Manager -certification Consultant - Canberra, Australia - EY

Verified Company

Canberra, Australia

2 weeks ago

Posted by:

Olivia Brown

beBee Recruiter

Description

At EY, you'll have the chance to build a career as unique as you are, with the global scale, support, inclusive culture and technology to become the best version of you.

And we're counting on your unique voice and perspective to help EY become even better, too. Join us and build an exceptional experience for yourself, and a better working world for all.

At EY we believe that whoever you are, your uniqueness helps us stand apart.

We bring together extraordinary people, like you, to build a better working world.

What's in it for you?

EY is looking to procure a pool of potential specialist security experts to support Defence delivery in the future for a wide variety of Defence systems, including standalone, deployed, strategic, and coalition networks.

To achieve this the incumbent would be required to work at the direction of Defence to support IRM's ICT system certification capability, which is used to conduct certification of systems within the portfolio of the CIO and, where applicable, systems belonging to broader Defence portfolio owners.

This is a huge opportunity for someone who's Canberra based, to work on some of the largest Cyber Security engagements across Federal Government clients.

We're looking for someone at the Manager level for this role.

What you'll be doing:

Assessing the effectiveness of security controls for a system and its operating environment
Producing high quality written risk assessment reports that details the assessment including:
Scope
Security strengths and weaknesses (key threats and vulnerabilities)
Security risks
Effectiveness of currently implemented security controls
Recommended remediation activities

Attend meetings and workshops as required to provide security advice and guidance to stakeholders and customers. Contribute to reporting and briefing requirements

What we're looking for
Here's our 'wish list' but don't worry if you don't tick all the boxes. We're interested in your strengths, what you want to learn, and how far you want to go.

Proven experience as a Cyber Security practitioner with relevant knowledge
Experience with Information Security domains in particular one or more of the following: Cyber Strategy & Architecture, Cyber Risk Management, Cyber Detection & Response, Cyber Threat Exposure Management, Identity & Access Management, Data Protection, Infrastructure Security, Privacy, Cyber Resilience and Breach Support. This experience should include both advisory and implementation experience.
Experience in assessing and/or implementing security and risk standards including ISM, DSPF, PSPF, NIST CSF, ISO , PCI DSS, ITIL, COBIT, AS/NZS 4360, CPS23
Experience in writing risk assessment reports and briefs to senior executives
Strong program / project delivery on major security uplift programs.
Security clearances as required for the role

What we can offer you

Acknowledgement of Country

The exceptional EY experience. It's yours to build.

EY | Building a better working world

Our preferred applicant will be required to undertake employment screening by EY or our external thirdparty provider._

EY | Building a better working world

EY exists to build a better working world, helping to create long-term value for clients, people and society and build trust in the capital markets.

Enabled by data and technology, diverse EY teams in over 150 countries provide trust through assurance and help clients grow, transform and operate.

Working across assurance, consulting, law, strategy, tax and transactions, EY teams ask better questions to find new answers for the complex issues facing our world today.