EY Advisory Senior Manager - Cybersecurity - Power & Utilities in Seattle, Washington
Advisory Senior Manager - Cybersecurity - Power & Utilities
Requisition # UNI00BXQ
Post Date Aug 30, 2018
EY’s cybersecurity team is focused on enabling organizations to become more resilient and agile by embedding security capabilities, physical and logical, into their business strategy and operational processes. As a member of our cybersecurity team, focused on the Power & Utilities (P&U) market, you will be focused on improving their security posture by leveraging your technical and business skills.
You will join our National Cybersecurity Advisory practice, focused on the P&U sector to become a trusted partner to our clients, participating in engagements to strengthen their security posture, while identifying new opportunities.
EY’s P&U Cybersecurity team provides a broad services offering, including:
Strategy and governance
Compliance life cycle management
Risk management, including assessments and remediation
Technology enablement, such as identity and access management (IAM), situational awareness, and governance, risk and compliance (GRC)
Engagements specific to industrial control systems (ICS), IT and OT cybersecurity convergence, Internet of Things (IoT) and supply chain management.
Your Key Responsibilities
You’ll be responsible to work on different client delivery and business development activities. More specifically:
Client delivery – To effectively lead and motivate teams, fostering an innovative and inclusive team-oriented work environment, also providing subject matter expertise in client engagements (including assessment, design and implementation of security and IT risk solutions). Also, we expect our team members to consistently deliver quality client services within timeframe and budget
Business Development - To build trustworthy and authentic client and EY relationships, cultivating business development opportunities that contribute to profitable growth
Skills and Attributes for Success
Able to work on engagements, individually or as a team member during any of the project phases. Relevant experience with technology applications to manage projects, support analytics, and engagement economics (e.g., MS Office).
High-level knowledge of foundational business areas in electrical utilities, encompassing generation, transmission, distribution, and consumption.
Good understanding of relevant technology solutions, such as GRC, IAM, security information and event monitoring, intrusion detection and prevention systems, and data diodes. Demonstrate ability to assimilate new knowledge.
Ability to lead large scale engagements and consistently deliver quality client services and generate new business opportunities.
To qualify for the role you must have
A bachelor's degree and approximately 7 years of relevant work experience; or a graduate degree and approximately 6 years of relevant work experience
A minimum of 5+ years of relevant work experience in a Power Utilities sector
A minimum of 1–2 years of experience in one or more of the following: strategy and governance, risk management, compliance, data privacy, supply chain and technology implementation within the cybersecurity domain
A willingness to travel to meet client needs; travel is estimated at 60–80%. A valid driver’s license in the US and a valid passport are required, as are willingness and ability to travel internationally. Must be able and willing to work in a variety of work environments that may include office environments, lab environments and field sites.
Ideally, you’ll also have
Expertise in Operational Technology environments and Internet of Things (IoT) is desirable, specifically with a good understanding of industrial controls systems (ICS) such as SCADA, DMS, EMS, DCS, historian, RTUs, PLCs, RAS, and relays.
CISSP, CISM and/or CISA. Non-certified hires are required to become certified within one year from the date of hire. Related technical and vendor certifications (e.g., CEH, CCNA, MCSA, GICSP) are desirable, but not required.
Understanding of relevant cybersecurity standards and regulations pertinent to utility environments, such as NIST SP 800-53/82, NERC CIP, NEI 08-09, ISA 99, NIST CSF and C2M2.
5+ years of consulting experience in a related environment.
What we look for
We’re interested in intellectually curious people with a genuine passion for cyber security. With your broad exposure across Power & Utilities, we’ll turn to you to speak up with innovative new ideas that could make a lasting difference not only to us – but also to the industry as a whole. If you have the confidence in both your presentation and technical abilities to grow into a leading expert here, this is the role for you.
What working at EY offers
We offer a competitive compensation package where you’ll be rewarded based on your performance and recognized for the value you bring to our business. In addition, our Total Rewards package includes medical and dental coverage, both pension and 401(k) plans, a minimum of 15 days of vacation plus ten observed holidays and three paid personal days, and a range of programs and benefits designed to support your physical, financial and social well-being.
As a global leader in assurance, tax, transaction and advisory services, we hire and develop the most passionate people in their field to help build a better working world. This starts with a culture that believes in giving you the training, opportunities and creative freedom to make things better. So that whenever you join, however long you stay, the exceptional EY experience lasts a lifetime.
Join us in building a better working world. Apply today.
EY, an equal employment opportunity employer (Females/Minorities/Protected Veterans/Disabled), values the diversity of our workforce and the knowledge of our people.