.The opportunity : We're looking for Senior Security Consultant who should have deep technical understanding of cyber security, risk, and controls concepts along with various industry standards and frameworks like - Unified Compliance Framework, ISO27001, NIST CSF, PCI- DSS, GDPR etc. to perform various Cyber maturity assessments. This is a fantastic opportunity to be part of a leading firm whilst being instrumental in the growth of a new service offering. In line with EY's commitment to quality, you'll confirm that work is of the highest quality as per EY's quality standards and is reviewed by the next-level reviewer. As an influential member of the team, you'll help to create a positive learning culture, coach and counsel junior team members and help them to develop. Your key responsibilities:
- Ensure the end to end delivery of Cyber Maturity Assessment and Cyber transformation engagements, which involves performing security assessments for various global clients
- Assess client's current state of cyber maturity against Unified Compliance framework, ISO27K, NIST, PCI-DSS, GDPR etc. through workshops/interviews with client stakeholders and understand the client's overall cyber security posture and current state of maturity
- Conducting a risk analysis and assessment of client's provided information and document request and follow up accordingly if needed. Must be able to identify whether additional information should be obtained from the client
- Defining appropriate risk ratings/risk scoring based on the defined maturity guidance either by EY standards and/or industry standards
- Must be able to provide appropriate rationale for each rating or scoring deemed to the client and/or third party based on the assessment and interaction with key stakeholders
- Work effectively as a team member, sharing responsibility, providing support, maintaining communication, updating senior team members on progress, and providing recommendation based on observations from the assessment
- Post the result of the identifying non-conformities and defined maturity scoring, team member must be able to define/develop strategy and roadmap needed that will help the client reach new goals in attaining the appropriate maturity level
- Prepare final deliverables based on the assessment outcomes for clients and third parties - current state observation, identified risks, recommendations, maturity scoring and build strategy/roadmap on how clients can achieve defined maturity state to strengthen their cyber security posture