Red Teaming - Senior Manager

Ernst & Young   •  

Toronto, ON

Industry: Legal & Accounting


11 - 15 years

Posted 59 days ago

This job is no longer available.

With rapidly changing cybersecurity threats, clients from all industries look to us for trusted solutions for their increasingly complex risks. You will have access to our robust solutions to advise clients on managing cybersecurity risk, enhancing maturity, and improving efficiency. You will belong to an international connected team of specialists helping our clients with their most complex cybersecurity needs and contributing toward their business resilience.

The opportunity

We are actively seeking a Senior Manager to join our Cybersecurity team. You'll work alongside respected industry professionals, learning about and applying leading practices to better manage cybersecurity people, process and technology capabilities. You'll gain insights into the design and operations of cybersecurity programs and strategies in a variety of industries and learn how to design measurable, sustainable programs to keep up with the ever-changing cybersecurity landscape.

This position falls within our Advisory team, which helps our clients enhance the effectiveness of operations functions by assisting them as they shift their emphasis from transaction-level control, processing and reporting to more value driven, decision support and analytics.

Your key responsibilities

We currently have a career opportunity for a Senior Manager in our Cybersecurity advisory team to participate in multiple client engagement teams and related activities. As a member, you'll deliver and lead cybersecurity and IT risk client engagements as well as internal projects. An important part of your role will be to actively establish internal and external relationships. You'll also identify potential business opportunities for EY within existing engagements, and escalate these as appropriate. Similarly, you'll anticipate and identify risks within engagements and raise any issues with senior members of the team. In line with EY's commitment to quality, you'll confirm that work is of high quality and is reviewed by the next-level reviewer. This role requires willingness and ability to travel approximately 50-70%.

Skills and attributes for success

Client Responsibilities

� Consistently deliver quality client services. Monitor progress, manage risk and ensure key stakeholders are kept informed about progress and expected outcomes. Stay abreast of current business and industry trends relevant to the client's business.

� Establish relationships with client personnel at appropriate levels.

� Demonstrate in-depth technical capabilities and professional knowledge. Demonstrate ability to assimilate to new knowledge.

� Possess good business acumen.

� Remain current on new developments in advisory services capabilities and industry knowledge.

� Demonstrate and apply a thorough understanding of complex information systems. Use knowledge of the current IT environment and industry trends to identify engagement and client service issues, and communicate this information to the engagement team and client management through written correspondence and verbal presentations.

People Responsibilities

� Contribute to people-related initiatives, including development, coaching, recruiting, training and retaining staff

� Maintain an educational program to continually develop personal skills of staff

� Understand and follow workplace policies and procedures

To qualify for the role you must have

� Undergraduate or masters' degree preferably in one of the following areas: Information Security, Business Management, Information Systems, Computer Science, Engineering, and other related majors

� Knowledge and 10 years of hands-on experience with key components of cybersecurity incl. penetration testing, red teaming, vulnerability management, network & infrastructure security, managed detection and response. Risk and compliance, security architecture, data protection, privacy, security awareness would be an asset

� Expert knowledge and 8 - 10 years of practical experience with common frameworks, standards and methodologies used such as MITRE, OWASP, NIST Cybersecurity, IS 27001/2.

� Practical experience with conducting penetration tests and executing red team engagements.

� Proven book of business and ability to lead and grow a team.

� Possession of at least one of the following certifications: CISSP, CISA CISM, OSCP, GPEN, GWAPT

� Demonstrated leadership abilities, willingness and drive to build a national penetration testing/red teaming service line

� Excellent interpersonal, written, verbal, communication, and presentation skills

Ideally, you'll also have

� Familiarity with or knowledge of cybersecurity in Industrial Control Systems and Operational Technology an asset.

What we look for

We're interested in intellectually curious people with a genuine passion for cybersecurity. If you have the confidence in both your presentation and technical abilities to grow into a leading expert here, this is the role for you.

What working at EY offers

At EY, our Total Rewards package supports our commitment to creating a leading people culture - built on high-performance teaming - where everyone can achieve their potential and contribute to building a better working world for our people, our clients and our communities. It's one of the many reasons we repeatedly win awards for being a great place to work.

We offer a competitive compensation package where you'll be rewarded based on your performance and recognized for the value you bring to our business. In addition, our Total Rewards package allows you decide which benefits are right for you and which ones help you create a solid foundation for your future. Our Total Rewards package includes a comprehensive medical, prescription drug and dental coverage, a defined contribution pension plan, a great vacation policy plus firm paid days that allow you to enjoy longer long weekends throughout the year, statutory holidays and paid personal days (based on province of residence), and a range of exciting programs and benefits designed to support your physical, financial and social well-being. Plus, we offer:

� Support and coaching from some of the most engaging colleagues in the industry

� Learning opportunities to develop new skills and progress your career

� The freedom and flexibility to handle your role in a way that's right for you