EY Cyber Risk Advisor, Financial Services Office (Technology Risk) (Cyber Risk) (Senior) (Multiple Positions) in Atlanta, Georgia
Cyber Risk Advisor, Financial Services Office (Technology Risk) (Cyber Risk) (Senior) (Multiple Positions)
Requisition # ATL00556
Post Date Mar 30, 2021
Cyber Risk Advisor, Financial Services Office (Technology Risk) (Cyber Risk) (Senior) (Multiple Positions) , Ernst & Young U.S. LLP, Atlanta, GA.
Work with client personnel in the financial services industry to analyze, evaluate and enhance their cybersecurity program. Leverage knowledge of the current cyber/IT landscape and financial services industry cyber/IT trends to advise clients on cyber risk issues. Apply an understanding of general security concepts and methods such as identity and access management, threat and vulnerability management, data classification, incident response, security policy creation, enterprise security strategies, privacy, architectures and governance. Interface with client stakeholders and subject-matter-experts that own cybersecurity processes and controls such as Information Security Governance, Risk Management, Security Operations and Monitoring, Threat Intelligence, Business Continuity, Incident Response, Privacy, and Third Party Risk Management.
Provide technical guidance and share knowledge with team members with diverse skills and backgrounds. Consistently deliver quality client services focusing on more complex, judgmental and/or specialized issues. Demonstrate technical capabilities and professional knowledge. Learn about EY and its service lines and actively assess and present ways to apply knowledge and services.
Full time employment, Monday – Friday, 40 hours per week, 8:30 am – 5:30 pm
Bachelors degree in Information Systems, Computer Science, Business, Accounting, Finance, or a related field and 2 years of work experience in cybersecurity, information security and/or IT risk. Alternatively, will accept a Masters degree in Information Systems, Computer Science, Business, Accounting, Finance, or a related field and 1 year of work experience in cybersecurity, information security and/or IT risk.
Must have 1 year of experience working as a cybersecurity practitioner, cyber/IT auditor, or cyber/IT risk advisor for a public accounting firm, professional services firm, or a financial services company.
Must have 1 year of experience with at least three (3) of the following frameworks/regulations: ISO 27001, NIST 800 series, NIST Cybersecurity Framework, FFIEC Cybersecurity Assessment Tool, GLBA, FFIEC, NY-DFS, SEC, NFA, or FDIC.
Must have 1 year of experience with at least three (3) of the following types of work related to cybersecurity and technology: a) cyber strategy, transformation and architecture; b) cyber risk management; c) cyber compliance, regulations and standards; d) cyber resiliency; and/or e) cyber controls, assessments and audit.
Requires travel up to 80%, to serve client needs.
Employer will accept any suitable combination of education, training or experience.
TO APPLY: Please apply on-line at ey.com/en_us/careers, and click on “Find jobs” ( Job Number – ATL00556).
EY provides equal employment opportunities to applicants and employees without regard to race, color, religion, age, sex, sexual orientation, gender identity/expression, national origin, protected veteran status, disability status, or any other legally protected basis, in accordance with applicable law.
This particular position at Ernst & Young in the United States requires the qualified candidate to be a "United States worker" as defined by the U.S. Department of Labor regulations at 20 CFR 656.3. You can review this definition atat the bottom of page 750. Please feel free to apply to other positions that do not require you to be a "U.S. worker".