Advisory Senior Manager – Cybersecurity – Emerging Technologies in Portland, OR

$150K - $200K(Ladders Estimates)

Ernst & Young   •  

Portland, OR 97201

Industry: Legal & Accounting

  •  

8 - 10 years

Posted 30 days ago

Key Responsibilities:

  • Effectively lead and motivate client engagement teams and provide technical leadership on a broad range of projects including technical security assessments, planning and implementing enterprise security capabilities and processes, and developing information security strategy
  • Manage, coordinate, plan and deliver IT Risk Transformation Services projects which include GRC program design, performing current state assessments, future state design, GRC process re- engineering and enhancements, GRC tool and technology implementation, risk assessments, risk metrics and dashboarding, risk convergence, IT risk and control framework design, and integrated operational risk management projects
  • Generate new business opportunities by participating in market facing activities and developing thought leadership materials. Understand EY and its service lines. Actively encourage team members to contribute ideas and identify opportunities to introduce EY services
  • Demonstrate excellent project management skills, inspire teamwork and responsibility with engagement team members, and use current technology and tools to enhance the effectiveness of deliverables and service
  • Foster an innovative and inclusive team- oriented work environment. Play an active role in counselling and mentoring junior consultants within the firm. Assist in developing our knowledge around industry leading practices, trends and security threats regarding emerging technology platforms
  • Consistently deliver quality client services. Drive high- quality work products within expected timeframes and on budget. Monitor progress, manage risk and ensure key stakeholders are kept informed about progress and expected outcomes
  • Use knowledge of the current IT environment and industry trends to identify engagement and client service issues, and communicate this information to the engagement team and client management through written correspondence and verbal presentations. Stay abreast of current business and industry trends relevant to the client's business
  • Foster relationships with client personnel to analyze, evaluate, and enhance information systems to develop and improve security at procedural and technology levels
  • Assist with cultivating and managing business development opportunities. Understand EY and its service lines and actively assess/present ways to serve clients

To qualify, candidates must have:

  • Bachelor's degree and a minimum of 7 years of related work experience, or a Master's degree and minimum 6 years of related work experience in the fields of Computer Science, Information Systems, Engineering, Business or related major.
  • Solid understanding of fundamental information security concepts, including authentication, authorization, access control, auditing, and cryptography
  • Strong project management experience in performing security assessments of IT systems and applications including- threat model development, application security architecture design, blackbox testing and source code review, risk/flaw mitigation strategies
  • Manage teams performing analysis of IT Security program and related processes/functions – performing current state assessment via interview, determining necessary future state, providing of recommendations to reduce risk and improve effectiveness
  • Understanding of security design patterns relevant across the IT ecosystem (mobile, web, middleware, cloud, database), information security solutions engineering, security technology implementation
  • Familiarity with security concerns around emerging technology platforms – mobile device platforms (iOS, Android), cloud services (IaaS, PaaS, SaaS), Big Data, Social media
  • Knowledge of and familiarity with industry laws and regulations mandating information security and information risk management requirements (HIPAA, PCI- DSS, Sarbanes- Oxley)
  • Excellent leadership, presentation, and client service with advanced written and verbal communication and presentation skills
  • CISSP, SANS GSEC, CCSKCISM, CRISC, SANS GWAPT, ISSAP, CSSLP, SABSA or other relevant certification desired; non- certified hires are required to become certified within 1 year from the date of hire
  • A valid driver's license in the US and a valid passport required; willingness and ability to travel domestically and internationally to meet client needs; estimated at 60- 80%

Valid Through: 2019-11-12