This job posting isn't available in all website languages

Business Security Consultant

Core Business Services
WRO002RV Requisition #
Thanks for your interest in the Business Security Consultant position. Unfortunately, the link which you have accessed is no longer active. Please CLICK HERE to return to the EY Global careers site and use keywords to search for this job as it still might be active, or you can also review our similar listings and apply.

The opportunity:


The Security Consultant reports to Deputy CISO of Enterprise Workplace Technology in a hands-on role, focused on the secure design, architecture and development for applications, which processes sensitive data and constitutes core as well as critical business services.  The Security Consultant works directly with Architects, Developers, IAM engineers, Project Managers and other resources; through collaboration and mentoring, they help teams to deliver secure business solutions.

The Security Consultant’s role is a technical position which will support the global strategies and architecture vision as it relates to the development of secure design, build, deployment and operation of business applications and related infrastructure.



Your key responsibilities:


This position is an individual contributor capable of supporting multiple project teams in the design, implementation and certification of security controls across IT systems.  This requires knowledge of various IT system architecture and technology like Cloud/mobile, as well as supporting technology such as IAM, network security, firewalls, user account management, audit & logging, and other security concepts as outlined in ISO27001, OWASP and related security standards.  Also consultants should have knowledge of how to assess 3rd Party security assessments and applicability of SOC1, SOC2 reports and concepts of vendor risk management.



To qualify for the role you must have:

  • min. 8+ years of IT industry experience in Information Security discipline
  • A Bachelor's/Master’s degree in Computer Science or a related discipline, or equivalent work experience
  • Experience providing and validating security requirements related to information system design and implementation
  • Experience providing and validating security requirements related to a broad range of operating systems and databases
  • Experience conducting risk assessments, vulnerability assessments, vendor and third party risk assessments and recommending risk remediation strategies
  • Experience in the use of tools and methods to identify security exposures and business risks
  • Familiarity with information system attack methods and vulnerabilities


Ideally, you’ll also have:

candidates are preferred to hold or be actively pursuing related professional certifications such as CISSP, CISM  


What working at EY GDS offers

In EY GDS you can count on stable employment and upgrading your career. You will meet people and gain important knowledge and insights that will stay with you throughout your professional life. 



My Profile

Create and manage profiles for future opportunities.

Go to Profile

My Submissions

Track your opportunities.

My Submissions