EY Commercial & Risk Management Senior Policy Analyst in United Kingdom

Commercial & Risk Management Senior Policy Analyst

Core Business Services

Requisition # UNI00CIO

Post Date 6 days ago

Our Risk Management team is responsible for protecting EY from the risks that arise from its professional practice. The team works closely with all parts of the business to identify and manage EY's risk, providing coordinated advice and assistance on independence, conflicts, compliance, regulatory, policy, security and risk management issues, as well as dealing with claims and any queries regarding EY ethics. By overseeing the operation and monitoring of key risk processes, Risk Management helps to manage the threat of litigation, avoid regulatory enforcement and limit damage to our reputation. Under Vision 2020, our Risk Management team is strategically re-focusing on risk by embedding risk discussions into business planning activities at all levels of the organization.

Job Title: C&RM Senior Policy Analyst

Job Rank: Assistant Director

Function: Data Office

Scope: Global

Sub Function: Commercial Risk and Governance

Reports to: Risk Management Team Lead

Job Summary: C&RM Senior Policy Analyst

As a C&RM Senior Policy Analyst, you will become a key member of EY’s Commercial and Risk Management team within the Global Data Office (GDO). Within the GDO, this team will be responsible for capture and governance process of commercial and risk policies as they pertain to the development and leverage of shared data assets across the Firm. The development of policies and their continued enforcement will be critical to the success of EY’s journey to an information led organization.

The C&RM Senior Policy Analyst will work with teams in Global Council Office, (GCO), Risk, Information Security and Independence to implement and execute data guidelines for data use across five key areas of considerations (channel, copyright, confidentiality, country, conditions), known internally as the 5C’s.. You, alongside the C&RM Risk Management Lead will work closely with the functional leads, global business executives and account teams to fully define and implement EY’s 5C framework across a growing number of data usage patterns. Long term roadmap includes supporting data policies and account team execution to insure that the 5C framework is being executed within all of EY’s markets, including the capture of localized consideration changes, as determined by regional functional areas of the Firm.

Additionally, the C&RM Senior Policy Analyst will work with Client Technology (security, platform, architecture) to support the design and enablement of technology and processes upon which the governance function will be executed. You will be taking an active role in providing requirements for technology enablement and organizational design. This will require working closing across the GDO to support the development and execution (DevOps) of governance processes.

At EY we believe that it is important for the Data Office to be a multi-disciplinary. This requires that you demonstrate your ability to expand your area of influence beyond “traditional data governance” and contribute towards a contiguous and market leading data services. To satisfy these objectives you must be skilled at gathering requirements and participating in workshops as a business consultant.

Essential Functions of the Job:

  • Act as a business consultant to identify the core requirements of the data policy landscape and act as a trusted advisor to our stakeholders (functional teams)

  • Support the creation and maintenance of data policy frameworks, including data use case templates and T&C’s policy roadmaps, for a segment of EY’s business that reflect business direction and opportunities, before moving to a global model

  • In conjunction with solution owners, you will support the execution of a joint review process based on the solution ‘use case’ to validate the 5C framework and drive to outcomes that enable the use case itself and template the data usage pattern.

  • As feedback from Account Teams, Markets and Service Lines as to client contract changes, the C&RM Senior Policy Analyst will work with Data Ecosystem leader to evaluate the effects on the program execution.

  • Preview the Data Office use case backlog to determine scope of review and consideration supported needed for planning purposes.

  • Research of internal and external regulatory and data policy decisions and guidelines

  • Contribute to the creation and maintenance of a process and repository for the documentation of Governance best practices to keep pace with data services and processes released by the GDO

  • Support the implementation of an ongoing communication plan to educate key stakeholders on policy data governance, specifically in the areas of client contracting (5C’s and T&C’s)

  • Deliverables include: Policy Framework, Use Case execution framework, Policy requirements for technology, Project Deliverables for 5C’s, and identification of data consolidation opportunities

Analytical/Decision Making Responsibilities:

  • Provide thought leadership into the evolution of the Governance function, working collaboratively with executives and peers.

  • The Senior C&RM Policy Analyst must be able to use independent judgment and discretion in identifying issues across use cases, T&Cs policy roadmaps, and 5C policy framework.

  • The position makes recommendations based on firm guidance, professional standards and acquired experience. Existing policies and in depth knowledge and experience are required to review complex situations and, through consultation and inquiries of the stakeholders

  • Expected to provide input and support development of deliverables and solutions

Knowledge and Skills Requirements:

  • Previous Knowledge of emerging data policy requirements (e.g. GDPR, Project Open Data, HIPPA) preferred

  • Experience in risk management processes in support of data usage and privacy

  • Ability to effectively participate in workshops to gather requirements and gain consensus

  • Strong analytical skills, good knowledge of policy processes and strong team leadership

  • Strong relationship building skills and executive presence

  • Ability to constructively challenge requirements and current state to increase overall value to the firm

  • Ability to direct the point of optimization from the project to the enterprise

  • Should be well versed with latest data policy decisions, guideline and business trends

  • Flexibility to adjust to multiple demands, shifting priorities, ambiguity and rapid change

  • Strategic skills to develop long-term visions and the ability to translate them into actionable roadmaps that are broadly accepted.

  • Ability to translate business and functional needs into policy requirements, and estimate their impact across the data lifecycle

  • Ability to rapidly comprehend the changes to key business processes and the impact on the overall data policy framework

  • Ability to understand and integrate cultural differences and motives and to lead virtual cross-cultural, cross-border teams

  • English language skills - excellent written and verbal communication

  • An overall understanding of the business objectives of service lines and Core Functional departments

  • Ability to work and team with a multitude of different people - including business customers, Functional managers, IT project managers and IT engineers - to balance demands

  • Self-starter attitude, with ability to work independently

  • Ability to analyze complex situations and to derive workable actions

  • Ability to understand detailed impact while keeping the eye on the big picture

  • Ability to abstract real world scenarios into easy to understand models

  • Ability to identify, prioritize and weigh different options and to recommend a value add solution

  • Ability to balance what is “right” with what is “realistic”

  • Ability to stay focused on identified priorities

  • Ability to make decisions in situations of ambiguity and the absence of complete facts

Supervision Responsibilities:

  • Effectively coordinates work with peers and ensures successful delivery

  • Works independently under minimal guidance with regular alignment with GDO and Governance leadership

  • Promotes strategic direction of the department to align with overall GDO objectives

  • Recognizes and manages risks in area of responsibility, putting in place appropriate mitigation plans and communicating these to avoid surprises with key stakeholders

  • Delivers results through others, leveraging the ability to lead through influence

  • Provide coaching and mentoring to less experienced team members including C&RM Junior C&RM analyst.

  • Other Requirements:

  • Moderate travel may be required, mainly to Western Europe and East Coast USA.

  • Long hours may occasionally be required to meet project commitments and/or preparing materials for clients (internal and external). Overtime may be required as per country overtime policy

  • Flexibility in working hours to accommodate workload and multiple time zones, as needed

Job Requirements:


  • A degree in Business, Computer Science, Law or STEM related discipline or equivalent work experience.


  • Proven Track record within Data Governance with significant influence on overall direction of data policies and data lifecycle management

  • Minimum of seven years of hands-on information governance or policy design and implementation.

  • Minimum of five years engaged within a multi-cultural, multi-disciplined, globally dispersed team

  • Experienced working with IT on the analysis of complex business processes and data governance needs and development of re-engineering opportunities

  • Developing and monitoring the delivery of efficient and effective processes to diverse and complex data problems

Certification Requirements:

  • Any EA, Data Governance, Applicable Vendor or Industry certification is preferred but not mandatory