- Engage in Cyber Strategy Governance, Cyber Risk Compliance, Cyber Resilience, Cyber Transformation and Co-Sourcing, Application Network Security engagements
- Work effectively as a team member, sharing responsibility, providing support, maintaining communication and updating senior team members on progress.
- Execute the engagement requirements, along with review of work by junior team members.
- Help prepare reports and schedules that will be delivered to clients and other parties.
- Develop and maintain productive working relationships with client personnel.
- Build strong internal relationships within EY Consulting Services and with other services across the organization
- Contribute to people related initiatives including recruiting and retaining Cyber Transformation professionals
- Maintain an educational program to continually develop personal skills of staff
- Understand and follow workplace policies and procedures
- Building a quality culture at GDS
- Help senior team members in performance reviews and contribute to performance feedback for staff/junior level team members
- Manage the performance management for the direct reportees, as per the organization policies.
- Foster teamwork and lead by example; training and mentoring of project resources
- Participating in the organization-wide people initiatives
Skills and attributes for success
- Hands-on experience of more than 5 years with key components of cybersecurity including (but not limited to)
- Vendor/3rd Party Risk Management Assessment
- Cyber Strategy Governance, Cyber Transformation, Cyber Dashboarding
- Regulations/standards such as ISO 27001, PCI DSS, HIPAA, HITRUST, GDPR, CCPA, FISMA/FEDRAMP, COBIT, OWASP Top 10, NIST 800-53
- Business Continuity Disaster Recovery
- Must have experience in working in client facing roles, interacting with the third parties, assessing different kinds of environments (IT and non-IT) and ability to apply cyber security concepts in all these sectors.
- Experienced in creation and review of security policy/procedures, and in performing risk assessments.
- Good to have experience in assessing ITGC requirements across various industries including both Cybersecurity and resilience requirements.
- Should have a good understanding of VAPT process, common application security vulnerabilities, exploitation techniques and remediation measures.
- Basic understanding of Network Security and network architecture diagram reviews, access and perimeter control, vulnerability management and intrusion detection, firewall rule-based reviews.
- Good understanding of logging and monitoring tools (SIEM). Knowledge in any one of the SIEM tools is a plus.
To qualify for the role, you must have
- BE - B. Tech / MCA / M. Tech/ MBA with background in computer science and programming.
- More than 5 Years of relevant experience.
- Strong Excel and PowerPoint skills.
- Should be proficient in leading medium to large engagements and coach junior staff.
Ideally, you ll also have
- CISSP, CISA, CISM, CEH, ISO 27001 Lead Auditor and Lead Implementer.
- Project management skills.
- A team of people with commercial acumen, technical experience and enthusiasm to learn new things in this fast-moving environment with consulting skills.
- An opportunity to be a part of market-leading, multi-disciplinary team of 1400 + professionals, in the only integrated global transaction business worldwide.
- Opportunities to work with EY Consulting practices globally with leading businesses across a range of industries.
Employment Type: Full Time, Permanent
Read full job description