EY Senior or Manager – IT Audit and Cyber Security in Montréal, Canada

Senior or Manager – IT Audit and Cyber Security


Requisition # MON001F5

Post Date Mar 01, 2018

EY’s people in more than 150 countries are committed to operating with integrity, quality and professionalism in the provision of audit, advisory, tax and transaction advisory services. We strive to help all of our people achieve their professional and personal goals through an inclusive environment that values everyone's contributions, appreciates diversity of thought, fosters growth, and provides continuous opportunities for development. Recognized as one of Canada's top employers, EY continually strives to be a great place to work.

Within EY’s Advisory - Risk Assurance practice, we are currently seeking a Senior or Manager to participate in client security advisory engagement teams, whereby he/she will be assessing, improving and evaluating client cybersecurity postures.

As a cybersecurity specialist, you will guide our clients to strengthen their cyber defences. At EY, you will belong to an international and connected team of specialists helping our clients with their most complex information security needs while contributing toward their business resilience. In simple terms, you know how to use your deep technical experience and apply that to a business where we need to battle risk and balance that with the requirement for enterprise agility.

Your responsibilities:

EY consultants are considered by our clients as experts and trusted in what they do. Our cyber security teams focus on providing our core services which include:

  • Cyber Program Management

  • Cyber Threat Management

  • Identity and Access Management

  • Data Protection and Privacy

  • Business Resilience

Your profile:

You are a risk practitioner at heart and have a general cyber background. Ideally, you have worked in a security-related role for between 3 and 6 years, where you have performed risk assessments, cyber control reviews, compliance audits, as well as obtained an understanding of penetration testing, security operations, SIEM and/or other security areas.

Additionally beneficial competencies to have include:

  • Experience in assessing, and implementing, security and risk standards using ISO 27k, PCI DSS, NIST, ITIL, COBIT

  • Systems security skills in assessments, design, architecture, management and reporting

  • Application control and security implementation, program and project delivery design, architecture and solution design To qualify, applicants must have:

  • At least 3 years of professional experience in either a technical IT Risk or IT Security consulting role

  • Solid project management skills and interpersonal skills

  • Advanced written and verbal communication skills and presentation skills, in both English and French

  • Be willing and able to travel, as requiredYou may also have a Master degree, or equivalent certification, in computer science, information systems, engineering, or a related major. The successful candidate must also hold or be willing to pursue related professional certifications such as the CISSP, CISM, and/or CISA.While you may impress us with your technical knowledge, it will be your strong communication skills, ability to build and develop relationships, and commitment to delivering excellence in client service that will stand you apart. EY is committed to inclusiveness, equity and accessibility. We encourage all qualified candidates to apply.