Senior Consultant Cyber Risk Management

With rapidly changing cybersecurity threats clients from all industries look to us for trusted solutions for their increasingly complex risks. As a member of our Cyber Risk Management team youll have the opportunity help clients gain insights into their cybersecurity program and strategy as a whole. You will have access to our robust solutions to advise clients on managing cybersecurity risk enhancing maturity and improving efficiency. You will belong to an international connected team of specialists helping our clients with their most complex cybersecurity needs and contributing toward their business resilience.

The opportunity - What future are you building towards

Youll work alongside respected industry professionals learning about and applying leading practices to better manage cybersecurity people process and technology capabilities. Youll gain insights into the design and operations of cybersecurity programs and strategies in a variety of industries and learn how to design measurable sustainable programs to keep up with the ever changing cybersecurity landscape.

Our team - Do great minds always think alike

Within the Cybersecurity department we focus on reliable solutions for increasingly complex cybersecurity risks in operational environments. We are an international team of specialists who help our clients with their most complex cybersecurity needs. We work from the Advanced Security Center in Amsterdam in collaboration with our Advanced Security Centers around the world to access the most advanced tools to combat cybercrime.

Responsibilities How can you make a lasting impact in a rapidly changing world

Youll work with our practice in Amsterdam The Netherlands in one or more of the following four areas of expertise:

• Cyber Transformation: to improve cybersecurity measurements and monitoring and develop sustainable processes. You will gain experience applying risk management principles to a cybersecurity environment and leveraging cybersecurity frameworks / standards like ISO/IEC 27001:2013 / Baseline Informatiebeveiliging Overheid (BIO) NIST CSF etc. You will design solutions to remediate gaps or enhance maturity of specific cybersecurity capabilities. And you will implement or improve cyber security management strategy and processes at the clients organization.
• Cyber Assessment: to assess cybersecurity programs and strategies or specific technologies and/or information security processes using our proprietary framework or industry standards. Your focus will be on security and risk assessments of processes applications systems. You will assist our clients in understanding cyber threat landscape assess the maturity of their cyber security strategy and/or assess compliance to regulations and standards.
• Data Protection & Privacy: to assess and consult clients on data privacy implementation of data protection / GDPR programs to address confidentiality and security over customer employee or patient data. You will gain insights into the design and operations of privacy programs and strategies in a variety of industries and learn how to design measurable programs to keep up with the ever changing regulatory landscape.
• Vulnerability Management: to build a full service vulnerability management offering providing clients with tailored solutions to deploy and run vulnerability management programs. You will manage vulnerabilities associated risks and remediation within complex environments.

Job requirements Where do you start if you want to change the world

• Degree (Bachelor or Master) in Business Information Technology in a technical field (e.g. Computer Science) with touch points to Cybersecurity topics or equivalent education
• 2 5 years of related work experience;
• A passion for consulting and cybersecurity topics
• Knowledge of one or more of the following areas: Cybersecurity assessments IT and cybersecurity policies standards procedures and controls Security strategies and roadmaps Cybersecurity awareness and training Cybersecurity metrics and reporting Cybersecurity organization design and implementation.
• A strong background of the security frameworks and standards such as ISO 27001/2 and NIST CSF and the cybersecurity laws and regulations such as GDPR
• A willingness to travel in The Netherlands to meet client needs and a valid drivers license
• Excellent written and verbal communication skills inDutch and English
• Strong client services orientation and accustomed to taking a proactive role in engagements
• Flexible responsible and self-confident personality who feels comfortable in clients environment

Already interested Apply now!

What we offer Is everything that counts being counted

We offer an attractive employment package that rewards individual and team achievements:

• Vitality: the choice is yours. An online session with an external vitality coach practical tips on topics such as nutrition energy sleep and mindset and/or a voucher card to rent a padel court.
• Flexible working: you decide where and when you work in consultation with your team. At home at the office at the client or from another European country (up to 20 working days per year).
• Home office arrangement: to optimally set up your home office EY has the following resources available for you: office chair sit/stand desk external monitor desk lamp (Bluetooth) headset and a large external keyboard
• Laptop and smartphone: you are entitled to a laptop and smartphone with a business subscription.
• Salary: in addition to your fixed salary depending on EYs financial performance you may be eligible for a bonus. You are also entitled to an expense allowance (depending on the function) and an internet allowance of 40 net per month.
• Time off: you are entitled to 29vacation days per year when full-time employed.
• Sabbatical: the option to take unpaidleaveafter consultation.
• Birth leave: EY will pay 100% of the birth leave in case of an additional birth leave EY will pay 70% of the salary.
• Training and education: EY believes its important for everyone to always have the opportunity to further develop yourself. We therefore offer you the opportunity to take part in various soft & hard skills training external courses and/or sign up for an additional education. For example obtaining an MBA to broaden your skills in Leadership Business and Tech.
• Mobility: Contribute directly to our ambition to reduce EYs carbon footprint to zero by 2025. With the new scheme you choose the most diverse sustainable options via the EY My Daily Travel app or online environment. Think of the use of lease bicycles electric shared scooters electric shared cars flexible lease cars and various subscriptions for public transport. You can also view your CO2 footprint via the app.
• Bicycle arrangement: finance the purchase cost of your new bicycle from your gross monthlysalary(purchase cost amount divided over 12 months) or from your non-statutory holiday entitlement.
• Pension scheme: you will build up a pension capital directly after your start at EY. Each month the available premium amount is transferred for you in an investment account at our pension provider. You will also have the option to build up additional pension capital on a voluntary basis.

For more information about our employment terms visit our pagehere.

The office

Our office in Amsterdam is located on the Zuidas: a bustling area where many companies are our Cross Towers as many as 1000 people are welcomed daily. Havent had breakfast yet Then a special smoothie will be made for you or simply a delicious cappuccino. During lunchtime the team is ready to serve you a fresh lunch. For a breathtaking view of Amsterdam head to the 22nd floor. Collaboration takes on a new meaning through the Wavespace. This high-tech environment brings together clients and colleagues virtually worldwide!

Recruitment procedure

The selection procedure exists in general out of 2 interview rounds and/or Business case. An (online) assessment an pre-employment screening will also be part of the process.

Due to laws and regulations and because EY (and in some cases its clients) has high demands on the reliability and integrity of its employees every new employee will be screened. Depending on your rank the pre-employment screening could contain the following: Certificate of Conduct (in Dutch: VOG) or - if requesting a Dutch VOG is not possible - Criminal Background Check of the country you are currently living or have lived during the last five years integrity questionnaire verification of ID diplomas and/or work experience and consultation of the Dutch insolvency registry.