Risk Consulting – Digital Risk – Manager:

About Global Delivery Services

Global Delivery Services refers to EY's worldwide network of service delivery centers. The GDS team plays an important role in EY’s strategy by ensuring effective support to EY’s growth agenda.

Our journey started in 2002 with approximately 200 people. Today we stand at 80,000+ professionals in ten locations around the world. We operate in Argentina, China, Hungary, India, Philippines, Poland, Sri Lanka, Mexico, Spain and the United Kingdom.

Client service is focused on providing Consulting, Assurance, Tax, Strategy & Transactions, and Knowledge support to our clients around the world. The teams enable account teams worldwide to provide seamless, high-quality, value-added support, helping deliver exceptional client service.

Enablement Services provides cost-effective, high-skilled, and innovative services to support EY’s global and local enablement teams. Markets, BMC, AWS, Finance and Accounting, Risk Management, Procurement, People Shared Services, IT Service Delivery and IT Global Infrastructure services, are among the services offered by Enablement Services.

Our innovation specialists serve the GDS Client Service and Enablement Services teams, along with Service Lines, Core Business Services and Sectors. The team brings the desired environment, technologies and skilled teams together for facilitation, rapid prototyping and innovative thinking. The competencies offered include analytics, digital, user experience, mobile technology, infrastructure, Microsoft technologies and open innovation.

The Opportunity

We are looking for Managers with deep experience across Digital and Technology Risk, with targeted coverage across:

• Controls Review and Technology Controls Uplift
• Business Continuity, Disaster Recovery, and Resilience
• Cloud, SaaS, Cybersecurity Controls (NIST, ISO 27K, CSA CCM)

Managers will lead multi workstream delivery, manage teams, ensure quality outcomes, and serve as the primary client contact.

Your Key Responsibilities

• Client Delivery
• • Lead workstreams across:
    • IT risk management
    • Cloud risk & governance
    • Technology controls assurance
    • Third party digital risk
    • Cyber & operational resilience
  • Develop risk assessments, control frameworks, and maturity models.
  • Review and challenge control environments, architecture decisions, and remediation plans.
  • Oversee fieldwork, conduct SME interviews, and synthesise findings into high quality deliverables.
  • Act as day to day client contact, running working sessions, stakeholder meetings, and project updates.

• Project & Team Management

• • Manage Senior and staff resources, ensuring structured delegation and mentorship.
  • Build and monitor project plans, timelines, scope, and resource allocation.
  • Review technical analysis, findings, and reports before escalation to Senior Manager/Partner.
  • Business Development
  • Support proposal development, RFP responses, pricing efforts, credential materials and thought leadership.
  • Contribute to development of tools, accelerators, frameworks, and internal capability building.

• Business Development
  • Support proposal development, RFP responses, pricing efforts, credential materials and thought leadership.
  • Contribute to development of tools, accelerators, frameworks, and internal capability building.

Skills and attributes for success

• Strong audit mindset with the ability to evaluate technology controls, cloud configurations, and cyber security practices.
• Ability to independently manage large workstreams with global teams.
• Strong stakeholder management and communication skills.
• Experience with IT SOX, Prov29, resilience frameworks, NIST, ISO 27001, SOC 2, CSA CCM.
• Ability to challenge client decisions constructively and guide remediation planning.

To qualify for the role, you must have

• Bachelor’s/Master’s in Information Security, Technology Risk, Cybersecurity, or related field.
• 5–7 years of experience in Digital/Cyber/Tech Risk, ideally with Big 4 exposure.
• Deep experience in at least one targeted area (IT SOX uplift, Resilience, Cloud/Cyber Controls).

Additionally, good to have

• Proven experience in direct client‑facing roles, partnering with cross‑functional teams to deliver assessment and remediation activities.
• Extensive experience leading cyber risk assessments and coordinating with internal audit, IT security, engineering, and business owners to validate control design/effectiveness, drive security improvements, and oversee remediation activities across enterprise cyber domains.
• Professional certifications such as CISA, CISM, ISO 27001 LA, or CCSK certifications.

Ideally, you’ll also have

• Experience with cloud platforms (AWS, Azure, GCP).
• Exposure to cyber risk tooling and automation.
• Prior Big 4 or consulting leadership experience.

What we offer you

At EY, we’ll develop you with future-focused skills and equip you with world-class experiences. We’ll empower you in a flexible environment, and fuel you and your extraordinary talents in a diverse and inclusive culture of globally connected teams.

• Our Commitment: As a commitment, we persistently endeavour to embody our values, fulfil our purpose, and champion inclusiveness. Our dedication is to cultivate EY into an environment where diverse perspectives are celebrated, creating a supportive atmosphere for individuals to authentically be themselves and contribute their utmost.
• Professional Development: From entry-level employees to senior leaders, we believe in continuous learning. We offer opportunities to build new skills, take on leadership roles, and connect and grow through mentorship.
• People and Culture: In our dynamic workplace, diversity, equity, and inclusiveness are ingrained in our culture. We're united by a commitment to create an environment where every individual's differences are valued, practices are equitable, fostering a sense of belonging. Our shared values include integrity, respect, teaming, inclusiveness, energy, enthusiasm, courage to lead, and building relationships based on doing the right thing.
• Benefits: Embark on a transformative career journey with us and indulge in a suite of premium benefits, encompassing exclusive health and wellness packages, enticing rewards, and cutting-edge learning opportunities that empower you to continually grow and excel in your professional and personal development.
• How to Apply: If you are passionate to join us and are aligned with our commitment to building a better working world, we invite you to apply by completing our user-friendly form with personal and professional information and by providing your consent to data privacy.