Risk Consulting

Description:

EY (Ernst & Young), one of the world’s leading professional services firms, is seeking a Senior Consultant – Cyber Risk to join its Risk Consulting division. This position offers a dynamic opportunity to help global organizations manage complex cyber threats, enhance resilience, and build confidence through innovative risk management strategies.

The role focuses on providing trusted insights into clients’ risk landscapes, identifying vulnerabilities, and designing robust cybersecurity and compliance frameworks. Working alongside IT, security, and business leaders, you’ll play a key part in enabling clients to strengthen their digital defenses while aligning cyber risk posture with business goals.

Key Responsibilities:

Cyber Risk Assessment & Management

• Conduct detailed assessments to identify vulnerabilities, threats, and potential impacts across client systems and operations.

• Develop and execute risk mitigation strategies, controls, and security frameworks to safeguard organizational assets.

• Oversee the full cyber risk management lifecycle: identification, analysis, response, and monitoring.

• Ensure compliance with relevant cybersecurity laws, regulations, and industry standards.

Client Engagement & Project Leadership

• Serve as a fieldwork leader, directing daily engagement activities and overseeing junior staff performance.

• Collaborate with engagement teams to plan project timelines, risk assessments, and documentation.

• Analyze client IT systems and internal controls to identify efficiency opportunities and minimize risk.

• Present analytical findings and recommendations to client management and leadership teams.

Technical & Analytical Execution

• Leverage current IT environments and emerging technologies to identify security weaknesses and process improvements.

• Utilize frameworks such as NIST, ISO 27001, and COBIT to assess and improve information security practices.

• Integrate data analytics, automation, and digital tools to enhance the effectiveness of deliverables.

• Provide timely intelligence on evolving threats and vulnerabilities to key stakeholders.

Cross-Functional Collaboration & Communication

• Partner with internal EY teams and external clients to ensure alignment between security objectives and business priorities.

• Facilitate risk discussions with executives, helping non-technical leaders understand cyber risk exposure.

• Build and maintain trusted relationships with client stakeholders across multiple industries and regions.

Required Qualifications:

• Bachelor’s or Master’s degree in Information Technology, Cybersecurity, Risk Management, or a related field.

• Strong knowledge of cybersecurity frameworks (NIST, ISO 27001, CIS Controls).

• Demonstrated experience in risk analysis, incident response, and vulnerability management.

• Excellent problem-solving, analytical, and communication skills.

• Willingness to travel up to 50% of the time.

• Valid passport required.

Preferred Qualifications:

• Degrees in Business, Accounting, Finance, Computer Science, Information Systems, or Engineering.

• Professional certifications such as:

  • CISSP (Certified Information Systems Security Professional)

  • CISM (Certified Information Security Manager)

  • CRISC (Certified in Risk and Information Systems Control)

  • CISA, CPA, CA, CIA, CIPP, CGEIT, CBCP

  • Cloud certifications: CCSP, CCSK, CCAK, Microsoft Azure Fundamentals, AWS Cloud Practitioner, Google Cloud Digital Leader

• Experience managing cybersecurity programs in large, multi-site organizations.

• Prior consulting or Big Four experience highly desirable.

Skills & Attributes for Success:

• Strong leadership with the ability to manage project teams and deliver quality outcomes under pressure.

• Strategic thinker with the ability to translate complex technical issues into business terms.

• Excellent stakeholder management, collaboration, and interpersonal communication skills.

• Advanced understanding of IT infrastructure, data protection, and cyber resilience strategies.

• Commitment to continuous learning and professional growth.

Compensation & Benefits:

EY offers a competitive and comprehensive Total Rewards package, including:

• Base salary: $84,400 – $154,700 annually (location-dependent; higher in NYC Metro, WA, and CA)

• Medical, dental, and pension plans

• 401(k) retirement savings plan with employer match

• Flexible vacation policy – determine your own time off based on personal needs

• Paid holidays, winter/summer breaks, and family care leave

• Continuous learning and professional certification support

• Leadership coaching and mentorship programs

• Inclusive, diverse workplace culture that values authenticity and innovation

About EY:

EY (Ernst & Young) is a global leader in assurance, consulting, law, strategy, tax, and transactions, helping organizations build trust and create long-term value. Operating in over 150 countries, EY’s purpose is to build a better working world through innovation, collaboration, and integrity.

EY teams help businesses grow, transform, and operate by applying deep industry knowledge, data-driven insights, and cutting-edge technology.

Equal Opportunity & Accessibility:

EY is an Equal Opportunity Employer committed to diversity and inclusion. The firm does not discriminate on the basis of race, color, religion, gender, sexual orientation, gender identity, national origin, disability, veteran status, or any other legally protected category.

If you need an accommodation during the application process due to a disability, please contact:
📧 ssc.customersupport@ey.com or ☎️ 1-800-EY-HELP3 (Option 2 → 1 → 2)