related qualifications; Prince II, Scrum, Agile
· Big 4 background or comparable management consulting experience

What we look for

Core consulting skills - Advanced data and evidence management, client management on remediation programmes, driving innovation & continuous improvement

Technical skills - Strong technical insight, practical knowledge and specialist capability

Versatility - Proven ability to adapt and learn in an innovative environment.

EY is committed to being an inclusive employer and we are happy to consider flexible working arrangements. We strive to achieve the right balance for our people, enabling us to deliver excellent client service whilst allowing you to build your career without sacrificing your personal priorities. While our client-facing professionals can be required to travel regularly, and at times be based at client sites, our flexible working arrangements help achieve lifestyle balance.

If you can confidently demonstrate that you meet the criteria above, please contact us as soon as possible. Join us in building a better working world. Apply now.

Proud member of the Disability Confident employer scheme

Disability Confident
About Disability Confident
A Disability Confident employer will generally offer an interview to any applicant that declares they have a disability and meets the minimum criteria for the job as defined by the employer. It is important to note that in certain recruitment situations such as high-volume, seasonal and high-peak times, the employer may wish to limit the overall numbers of interviews offered to both disabled people and non-disabled people. For more details please go to Disability Confident.

Apply for this job