Security Program Administrator jobs at Ey in Canada, Toronto

EY's State and Local Tax (SALT) team is a growing practice within the organization, and you'll see that growth reflected in your career. As a Tax Senior, you'll assist with multiple tax engagements and contribute to the delivery of quality tax planning and compliance services for our financial services clients. You'll be part of a rapidly growing team that's seen plenty of recent expansion, with the aim to double in size over the next few years. With support from some of the most engaging professionals in the business, you can expect to develop your tax technical skills, management techniques, and business experience considerably. It's all about taking on new skills and responsibilities as they arise and making the most of our dedicated mentors and training programs.

Your key responsibilities

You'll likely spend most of your time on a diverse array of projects, responsibilities, and tasks. Whatever you're working on, our clients will turn to you for up-to-the-minute tax advice they can always rely on. To make that happen, we'll look to you to implement your extensive knowledge of state and local tax concepts and law. You can expect to be working in a highly collaborative culture, where listening to and sharing information with colleagues is an essential part of the role.

Skills and attributes for success

• Contributing to the overall success of the team by developing a thorough understanding of EY methodologies and tools to enhance service delivery
• Challenging traditional procedures and finding new approaches to provide tax services
• Providing compliance work product and assisting management with client deliverables
• Building client relationships and demonstrating your knowledge of the financial services industry
• Staying abreast of state & local tax developments and work to develop new and innovative service offerings that can deliver value to our clients

To qualify for the role, you must have

• A bachelor's degree with an emphasis in accounting, finance, or economics and 3 years of related work experience
• CPA or licensed Attorney, or the ability to achieve either certification
• Strong tax technical skills and experience in tax research and writing, income and franchise taxes and transfer taxes
• Compliance skills as it relates to multi-state jurisdictions
• Excellent verbal and written communication skills
• Willingness to travel as needed, and working in a balanced hybrid environment

Ideally, you'll also have

• Experience in a professional services environment

What we look for

We’re interested in people with initiative who are not afraid to speak up, with a genuine desire to service clients in the financial services industry focused on state and local taxes. If you’re ready to further build on your reputation as a professional advisor, this role is for you.

Senior Manager - Digital Engineering - Technology Consulting

As an Infrastructure Architect within our Technology Consulting team, you will play a key role in bridging the gap between business needs and technical solutions. You’ll work closely with stakeholders to gather, analyse, and translate requirements into clear and actionable documentation that supports solution design, development, and delivery.

Your key responsibilities

• Requirements Gathering: Conduct interviews, workshops, and stakeholder sessions to elicit business and technical requirements.
• Documentation & Analysis: Translate stakeholder needs into clear specifications, functional documentation, and user stories that guide solution development.
• Validation & Testing: Develop test cases and validation frameworks to assess technical solutions against business requirements, ensuring alignment and quality.
• Risk & Impact Assessment: Analyse potential risks and impacts of proposed solutions, contributing to informed decision-making and project planning.
• Stakeholder Engagement: Collaborate with cross-functional teams including architects, developers, and business leads to ensure shared understanding and delivery of requirements.
• Continuous Improvement: Identify opportunities to improve business processes and system functionality through data-driven insights and feedback loops.

Skills and attributes for success

• Strong experience in business analysis within technical environments, including system integration, infrastructure, cloud platforms or application development projects.
• Proficiency in producing clear and comprehensive documentation, including business requirements, functional specifications, and process flows.
• Familiarity with Agile and Waterfall methodologies, and experience working with tools such as JIRA, Confluence, or similar platforms.
• Excellent problem-solving and analytical skills, with the ability to assess complex systems and identify gaps or improvement opportunities.
• Strong communication and stakeholder management skills, with the ability to engage both technical and non-technical audiences.
• Understanding of core on-prem infrastructure platforms and services (AD, Hypervisor platforms, Application environment services, Azure & AWS PaaS and SaaS offerings etc..)
• Proficiency with TCP/IP, DNS, DHCP, VPNs, and network security fundamentals.
• Hands on experience with Infrastructure migration from SAP ECC to SAP S4 HANA in Azure
• Familiar with enterprise IT operational governance practices (CAB, SDA, ARB etc..)
• Able to produce solution and product design documentation.
• Familiar with Microsoft productivity suite services and architecture including migration of services to new organisation

Ideally, you’ll have the skills and attributes below but don’t worry if you don’t tick all the boxes. We’re interested in your aptitude, attitude and willingness to learn.

• A Bachelor’s degree in Information Technology, Business, or a related field.
• Knowledge on WAN/ LAN routing protocols (e.g. BPG, ISPF) is highly desirable along with relevant certifications such as CCNA/ CCNP.
• Experience in enterprise transformation, system migrations, or regulatory environments.
• Exposure to risk analysis frameworks and validation methodologies.
• A proactive mindset and a passion for enabling technology-driven business outcomes.

At EY, we’ll fuel you and your extraordinary talents in a diverse and inclusive culture of globally connected teams. Learn .

• Career development: At EY, your career is yours to shape! We’ll develop you with future-focused skills and equip you with world-class experiences
• Flexible work arrangements: Our flexible work policies empower you to balance your professional and personal life, fostering a culture of trust and autonomy.
• A comprehensive benefits package: From a yearly wellness incentive, to access to additional 8 weeks of flex leave per year, and family-friendly policies, including 26 weeks of gender-neutral paid parental leave, we cater to your diverse needs to help you thrive both personally and professionally
• Salary: We offer a competitive salary which is open to negotiation pending on skills and experience.

Our preferred applicant will be required to undertake employment screening by EY or our external third-party provider.

© 2025 Ernst & Young Australia. A member firm of Ernst & Young Global Limited. All Rights Reserved. Liability limited by a scheme approved under Professional Standards Legislation.

Your key responsibilities

Your key responsibilities will include:

Hands on design and configuration of the Microsoft Defender and Sentinel product Suites

• Expressing configuration and development of Sentinel and Defender using Infrastructure as Code (IaC)
• Providing Overall Cybersecurity expertise to the team and our clients
• Development of advanced Sentinel queries and playbooks
• Logic App development
• Potential Live Cybersecurity Response in a Managed Services/Operations setting
• Helping leverage AI to automate Investigation and Response
• The development of Cybersecurity decoy systems to lure attackers off track leveraging Microsoft tools
• Endpoint Detection and Response support and administration

The Microsoft Defender/Sentinel Engineer role will design and implement the Defender and Sentinel aspects of our products. This will be done leveraging Infrastructure as Code (IAC). The Engineer will also work with offshore colleagues to configure and deploy the various solutions.

Our Microsoft Technology Stack: Azure, M365, Dynamics, Purview. Priva, Entra, Defender & Sentinel

Skills and attributes for success

• Microsoft Security Knowledge: Proficiency in Microsoft security products is essential, particularly in Microsoft Sentinel and Microsoft Defender. This includes familiarity with the implementation, administration, and troubleshooting of both tools
• Threat Detection and Analysis Skills: An understanding of threat detection and response is critical. This includes the ability to create, manage, and investigate incidents and alerts, understanding security threats, anomalies, and breach patterns.
• Azure Knowledge: Since Microsoft Sentinel is a cloud-based SIEM, knowledge about Azure cloud services, Azure Log Analytics, and how these integrate with Sentinel is needed. You need to understand how to ingest data from various sources into Azure Sentinel.
• Security Incident and Event Management (SIEM): Knowledge of SIEM concepts and capabilities is crucial.
• Programming and Scripting: Familiarity with scripting languages, such as PowerShell or KQL (Kusto Query Language, used in Azure Sentinel for data querying)
  

To qualify for the role, you must have

• Good executive presence
• Ability to work independently or team with others as required
• Minimum of 5 years of Cybersecurity experience
• Excellent collaboration and presentation skills, and the confidence to challenge senior colleagues and stakeholders from a diverse range of backgrounds
  

Ideally, you’ll also have

• Professional services firm experience
• Being bilingual (English & French) would be an asset
• Microsoft Security Engineer Associate certification
• Microsoft Security Operations certifications
• Other Cloud Certification
• Other Cybersecurity certifications

What We Offer

We offer a competitive compensation package where you’ll be rewarded based on your performance and recognized for the value you bring to our business. In addition, our Total Rewards package allows you decide which benefits are right for you and which ones help you create a solid foundation for your future. Our Total Rewards package includes a comprehensive medical, prescription drug and dental coverage, a defined contribution pension plan, a great vacation policy plus firm paid days that allow you to enjoy longer long weekends throughout the year, statutory holidays and paid personal days (based on province of residence), and a range of exciting programs and benefits designed to support your physical, financial and social well-being. Plus, we offer:

• Support and coaching from some of the most engaging colleagues in the industry
• Learning opportunities to develop new skills and progress your career
• The freedom and flexibility to handle your role in a way that’s right for you

We build a better working world by helping clients make better decisions, faster. We bring clarity to complex decision-making, helping our clients identify their most important risks, then building consensus and insight on the treatments, systems and strategies that will lead to best-practice risk management.

EY is looking for dynamic individuals in the SAP Security, Controls, and SAP GRC space. These professionals will know how to help clients identify, design, implement and extract value from their SAP solution and supporting business processes. You will help clients make ‘better decisions’ and work with our clients on their most important challenges relating to:

• Security and controls;
• Business and process controls transformation;
• Strategic risk management;
• Enterprise governance, risk and control (GRC) technology enablement; and
• Program and project risk management;

Your Key Responsibilities

• Working on SAP Security, Controls and SAP GRC related engagements, professionals will bring functional and technical experience in the implementation
• Supporting the delivery of SAP project implementations across a broad range of SAP technologies (including GRC, S4HANA, Fiori/Gateway)
• Overseeing full cycle project risk management tasks relating to project delivery;
• Working effectively as a team member sharing responsibility, providing support, maintaining communication and updating senior team members on progress

To qualify for the role you must have:

• Minimum 4 years to 10 years of experience
• Provide day-to-day knowledge transfer to staff across the Project
• Demonstrates proven thorough abilities and success with managing large engagements that involve facilitating with staff and managers as they perform assessments and deploy SAP Security, Controls, and SAP GRC as it relates to SAP product optimization, implementation and/or configurations, emphasizing the following areas:
  • Understanding clients' business, industry and/or technologies and leveraging thorough project management skills in relation to SAP projects, including developing project plans, budgets, and deliverables schedules, as well as defining resource requirements, budgets, and billing and collection. This includes supporting the delivery of SAP project implementations across a broad range of SAP technologies (including GRC, S4HANA, Fiori/Gateway)
  • Identifying key risks and controls, knowledge of Sarbanes Oxley readiness, controls optimization, as well as configuration of controls around security, business process and within the SAP
  • Technical and functional experience in the implementation of implementing SAP Security and SAP GRC technologies (i.e., SAP GRC Access Control, SAP Identity Access Governance and/or SAP GRC Process Control)
  • Identifying and addressing client needs, including developing and sustaining meaningful client relationships
• Knowledge of SAP related identity access management technologies and/or concepts would be an asset
• Bilingualism (English and French) would be asset
  

Ideally, you’ll also have

• A high level of motivation, strong work ethic and self-starting attitude.

What we offer

We offer a competitive compensation package where you’ll be rewarded based on your performance and recognized for the value you bring to our business. In addition, our Total Rewards package allows you decide which benefits are right for you and which ones help you create a solid foundation for your future. Our Total Rewards package includes a comprehensive medical, prescription drug and dental coverage, a defined contribution pension plan, a great vacation policy plus firm paid days that allow you to enjoy longer long weekends throughout the year, statutory holidays and paid personal days (based on province of residence), and a range of exciting programs and benefits designed to support your physical, financial and social well-being. Plus, we offer:

• Support and coaching from some of the most engaging colleagues in the industry
• Learning opportunities to develop new skills and progress your career
• The freedom and flexibility to handle your role in a way that’s right for you

EY exists to build a better working world, helping to create long-term value for clients, people and society and build trust in the capital markets.

Your key responsibilities

Your key responsibilities will include:

Hands on design and configuration of the Microsoft Defender and Sentinel product Suites

• Expressing configuration and development of Sentinel and Defender using Infrastructure as Code (IaC)
• Providing Overall Cybersecurity expertise to the team and our clients
• Development of advanced Sentinel queries and playbooks
• Logic App development
• Potential Live Cybersecurity Response in a Managed Services/Operations setting
• Helping leverage AI to automate Investigation and Response
• The development of Cybersecurity decoy systems to lure attackers off track leveraging Microsoft tools
• Endpoint Detection and Response support and administration

The Microsoft Defender/Sentinel Engineer role will design and implement the Defender and Sentinel aspects of our products. This will be done leveraging Infrastructure as Code (IAC). The Engineer will also work with offshore colleagues to configure and deploy the various solutions.

Our Microsoft Technology Stack: Azure, M365, Dynamics, Purview. Priva, Entra, Defender & Sentinel

Skills and attributes for success

• Microsoft Security Knowledge: Proficiency in Microsoft security products is essential, particularly in Microsoft Sentinel and Microsoft Defender. This includes familiarity with the implementation, administration, and troubleshooting of both tools
• Threat Detection and Analysis Skills: An understanding of threat detection and response is critical. This includes the ability to create, manage, and investigate incidents and alerts, understanding security threats, anomalies, and breach patterns.
• Azure Knowledge: Since Microsoft Sentinel is a cloud-based SIEM, knowledge about Azure cloud services, Azure Log Analytics, and how these integrate with Sentinel is needed. You need to understand how to ingest data from various sources into Azure Sentinel.
• Security Incident and Event Management (SIEM): Knowledge of SIEM concepts and capabilities is crucial.
• Programming and Scripting: Familiarity with scripting languages, such as PowerShell or KQL (Kusto Query Language, used in Azure Sentinel for data querying)
  

To qualify for the role, you must have

• Good executive presence
• Ability to work independently or team with others as required
• Minimum of 5 years of Cybersecurity experience
• Excellent collaboration and presentation skills, and the confidence to challenge senior colleagues and stakeholders from a diverse range of backgrounds
  

Ideally, you’ll also have

• Professional services firm experience
• Being bilingual (English & French) would be an asset
• Microsoft Security Engineer Associate certification
• Microsoft Security Operations certifications
• Other Cloud Certification
• Other Cybersecurity certifications

What We Offer

We offer a competitive compensation package where you’ll be rewarded based on your performance and recognized for the value you bring to our business. In addition, our Total Rewards package allows you decide which benefits are right for you and which ones help you create a solid foundation for your future. Our Total Rewards package includes a comprehensive medical, prescription drug and dental coverage, a defined contribution pension plan, a great vacation policy plus firm paid days that allow you to enjoy longer long weekends throughout the year, statutory holidays and paid personal days (based on province of residence), and a range of exciting programs and benefits designed to support your physical, financial and social well-being. Plus, we offer:

• Support and coaching from some of the most engaging colleagues in the industry
• Learning opportunities to develop new skills and progress your career
• The freedom and flexibility to handle your role in a way that’s right for you

Ernst & Young U.S. LLP, Philadelphia, PA.

Full time employment, Monday– Friday,hours per week, 8:30 am – 5:30 pm.

Must have a Bachelor's degree in Finance, Accounting, Economics, Mathematics, Statistics, Information Systems, Computer Science, Engineering, Business or a related field; and at least 5 years of post-bachelor’s progressive related work experience. Alternatively, will accept a Master’s degree in Finance, Accounting, Economics, Mathematics, Statistics, Information Systems, Computer Science, Engineering, Business or a related field; and at least 4 years of related work experience.Must have 4 years of experience in at least one or a combination of the following analytics tools:
- ACL,
- Tableau,
- Spotfire,
- Microsoft SQL Server,
- SPSS,
- SAS,
- Business Objects,
- Cognos,
- Informatica,
- Trillium, and/or
- Data Stage.Must have 3 years of experience in at least one or a combination of the following modernized information management tool landscapes:
- Talend,
- Collibra,
- Oracle DRM,
- SAP MDM,
- Informatica,
- Hyperion,
- Essbase, and/or
- SQL.Must have 3 years of experience with ETL processes.Must have 3 years of experience advising clients on the full data supply chain from data wrangling to data consumption via analytics.Must have 3 years of experience in providing complex consultative services in at least one or a combination of the following areas:
- information strategy,
- data architecture,
- information/data governance,
- master data management,
- data quality, and/or
- data integration.Must have 2 years of experience in supervising a team of professionals.Employer will accept any suitable combination of education, training or experience.

What we offer

We offer a comprehensive compensation and benefits package where you’ll be rewarded based on yourperformance and recognized for the value you bring to the business. The base salary for this job is $152,818.00per year. In addition, our Total Rewards package includes medical and dental coverage, pension and 401(k) plans, and a wide range of paid time off options. Join us in our team-led and leader-enabled hybrid model. Our expectation is for most people in external, client serving roles to work together in person 40-60% of the time over the course of an engagement, project or year. Under our flexible vacation policy, you’ll decide how much vacation time you need based on your own personal circumstances. You’ll also be granted time off for designated EY Paid Holidays, Winter/Summer breaks, Personal/Family Care, and other leaves of absence when needed to support your physical, financial, and emotional well-being.

• Continuous learning: You’ll develop the mindset and skills to navigate whatever comes next.
• Success as defined by you: We’ll provide the tools and flexibility, so you can make a meaningful impact, your way.
• Transformative leadership: We’ll give you the insights, coaching and confidence to be the leader the world needs.
• Diverse and inclusive culture: You’ll be embraced for who you are and empowered to use your voice to help others find theirs.

If you can demonstrate that you meet the criteria above, please contact us as soon as possible.

EY exists to build a better working world, helping to create long-term value for clients, people and society and build trust in the capital markets.

For those living in California, please

This particular position at Ernst & Young in the United States requires the qualified candidate to be a "United States worker" as defined by the U.S. Department of Labor regulations at 20 CFR 656.3. You can review this definition at at the bottom of page 750. Please feel free to apply to other positions that do not require you to be a "U.S. worker".

empower our clients to envision and achieve transformative success by mastering and sustaining innovative changes in people, processes, and technology.

We empower our clients HR functions to unlock greater organizational value through innovative talent strategies, streamlined operations, and cutting-edge HCM technology modernization initiatives.

This role is critical in ensuring the security and integrity of our clients systems, particularly in a cloud-hosted environment.

The ideal candidate will have a deep understanding of security principles, risk assessment, and compliance frameworks, and will work closely with internal teams and Public Sector stakeholders to meet stringent security requirements.

Your key responsibilities

• • Design and implement robust security architectures for cloud-hosted and on-premises systems.
• Collaborate with internal teams and GC stakeholders to address security requests and ensure compliance with government standards.
• Conduct and advise on penetration testing, performance/load testing, and vulnerability assessments.
• Develop and implement strategies for securing data in transit and at rest, including secure file transfer protocols.
• Provide expertise in Identity and Access Management (IAM) principles and practices.
• Assess security risks and contribute to the development of mitigation strategies.
• Ensure compliance with relevant legislation, data privacy regulations, and security standards.
• Apply knowledge of firewalls, network security, and cloud infrastructure to safeguard systems.
• Leverage experience with security frameworks and standards, including CCCS (Canadian Centre for Cyber Security).

Skills and attributes for success

If you have the confidence in both your presentation and technical abilities to grow into a leading expert here, this is the role for you.

To qualify for the role you must have

• Bachelor’s degree in IT, or a related field.
• At least 5 + years’ experience as a Security Architect or in a similar role.
• Strong understanding of cybersecurity principles, network security, and cloud infrastructure.
• Experience with IAM, risk assessment, and mitigation planning.
• Knowledge of data privacy regulations and secure data handling practices.
• Hands-on experience with security frameworks such as NIST, or ISO 27001.
• Flexibility and ability to travel

Ideally, you’ll also have

Experience working with or within Government of Canada environments.

Relevant certifications such as CISSP, CISM, CCSP, or equivalent.

Experience with Dayforce or similar cloud-based platforms is an asset.

What we offer

We offer a competitive compensation package where you’ll be rewarded based on your performance and recognized for the value you bring to our business. In addition, our Total Rewards package allows you to decide which benefits are right for you and which ones help you create a solid foundation for your future. Our Total Rewards package includes a comprehensive medical, prescription drug and dental coverage, a defined contribution pension plan, a great vacation policy plus firm paid days that allow you to enjoy longer long weekends throughout the year, statutory holidays and paid personal days (based on province of residence), and a range of exciting programs and benefits designed to support your physical, financial and social well-being. Plus, we offer:

• Support, coaching and feedback from some of the most engaging colleagues around
• Opportunities to develop new skills and progress your career
• The freedom and flexibility to handle your role in a way that’s right for you

The salary range for this job in British Columbia is [$Minimum] to [$Maximum]. Individual salaries within this range are determined through a wide variety of factors including but not limited to education, experience, knowledge, skills and work location city.

EY exists to build a better working world, helping to create long-term value for clients, people and society and build trust in the capital markets.