Posted on :
13 Jan, 2015
13 Jan, 2015
Title: IT Security Consultant
Job Number: ACC0000K
As IT Risk and Assurance Senior, you’ll contribute technically to IT Risk and Assurance client engagements and internal
projects. An important part of your role will be to actively establish, maintain and strengthen internal and external
relationships. You’ll also identify potential business opportunities for Ernst & Young within existing engagements, and
escalate these as appropriate. Similarly, you’ll anticipate and identify risks within engagements and share any issues with
senior members of the team.
In line with Ernst & Young’s commitment to quality, you’ll confirm that work is of high quality and is reviewed by the next level
reviewer. As an influential member of the team, you’ll help to create a positive learning culture, coach and counsel
junior team members and help them to develop.
Working in teams, you will be responsible for delivery of consultancy engagements carrying out review of IT control environments (policies, standards, and procedures), security analysis of IT infrastructure components, attack and penetration tests, vulnerability assessments.
Additional responsibilities may include:
Cyber Threat Management/Penetration Tests
IT Security/Risk Assessments,
Identity & Access Management,
Information Protection & Privacy,Process, Procedures and Standards Reviews,
Information System Audits and IT Security Audits.
Develop people through effectively supervising, coaching, and mentoring staff
Conduct performance reviews and contribute to performance feedback for staff
Contribute to people-related initiatives including recruiting, retaining and training IT Risk and Assurance professionals
Maintain an educational program to continually develop personal skills of all staff
Understand and follow workplace policies and procedures
Qualifications: Technical skills requirements You ‘ll have knowledge and experience in the following:
Operational/project oriented/consulting Information Security
An understanding of Information Security principles and practices
Experience in vulnerability assessments and Ethical Hacking projects using different tools
Broad understanding of industry standards and frameworks (ISO 27001-2/ COBIT/ ITIL/ PCI-DSS
Hands-on experience with one or more IT security technologies solutions ( DLP, MDM, Threat intelligence, Infrastructure monitoring/management, IDS/IPS, Cloud computing)
Knowledge and experience in programming and security code review
Experience in Operational Technology environments
Possession of the following certifications is an added advantage
ISO 27001-2/COBIT Lead Implementer/Auditor certification
Professional certifications (CEH, LPT, CISSP, CISM, etc.)
MCSE, CCNA/CCIE and OCA/OCP certification
You’ll have knowledge and experience in one or more of Ernst & Young’s priority industry sectors:
Government & Public Sector
Banking and Financial Services
Communications & Entertainment
Demonstrated track record with a blue chip consulting organization and/or a blue chip organization
Strong academic record including a degree in Computer Science, Computer Engineering or a related field.
Good interpersonal and consultative skills
Excellent writing and communication skills, fluent in English
Why should I work for Ernst & Young in Information Technology Risk and Assurance?
Information technology is one of the key enablers for modern organizations. As one of our information technology risk and assurance professionals, you’ll work with clients to improve the competitive advantage of their IT operations by enhancing efficiency and effectiveness. You’ll help them create and implement processes to identify risks associated with running their systems and find ways to manage those risks. You can expect to work on some of the biggest external and internal audit engagements and we’ll give you the opportunities and support you need to succeed professionally and personally.
How to Apply
Submit your CV and Application online : Click Here