Logo of Huzzle

Risk Management Analyst

image

EY

17d ago

  • Job
    Full-time
    Senior Level
  • Engineering
    IT & Cybersecurity

AI generated summary

  • You need strong stakeholder management, ITIL knowledge, advanced Excel skills, and 5+ years in IT/security. Certifications like CISSP and project management are preferred.
  • You will manage security activities, oversee compliance, prioritize risk tasks, build relationships, and support vulnerability remediation across EY Technology.

Requirements

  • To qualify for the role, you must have
  • Strong stakeholder relationship management skills to successfully lead and manage security project teams and project stakeholders
  • Track record of customer focus based on openness, trust, and delivering on promises
  • Experience in service/product ownership
  • Advanced knowledge of information security concepts, best practices, and procedures as well as management of security-based projects
  • Microsoft Desktop and virtual technology product knowledge
  • Knowledge of virtual apps and products (virtualization and cloud certifications)
  • Knowledge and proven experience in the use of ITIL within and Enterprise IT Service Support Organization
  • Knowledge of Data Networks
  • Intermediate / expert level Excel skills
  • High aptitude for data analysis and data management
  • Education:
  • An advanced degree in Computer Science/Management or a related discipline, or equivalent work experience in IT and/or Information Security
  • Experience:
  • 5+ years of experience in a large diverse enterprise communications environment with brands
  • 5+ years of IT experience
  • Experience in a global matrix environment is required
  • Language Requirements:
  • English
  • Certification Requirements:
  • The following are preferred:
  • Certified Information Systems Security Professional (CISSP)
  • Global Information Assurance Certification (GIAC)
  • Virtualization and Cloud certifications
  • Project management certification (PMI/CAPM or PMP, PRINCE2, MSP)
  • Familiarity with ITIL V3, or V4
  • Soft Skills/Behavioral Requirements:
  • Outstanding interpersonal, communication, organizational and decision-making skills
  • Exceptional multi-tasking
  • Adapts to shifting priorities, ambiguity, rapid change, and difficult situations or working under pressure
  • Commercially sensitive to broader business objectives, service lines and core business services departments
  • Ability to work with and guide teams with stakeholders in and outside IT, potentially with a variety of cultural perspectives
  • Self-supporting and independent attitude

Responsibilities

  • Monitoring and managing the security position/estate of ET technologies, both end-user facing and associated infrastructure
  • Oversee and guide sub-portfolio on approach for security activities in adherence to EY’s policies, standards, and procedure
  • Initiate, build and sustain productive relationships across EY Technology to best facilitate security activities
  • Prioritize and execute day-to-day security and risk activities for your assigned portfolio and in conjunction with assigned projects and initiatives
  • Participate on security and risk projects/initiatives, ensuring deliverables are on schedule, within budget and scope
  • Support service owners with associated activities and responses to patch alerts to ensure adherence to documented SLAs
  • Drive improvements in response to specific EY compliance mandates and provide alignment to appropriate security audit directives to industry standards
  • Support aligned sub portfolio in the performance of due diligence reviews to document policy exception details and confirm necessary approvals, in accordance with current EY compliance directives
  • Support team’s effectiveness in day-to-day adherence to EY’s compliance policy based on a formal approach to the Global Vulnerability Management (GVM) & Governance, Risk and Compliance (GRC) processes
  • Collaborate closely with teams across EY Technology who have integral roles in the success of the remediation of vulnerabilities

FAQs

What type of qualifications do I need to apply for the Risk Management Analyst position?

You need an advanced degree in Computer Science/Management or a related discipline, or equivalent work experience in IT and/or Information Security.

How many years of experience are required for this role?

You must have at least 5+ years of experience in a large diverse enterprise communications environment and 5+ years of IT experience.

Are there any preferred certifications for this position?

Yes, preferred certifications include Certified Information Systems Security Professional (CISSP), Global Information Assurance Certification (GIAC), virtualization and cloud certifications, and project management certification (PMI/CAPM or PMP, PRINCE2, MSP).

What kind of skills are essential for success in this role?

Essential skills include strong stakeholder relationship management, advanced knowledge of information security concepts, experience with ITIL, intermediate/expert level Excel skills, and a high aptitude for data analysis and management.

Is experience in a global matrix environment necessary?

Yes, experience in a global matrix environment is required for this role.

What will my key responsibilities be?

Your key responsibilities will include monitoring security positions, overseeing adherence to policies and standards, collaborating with teams, and managing risk activities for the assigned portfolio.

Will I have opportunities for professional development?

Yes, EY offers continuous learning and development opportunities to help you navigate your career and enhance your skill set.

How does EY's culture support diversity and inclusion?

EY embraces a diverse and inclusive culture, empowering employees to express their individuality and use their voices to help others.

What tools will I be given to help succeed in this position?

You’ll be provided with tools and flexibility to make a meaningful impact on your work and the organization.

Is there a focus on work-life balance in this role?

Yes, the role offers a supportive environment which encourages a balance between work commitments and personal life.

Accounting
Industry
1-10
Employees

Mission & Purpose

EY exists to build a better working world, helping create long-term value for clients, people and society and build trust in the capital markets. Enabled by data and technology, diverse EY teams in over 150 countries provide trust through assurance and help clients grow, transform and operate. Working across assurance, consulting, law, strategy, tax and transactions, EY teams ask better questions to find new answers for the complex issues facing our world today. Find out more about the EY global network http://ey.com/en_gl/legal-statement