Cyber threats, social media, massive data storage, privacy requirements and continuity of the business as usual require heavy information security measures. As an information security specialist, you will lead the implementation of security solutions for our clients and support the clients in their desire to protect the business. You will belong to an international connected team of specialists helping our clients with their most complex information security needs and contributing toward their business resilience. You will be working with our Advanced Security Centers to access the most sophisticated tools available to fight against cybercrime. 

The opportunity

We will support you with career-long training and coaching to develop your skills. As EY is a global leading service provider in this space, you will be working with the best of the best in a collaborative environment. So whenever you join, however long you stay, the exceptional EY experience lasts a lifetime. 

Your key responsibilities 
Our security professionals possess diverse industry knowledge, along with unique technical expertise and specialized skills. The team stays highly relevant by researching and discovering the newest security vulnerabilities, attending and speaking at top security conferences around the world, and sharing knowledge on a variety of topics with key industry groups. The team frequently provides thought leadership and information exchanges through traditional and less conventional communications channels such as speaking at conferences, publishing white papers and blogging.

Our Vulnerability Management team aims to build a full service vulnerability management offering providing clients with tailored solutions to deploy and run vulnerability management programs. You will serve on client engagement teams to assist in delivering the full range of services and work with EY Cybersecurity leadership to develop the firm’s vulnerability management service offering.

Skills and attributes for success

• Assist in the development of the information security framework, policies and procedures;
• Conduct Information Security compliance and maturity assessments using international standards and best practices;
• Assist the GRC Team Leader in the information security risk management process, by performing information security risk assessments;
• Develop plans to improve security compliance, reduce risk, and manage potential security threats;
• Conduct information security due diligence (e.g., third party/vendor security assessment) namely evaluating contracts and RFPs for appropriate information security requirements and Client’s questionnaires in order to comply with contractual requirements;
• Assist in developing adequate information security awareness contents and training initiatives.

To qualify for the role, you must have

• Bachelor’s degree in the field of Computer Science, Information Systems, Engineering, Business and 2 years of related work experience
• Familiarity with security and risk standards;
• Hands on operational experience with vulnerability management tools;
• Understanding of various operating systems (Windows, Unix, MacOS etc.); cloud concepts (secure build images, ephemeral workloads, cloud patching etc.); knowledge of networking fundamentals;
• Good understanding of scanning tool APIs to architect integrations with other tools;
• Ability to report issues clearly and succinctly and adapt communication styles to demonstrate vulnerability severity to client technical stakeholders and leadership;
• Knowledge of general cybersecurity concepts and methods including, but not limited to secure configuration management, data protection and privacy, security monitoring, incident response, governance, risk and compliance, patch management, enterprise security strategies and architecture;
• Ability to assist in the project management of cybersecurity projects including development of project charters, project plans and status updates;
• Strong written and verbal communication skills with demonstrated ability to interact with senior management, technical SMEs, business partners and influence decisions;
• Ability to examine issues both strategically and analytically.

What we look for 
Highly motivated individuals with excellent problem-solving skills and the ability to prioritize shifting workloads in a rapidly changing industry. An effective communicator, you’ll be a confident team player equipped with strong people management skills and a genuine passion to make things happen in a dynamic organization. If you’re ready to take on a wide range of responsibilities and are committed to seeking out new ways to make a difference, this role is for you.
 
What working at EY offers  
We offer a competitive remuneration package where you’ll be rewarded for your individual and team performance. Plus, we offer: support and coaching; opportunities to develop new skills and progress your career; the freedom and flexibility to handle your role in a way that’s right for you.  
 
About EY 
As a global leader in assurance, tax, transaction and advisory services, we’re using the finance products, expertise and systems we’ve developed to build a better working world. That starts with a culture that believes in giving you the training, opportunities and creative freedom to make things better. Whenever you join, however long you stay, the exceptional EY experience lasts a lifetime. And with a commitment to hiring and developing the most passionate people, feedback is an essential part of what we do and this will be forthcoming in order for you to maximize your potential and be part of a dynamic team.

If you can confidently demonstrate that you meet the criteria above, please contact us as soon as possible. 

Join us in building a better working world.  
Apply now!