Senior Manager in Business Consulting Risk at EY focusing on digital risks and risk management strategies for clients. Collaborating with cross - functional teams for effective risk analysis.
About the role
- Director of IT Risk Management overseeing global cyber strategies and leading vendor risk assessments. Collaborating with teams to mitigate risks in critical services, information, and systems.
Responsibilities
- Develop and support global cyber and IT risk management strategies aligned with business goals.
- Lead the Global 3rd Party Risk Management Team in conducting vendor risk assessments and facilitating remediation efforts.
- Collaborate to develop risk models that assess and quantify risks to critical services, information, and systems.
- Maintain current and comprehensive vendor inventories and assessments.
- Prepare reports, presentations, and dashboards for executive leadership to communicate risk posture and emerging threats.
- Continuously enhance Vendor Risk Assessment methodologies to align with evolving industry standards and best practices.
- Foster a skilled team environment to effectively perform risk assessments and maintain strong client communication.
- Partner with vendors to establish cybersecurity and resilience standards within contracts.
- Coordinate global internal audits, client assessments, and security reviews related to third-party risk.
- Participate in incident response activities involving third parties, collaborating across teams to reduce exposure.
- Engage with operational leaders to identify emerging risks and co-develop risk-reducing solutions.
- Adapt and scale risk management processes to address new and evolving threats, including those related to AI and advanced technologies.
Requirements
- Experience in cyber and IT risk management, preferably in a global or cross-functional environment.
- Strong interpersonal and leadership skills with experience supporting diverse, collaborative teams.
- Knowledge of vendor risk assessment and third-party risk management practices.
- Effective communication skills, able to engage with internal and external stakeholders at all levels.
- Familiarity with current cybersecurity frameworks, standards, and best practices.
- Ability to develop and apply risk models and metrics-based reporting.
- Experience partnering in contract negotiations related to cybersecurity and resilience.
- Understanding of incident response processes and cross-functional collaboration.
- Demonstrated ability to innovate and adapt processes to meet evolving threats, including AI-related risks.
Benefits
- health and welfare benefits
- tuition assistance
- 401K savings and other retirement programs
- employee assistance programs
Job title
Job type
Experience level
Salary
Degree requirement
Tech skills
Location requirements
Associate Consultant in Business Consulting Risk with EY focusing on internal audit and risk management. Utilizing data analytics and consulting skills across diverse client environments.
Analyst role in Business Consulting Risk at EY focusing on data - centric approaches in Consumer Products and Healthcare sectors. Collaborating on risk management and data visualization projects.
Senior Consultant in Business Consulting Risk at EY focusing on digital risks and consulting strategies in New Delhi.
Analyst in Business Consulting Risk analyzing risks in digital transformation initiatives. Collaborating with teams to develop mitigation strategies and conduct market research in New Delhi.
Junior Business Risk Analyst working with leading organizations to optimize financial processes. Collaborating with experienced consultants to conduct risk analyses and implement governance frameworks.
Data Governance Officer implementing BCBS239 standards within Operations at Azqore in Lisbon. Leading critical banking operations transformations and ensuring compliance in a dynamic environment.
Senior Framework Manager responsible for data governance and analytics in Santander UK. Driving strategic insights to enhance risk and resilience through innovative data solutions.
Supervisor in Government Risk Consulting managing client relationships and supporting risk compliance for public sector programs. Collaborating with agency stakeholders and executing internal control testing across multiple environments.
ERP security & controls specialist in RSM's Business Application Risk practice. Focused on managing governance and regulatory risk across core business applications with strong IT audit experience.