EY Jobs Advisory Services Manager Financial Services Office Cybersecurity in New York New

Post on: 16 Март, 2015 No Comment

EY Advisory Services Manager — Financial Services Office — Cybersecurity in New York New York United States

Title: Advisory Services Manager — Financial Services Office — Cybersecurity

Location: US-NY-New York

Job Number: NEW00C0F

We currently are seeking a highly motivated Manager to manage client engagement teams, work with a wide variety of clients to deliver professional services, and lead business development activities on strategic and global priority accounts.

Ernst & Young’s Financial Services Office (FSO) is a uniquely industry-focused business unit that provides a broad range of integrated services to financial institutions and other capital markets participants, including commercial banks, investment banks, broker-dealers, asset managers (traditional and alternative), insurance and energy trading companies, and other organizations.

Our Information Technology Advisory Services (ITAS) practice provides business driven technology advisory services which include: technology strategy, technology enablement, information management services, market, credit and operational risk, security, program advisory, and process and controls. The ITAS team includes individuals who have deep industry, product and client knowledge.

Within ITAS, the Information Security team provides knowledge in leading practices and methods for information security across asset management, banking, capital markets and insurance sectors. This team helps our clients assess, design, implement and maintain a secure and high performance business environment.

Services include:

Enterprise Security Program Management — Assess, design and implement a security strategy and governance program framework that describes the process, controls, organization and infrastructure to manage information security capabilities. Design and implement risk-based security policies, standards, and procedures and mechanisms to maintain the confidentiality, integrity and availability of information systems and the data they process.

Identity and Access Management — Develop identity and access management strategies, business processes, policies, architectures and implementation plans for identity and access management programs. Manage projects, including developing project plans, defining project goals and objectives, specifying tasks and how goals will be achieved, what resources are needed, and associating budgets and timelines for completion Implement and integrate identity and access management technology solutions.

Data Privacy and Protection — Categorize sensitive data and assess current protection strategies. Define requirements, design, and implement security solutions to address enterprise risks and exposures. Design and implement monitoring solutions to assess the efficiency and effectiveness of security operations, controls and infrastructure for ongoing feedback and program improvement.

Ernst & Young FSO Advisory Services is a fast-moving, high-growth area with huge potential. It offers variety, challenge, responsibility and the opportunity to realize your leadership potential. Being a member of our FSO Advisory team means you will specialize in a particular competency — Risk, Performance Improvement, or Information Technology Advisory Services (ITAS).

The opportunity is now! If you are interested in being part of a dynamic team, serving clients and reaching your full potential, Ernst & Young Advisory Services is for you!

Responsibilities

Effectively manage and motivate client engagement teams with diverse skills and backgrounds. Provide constructive on-the-job feedback/coaching to team members. Foster an innovative and inclusive team-oriented work environment. Play an active role in counseling and mentoring junior consultants within the organization.

Foster relationships with client personnel at appropriate levels. Consistently deliver quality client services. Drive high-quality work products within expected timeframes and on budget. Monitor progress, manage risk and ensure key stakeholders are kept informed about progress and expected outcomes. Manage expectations of client service delivery. Stay abreast of current business and industry trends relevant to the client’s business.

Cultivate and manage business development opportunities. Understand Ernst & Young and its service lines and actively assess/present ways to serve clients. Develop and maintain long-term client relationships and networks. Develop relationships with team members across all Ernst & Young practices to serve client needs.

Demonstrate in-depth technical capabilities and professional knowledge. Demonstrate ability to quickly assimilate to new knowledge. Possess good business acumen. Remain current on new developments in advisory services capabilities and industry knowledge. Qualifications: To qualify, candidates must have:

a bachelor’s degree and a minimum of 5 years of related work experience; or a graduate degree and approximately 4 years of related work experience

a minimum of 3 years of related work experience in developing, implementing or architecting information security systems

a minimum of 3 years of relevant experience at a financial services company or comparable experience working as an advisor to a financial services company

a strong understanding of information security regulatory requirements and compliance issues

knowledge of security concepts and methods such as vulnerability assessments, privacy assessments, intrusion detection, incident response, security policy creation, enterprise security strategies, architectures and governance

understanding of networking (TCP/IP, OSI model), operating system fundamentals (Windows, UNIX, mainframe), security technologies (firewalls, IDS/IPS, etc.) and application programming/scripting languages (C, Java, Perl, Shell)

solid existing relationships within the Information Security or IT executive ranks (e.g. CIO, CISO, Director of Information Security, SVP and VP of Information Security) of the financial services sector

project management of information security projects including development of project charters and plans; management of project execution and successful implementation of the planned solution

experience in process definition, workflow design and process mapping

demonstrated ability to contribute to the development of client deliverables and technical content

advanced written and verbal communications skills

excellent leadership and teaming skills

demonstrated integrity within a professional environment

a willingness to travel to meet client needs

a valid driver’s license in the US and a valid passport required; willingness and ability to travel internationally

CISSP certification is required; non-certified hires are required to become certified within 1 year from the date of hire.

Experience in at least one of the following areas:

Data Privacy and Protection

Data classification

Data privacy

Data governance

Data archival and retrieval

Email surveillance

Information boundaries

Encryption (Whole disk, end-to-end email, key management, database, etc)

Experience developing DP strategies, architectures and implementation plans

Experience with regulatory and leading practice around data privacy and protection like DPD 95/46/EC, FCRA, FOIA, GLBA, Privacy Act, Dodd Frank, NIST, FFIEC, etc

Enterprise directory architecture and design

Role based access control

Entitlement review and certification

Entitlement management

Single sign on

Titus Labs

Varonis DatAdvantage and DataPrivilege

DB monitoring tools such as IBM — Guardium

Security Incident and Event Management or Logging tools: Arcsight, Envision, LogLogic

Identity and Access Management products

Oracle / Sun Identity Management

IBM Tivoli Identity Manager