Assistant Manager - Cybersecurity

At EY, you’ll have the chance to build a career as unique as you are, with the global scale, support, inclusive culture and technology to become the best version of you. And we’re counting on your unique voice and perspective to help EY become even better, too. Join us and build an exceptional experience for yourself, and a better working world for all. 

GDS EYP – IDD – Cyber - Assistant Manager – India

Competitive business today is all about making intelligent, informed decisions. As an Assistant Manager within EYP GDS Cyber team you will help make that happen.  You will be an important part of our diversely talented, highly experienced Cyber team and work at the forefront of high-profile transactions. This is an exceptional opportunity to build a career in cybersecurity consulting, where you will contribute to high-impact projects, collaborate with global teams, and develop deep expertise in cyber security.

The opportunity

The Cyber team competency works on the most complex and high-profile global transactions, across a broad portfolio of clients and industry sectors. We are a group of experienced cyber professionals bringing deep sector and functional knowledge to our clients. As a team, we provide variety of cyber services to our clients helping them with during the transaction life cycle i.e. Predeal, sign to close and post deal stages of any transaction.  We offer services like cyber due diligence, cyber security assessment, red flag assessment, Cyber PMO, target operating model (ToM), Cyber Threat intelligence (CTI) etc. We prepare and execute separation and integration plans, identify ideas and sources of value enhancement, as well as advise on risk mitigation.

Your key responsibilities

• As an Assistant Manager of Cyber practice within IDD group, you will be a vital member of the team supporting global EY practice teams to sell, manage and execute Cybersecurity focused projects.
• Part of your role will also involve developing experience across a range of different type of engagements, including pre-deal (e.g. Cyber Due Diligence and carve-out planning) and post-deal (e.g. integration planning, separation planning, Day one readiness plans, 100 days plan). Having a commercial mind-set is key to this consulting-based role.
• Conduct security assessments, identify gaps and red flags assessing client’s on prem / cloud hosted applications, data and infrastructure.
• Conduct research on deep and dark web using various open-source intelligence (OSINT) tools to reveal potential data breaches, provide recommendations and roadmap to mitigate the security gaps.  
• Develop Cybersecurity assessment reports, design Target Operating Models (ToM), Target state security strategy, security roadmaps, data privacy and protection assessment reports, benchmarking analysis from security costing perspectives.
• You will be exclusively focused on supporting transactions from a Cybersecurity perspective pre and post deal working primarily with Private Equity and Corporate clients executing deal mandates.
• You will be a vital member of the team advising clients across all industries and sectors. Supporting key decision makers in developing and executing strategies for transactions. You will work in a transaction environment operating under tight M&A timeframes and demands.
• Develop strong relationships with regional EYP practice teams and establish yourself as a trusted point of contact.
• You will also assist in aspects of business origination, including pitches and presentations, and attending meetings with clients to generate new business opportunities.
• Demonstrate strong knowledge in the Information and Cyber security area. Should be able to translate cyber risks in business language for business leaders at client side.
• Experience on strategic consulting engagements developing detailed, compelling and analytical PowerPoint/Word/Excel/Visio deliverables to convey complex thoughts and ideas.

Skills and attributes for success

• Experience in a range of different type of engagements, including pre-deal (e.g. Cyber due diligence, carve-out planning), post-deal (e.g. integration planning, tracking) and restructuring (e.g. rapid cost reduction).
• Lead work-streams comprising members of the client and colleagues from our transactions and advisory practices.
• Strong understanding of Security architecture and design principles e.g. Zero Trust, Defence in depth etc.
• Lead meetings with senior client stakeholders to advise, shape and drive the strategy and planning for pre-deal diligence, integration, carve-out / separation and operational restructuring.
• Contribute to our practice development initiatives, supporting the continued focus on our team as a great place to work.
• Have innovative mindset to think out of the box for development of new services as per client needs
• Act as a role model and support development of junior team members, coupled with the recruitment and training responsibilities.
• Be flexible to support for broader IT, Cyber & Operational transaction work.
• Willingness to undertake international travel as per business requirement

To qualify for the role, you must have

• 6-8 years with technical experience in information and cybersecurity management, security testing, privacy and data protection, security architecture etc.
• B Tech / M. Tech. / MCA/MBA /PGDM (part time / full time) from a reputed institute with a technology background.
• A leading cybersecurity qualification, such as CISSP, CISA, CCSP, CISM or ISO 27001 ISMS.
• Well versed with cybersecurity and privacy requirements as defined in NIS2, GDPR & CCPA.
• Practical exposure to security framework and standards such as PCI, NIST & CIS, ISO 27001.
• Strong understanding about Cloud and OT security risks and controls.
• In-depth knowledge on various security platforms and technologies such as DLP, Firewalls, Vulnerability Scanning, Penetration Testing & Security Incident Response. 

Ideally, you’ll also have

• Project management skills
• Strong communication and presentation skills with proven experience of producing high quality reports, papers, presentations and thought leadership
• Program and project management expertise with demonstrable experience in managing and being responsible for the delivery of successful cyber programs 

What we offer

EY Global Delivery Services (GDS) is a dynamic and truly global delivery network. We work across six locations – Argentina, China, India, the Philippines, Poland and the UK – and with teams from all EY service lines, geographies and sectors, playing a vital role in the delivery of the EY growth strategy. From accountants to coders to advisory consultants, we offer a wide variety of fulfilling career opportunities that span all business disciplines. In GDS, you will collaborate with EY teams on exciting projects and work with well-known brands from across the globe. We’ll introduce you to an ever-expanding ecosystem of people, learning, skills and insights that will stay with you throughout your career.

• Continuous learning: You’ll develop the mindset and skills to navigate whatever comes next.
• Success as defined by you: We’ll provide the tools and flexibility, so you can make a meaningful impact, your way.
• Transformative leadership: We’ll give you the insights, coaching and confidence to be the leader the world needs.
• Diverse and inclusive culture: You’ll be embraced for who you are and empowered to use your voice to help others find theirs.

EY | Building a better working world 

 
EY exists to build a better working world, helping to create long-term value for clients, people and society and build trust in the capital markets.  

 
Enabled by data and technology, diverse EY teams in over 150 countries provide trust through assurance and help clients grow, transform and operate.  

 
Working across assurance, consulting, law, strategy, tax and transactions, EY teams ask better questions to find new answers for the complex issues facing our world today.