EY

Risk Consulting – TPRM Manager

EY

full-time

Posted on:

Location Type: Office

Location: Hyderabad • 🇮🇳 India

Visit company website
AI Apply
Apply

Job Level

SeniorLead

Tech Stack

FirewallsLinuxSDLCTCP/IP

About the role

  • Provide guidance and share knowledge with team members and participate in performing procedures focusing on complex, judgmental and/or specialized issues
  • Work with the team and the client to create plans for accomplishing engagement objectives and a strategy that complies with professional standards and addresses the risks inherent in the engagement
  • Brief the engagement team on the client's environment and industry trends.
  • Maintain relationships with client management to manage expectations of service, including work products, timing, and deliverables.
  • Demonstrate a thorough understanding of complex information systems and apply it to client situations
  • Use extensive knowledge of the client's business/industry to identify technological developments and evaluate impacts on the client's business.
  • Demonstrate excellent project management skills, inspire teamwork and responsibility with engagement team members, and use current technology/tools to enhance the effectiveness of deliverables and services.
  • Understand EY and its service lines and actively assess what the firm can deliver to serve clients
  • Assist Partners & Senior Managers in driving the business development process on existing client engagements by gathering appropriate resources, gaining access to key contacts & supervising proposal preparation.
  • Create innovative insights for clients, adapt methods & practices to fit operational team needs, contribute to thought leadership documents and develop new methodologies.
  • Facilitate discussions / knowledge sharing with key client personnel and contribute to EY thought leadership.
  • Plan & schedule client engagements.
  • Determine and deploy the right team with adequate skill sets for executing engagements and periodically review status of engagements and work products.
  • Demonstrate strong project management skills
  • Maintain a strong client focus by effectively serving client needs and developing productive working relationships with client personnel.
  • Stay abreast of current business and economic developments and new pronouncements/standards relevant to the client's business.
  • Demonstrate industry expertise (deep understanding of the industry, emerging trends, issues/challenges, key players & leading practices)
  • Review status updates and prepare management presentations/audit committee presentations etc.
  • Actively contribute to improving operational efficiency on projects & internal initiatives.

Requirements

  • Strong knowledge of information security concepts, risk and controls concepts
  • Strong knowledge of standards such as ISO 27001/2, ISO 22301, ISO 27018, PCI – DSS, HITRUST, etc.
  • Strong knowledge of regulations such as FISMA, HIPAA, Reg SCI, MAS, etc.
  • Good knowledge of TCP/IP, concepts of OSI layer and protocols, networking and security concepts
  • Strong knowledge of OS (Windows / Linux) security, Database security
  • Sound familiarity with OWASP and Secure SDLC standards / frameworks
  • Strong knowledge of IT infrastructure (switches, routers, firewalls, IDS, IPS, etc.)
  • Strong knowledge of Security architecture design and review
  • Sound experience in LAN/WAN architectures and reviews
  • Good knowledge on Privacy, Governance and reporting
  • Sound knowledge of anti-virus solutions (e.g. Symantec, McAfee, etc.)
  • Knowledge of incident management, disaster recovery and business continuity management
  • Knowledge of Cryptography
  • Knowledge of physical and environmental security
  • Knowledge of Asset Security and Identity and Access Management
  • CISSP, CISA, CISM, CEH, ISO 27001 Lead Auditor and Lead Implementer
  • BE/BTech/MCA with a sound industry experience of 7 to 10 Yrs
Benefits
  • Competitive salary
  • Health insurance
  • Flexible working hours
  • Professional development opportunities

Applicant Tracking System Keywords

Tip: use these terms in your resume and cover letter to boost ATS matches.

Hard skills
information security conceptsrisk and controls conceptsISO 27001ISO 22301ISO 27018PCI DSSHITRUSTTCP/IPOS securitydatabase security
Soft skills
project managementteamworkclient focusrelationship managementcommunicationknowledge sharingproblem-solvinginnovationleadershipoperational efficiency
Certifications
CISSPCISACISMCEHISO 27001 Lead AuditorISO 27001 Lead Implementer