דרושים Gds Consulting Data Protection & Privacy Senior Consultant Cebu ב-Ey ב-Philippines, Cebu City

• Ensure the delivery of third-party risk management engagements, which involve performing security assessments of the client’s third-party service providers. This involves:
o Performing security assessments of new and existing service providers
o Assessing vendor answers and follow up with vendor directly for questions
o Conducting a risk analysis and assessment of vendor information and documentation against a client’s IT security and data privacy requirementso Defining appropriate risk levels and corrective actions
o Identifying issues and work with vendor to resolve/accept
o Following up on corrective action plans
o Maintaining issues/items tracker and status updates for each vendor review
o Provide risk acceptance and/or risk remediation recommendations
• Work effectively as a team member, sharing responsibility, providing support, maintaining communication and updating senior team members on progress.
• Execute the engagement requirements, along with review of work by junior team members.
• Help prepare reports and schedules that will be delivered to clients and other parties.
• Develop and maintain productive working relationships with client personnel.
• Build strong internal relationships within EY Consulting Services and with other services across the organization
• Contribute to people related initiatives including recruiting and retaining Cyber Transformation professionals
• Maintain an educational program to continually develop personal skills of staff
• Understand and follow workplace policies and procedures
• Building a quality culture at GDS
• Help senior team members in performance reviews and contribute to performance feedback for staff/junior level team members
• Manage the performance management for the direct reportees, as per the organization policies.
• Foster teamwork and lead by example
• Training and mentoring of project resources
• Participating in the organization-wide people initiatives

• Hands-on experience of more than 5 years with key components of cybersecurity including (but not limited to):
o Vendor Risk Management
o Cyber Strategy & Governance, Cyber Transformation, Cyber Dashboarding
o Regulations/standards such as ISO 27001, PCI DSS, HIPAA, HITRUST, GDPR, CCPA, FISMA/FEDRAMP, COBIT, OWASP Top 10, NIST 800-53• Must have experience in working in client facing roles, interacting with the third parties, assessing different kinds of environments (IT and non-IT) and ability to apply cyber security concepts in all these sectors.
• Must have experience in assessing OT infrastructure (PLC, SCADA devices, etc).
• Good understanding of Secure SDLC concepts.
• Hands-on experience in network device (firewalls, routers etc.) configuration review is a plus.
• Should have a good understanding of VAPT process, common application security vulnerabilities, exploitation techniques and remediation measures.
• Good knowledge on Network Security and network architecture diagram reviews, access and perimeter control, vulnerability management and intrusion detection, firewall rule-based reviews.
• Good understanding of logging and monitoring tools (SIEM). Hands-on in any one of the SIEM tools is a plus.
• Must have a good understanding of cryptographic concepts.
• Strong understanding of Cloud Security in (specifically MS Azure.)
o Knowledge in other cloud platforms is a plus.

To qualify for the role, you must have:

• BE - B. Tech / MCA / M. Tech/ MBA with background in computer science and programming.
• Strong Excel and PowerPoint skills.
• Should be proficient in leading medium to large engagements and coach junior staff.

Ideally, you’ll also have

• Project management skills.
• CISSP, CISA, CISM, CEH, ISO 27001 Lead Auditor and Lead Implementer.

What we look for

• A team of people with commercial acumen, technical experience and enthusiasm to learn new things in this fast-moving environment with consulting skills.
• An opportunity to be a part of market-leading, multi-disciplinary team of 1400 + professionals, in the only integrated global transaction business worldwide.
• Opportunities to work with EY Consulting practices globally with leading businesses across a range of industries.

You get to work with inspiring and meaningful projects. Our focus is education and coaching alongside practical experience to ensure your personal development. We value our employees and you will be able to control your own development with an individual progression plan. You will quickly grow into a responsible role with challenging and stimulating assignments. Moreover, you will be part of an interdisciplinary environment that emphasizes high quality and knowledge exchange. Plus, we offer:

• Support, coaching and feedback from some of the most engaging colleagues around
• Opportunities to develop new skills and progress your career
• The freedom and flexibility to handle your role in a way that’s right for you

Apply now

EY exists to build a better working world, helping to create long-term value for clients, people and society and build trust in the capital markets.

As part of our EY Cyber security, Technology Consulting team, your role will be to actively establish, maintain and strengthen internal and external relationships. You will be responsible for delivery and maintaining quality of services and deliverables on your engagements. You’ll also identify potential business opportunities for EY and GDS within existing engagements and escalate these as appropriate. Similarly, you’ll anticipate and identify risks within engagements and share any issues with senior members of the team.

Your key responsibilities

• Engage in DPP projects.
• Work effectively as a team member, sharing responsibility, providing support, maintaining communication and updating senior team members on progress.
• Execute the engagement requirements, along with review of work by junior team members.
• Help prepare reports and schedules that will be delivered to clients and other parties.
• Develop and maintain productive working relationships with client personnel.
• Build strong internal relationships within EY Consulting Services and with other services across the organization.
• Help senior team members in performance reviews and contribute to performance feedback for staff/junior level team members.
• Contribute to people related initiatives including recruiting and retaining DPP professionals.
• Maintain an educational program to continually develop personal skills of staff.
• Understand and follow workplace policies and procedures.

Skills and attributes for success

• Relevant work Experience: 4 to 6 years.
• Thorough understanding of various Data privacy regulations and privacy concepts (for e.g. GDPR, CCPA etc.).
• Experience in performing PIA, DPIA and data mapping etc. At least 3 years of experience in Privacy domain.
• Experience in developing data protection privacy strategies and roadmaps.
• Experience in planning and implementation of data protection and privacy controls.
• Experience in creating Data privacy related training content and imparting cross functional training on Data Privacy.
• Experience in responding to Data Privacy Request for Proposals (RFPs).
• Candidate should remain abreast of the industry trends and updated on Data Privacy standards, regulations and related technologies.
• Good Understanding of risk assessment frameworks.
• Candidate should be able to prioritize tasks and work accurately under pressure in order to meet deadlines.
• Excellent documentation and communication skills.

To qualify for the role, you must have

• Graduates / BE - B. Tech / MCA / M. Sc (Stats, Maths, Computer Science) / MBA with background in computer science and programming.
• Certifications related to Data Privacy such as CIPP, CIPM, CIPT etc.
• Functional and non-functional privacy requirements definition and documentation experience.

Ideally, you’ll also have

• Project management skills.
• CISSP, CISA, CISM, CEH, ISO 27001 Lead Auditor and Lead Implementer.

What we look for

• A team of people with commercial acumen, technical experience and enthusiasm to learn new things in this fast-moving environment with consulting skills.
• An opportunity to be a part of market-leading, multi-disciplinary team of 1400 + professionals, in the only integrated global transaction business worldwide.
• Opportunities to work with EY Consulting practices globally with leading businesses across a range of industries.

You get to work with inspiring and meaningful projects. Our focus is education and coaching alongside practical experience to ensure your personal development. We value our employees and you will be able to control your own development with an individual progression plan. You will quickly grow into a responsible role with challenging and stimulating assignments. Moreover, you will be part of an interdisciplinary environment that emphasizes high quality and knowledge exchange. Plus, we offer:

• Support, coaching and feedback from some of the most engaging colleagues around.
• Opportunities to develop new skills and progress your career.
• The freedom and flexibility to handle your role in a way that’s right for you.

Apply now

EY exists to build a better working world, helping to create long-term value for clients, people and society and build trust in the capital markets.

Your key responsibilities

• Lead and oversee multiple Digital Health strategy workstreams and complex engagements, ensuring delivery of high-impact solutions and strategic recommendations.
• Provide senior leadership and direction to project teams, fostering a culture of excellence, innovation, and collaboration.
• Develop, maintain, and strengthen executive-level client relationships, acting as a trusted advisor and strategic partner.
• Drive business development activities, including identifying opportunities, leading proposal development, and supporting practice growth.
• Stay at the forefront of Digital Health trends and issues, providing thought leadership and market insights to clients and internal teams.
• Demonstrate deep technical and professional knowledge of Digital Health trends in both Canadian and global contexts.
• Mentor, coach, and develop Managers, Senior Consultants, and interns, supporting their professional growth and performance.
• Foster an inclusive, innovative, and team-oriented work environment, championing EY’s values and commitment to diversity.

To qualify for the role, you must have

• Bachelor’s or Master’s degree in business, health administration, technology, or equivalent experience (MBA or MSc preferred).
• A minimum of 8+ years’ experience in industry and/or with a professional services firm, with a successful track record in Digital Health and technology transformation strategy development, including senior leadership roles.
• A minimum of 5+ years’ experience in technology strategy consulting, with demonstrated experience leading large-scale digital operating model implementations in healthcare.
• Proven experience managing innovation, market assessments, and transformation projects.
• In-depth knowledge of EMR/HIS systems, including implementation and configuration best practices.
• Advanced problem-solving and critical thinking skills, with the ability to structure and plan complex workstreams to address bespoke client needs.
• Strong command of technical applications and tools to support complex analysis.
• Experience synthesizing research and analysis into structured, logical recommendations for executive audiences.
• Excellent communication, presentation, and writing skills.
• Willingness to travel as required (up to 80% of work week).

Skills and attributes for success

• Strategic leadership and vision in Digital Health transformation.
• Ability to build and maintain executive relationships and influence senior stakeholders.
• Proven track record of delivering high-quality, innovative solutions in complex environments.
• Commitment to mentoring and developing high-performing teams.

Ideally, you’ll also have

• Security clearance preferred.
• Experience with government and public sector health transformation initiatives.

• Serve as Talent management support to the location Talent team.
• Partner with various Talent subfunction team leads and COE’s for process efficiency opportunities
• Drive forward adhoc special projects and programs, in response to people analytics and listening exercises, working closely with cross functional teams to deliver effectively and efficiently.
• Manage location-wide Talent operations and will lead the collaboration with TSS for location-specific Talent support.
• Assist in messaging for internal and external Talent communications matters
• Assist the Talent Location Leader in develop Ideas and new ways of working for the location Talent team
• Help set the culture of the overall GDS PH through events, programs, including Diversity and Inclusion location strategy and priorities.

• Bachelor’s degree or equivalent

• 8-10 years experience in all facets of Talent

• Cebu, Philippines

• Flexible PH

• Strong collaboration skills
• Familiarity with Talent tools and systems and how these enable core Talent team
• Strong organizational and project management skills
• Comfort multitasking and prioritising multiple time-sensitive initiatives
• Ability to establish partnerships with colleagues and stakeholders outside the team
• Ability to consistently exercise discretion and confidentiality with sensitive information
• Looks for new ways to improve current processes and develop creative solutions that are grounded in reality and have practical value
• Natural affinity to drive culture and diversity initiatives.
• Strong Microsoft office skills, particularly Excel and PowerPoint

EY exists to build a better working world, helping to create long-term value for clients, people and society and build trust in the capital markets.

• Planning, design, build, implementing, managing and upgrading security systems to protect data, systems and network
• Ensuring that the client data and infrastructure are protected by continuously reviewing, enabling and implementing appropriate security controls & enterprise infrastructure. Identifying use cases on existing security systems and provide recommendations to improve current state
• Conduct regular capacity planning assessments on security appliances and licenses, provide quarterly recommendations to the relevant stakeholders. Determine the hardware and software asset’s lifecycle, plan ahead the recommendation on hardware refresh before it reaches its EOL/EOS state
• Process security project communications and track with various technical teams until it reaches completion, document project steps & lessons learned and work with other technical teams on integration, deployment & enhancement projects and any other engineering tasks
• Develop and design security project plans for SIEM, NDR, XDR, NGAV, NGFW, MDM, DLP, SWG, UEBA, primarily on cloud, DevOps and application security based on zero trust framework in compliance with applicable regulatory and data privacy requirements
• Contribute to the development of the various TechOps strategies and roadmaps as required to enable realization of the business strategies and objectives

• Ideal candidate must have a minimum of 6+ years of cybersecurity design, build and implementation experiences in a complex or large-scale environment or at least a minimum of two combined qualifications and/or experiences below:
• At least 3 years of hands-on experience in implementing, deploying & managing SIEM tools such as Splunk, Microsoft Sentinel, Qradar, Mcafee, Arcsight, LogRhythm, including python scripting, usage of regular expressions and natural language queries or;
• Extensive knowledge and hands-on experience in the areas of endpoint security (wintel & linux), web security, network (IDS, IPS, FW) security, data loss prevention (DLP) deployment or;
• Experience with Security Assessment tools (NMAP, Nessus, Metasploit, Netcat), vulnerability analysis, penetration testing, remediation and compliance, usage of automation tools for patch and vulnerability management or;
• Hands-on design and build experience for EDR, XDR and NGAV solutions such as Crowdstrike, Microsoft Defender, Cortex XSIAM, Carbon Black, Sophos, etc. or;
• Understanding of security principles, techniques, and technologies such as SANS Critical Security Controls, OWASP Top 10, Mitre Attack, Cyber Kill Chain, PCI-DSS, ISO 27001/02, SOC2, GDPR and other regulatory compliance frameworks, or;
• Combined hands-on experience on DevSecOps, Windows & Linux Server Administration, Network Administration, Storage & Backup, Systems Administration, Middleware, Application Administration and Endpoint Security Engineering. Network security zone administration, configurations, IDS/IPS policies, systems communications from Layer 1 to 7, packet capture and analysis log formats & analysis, ability to aggregate and parse log data for syslog, http logs, DB logs for discovery & investigation purposes or;
• Setting up SOAR for custom real-time dashboards, process automations, report generation, security orchestration, incident response automation using Phantom & Demisto, workflow modelling, playbooks development, Phantom API integrations with cloud platforms, and SOAR development, migration and administration.
• Strong domain expertise, implementation and/or integration skills in data classification, data discovery, information rights management, encryption, tokenization, data access governance and data masking technology solutions.

General Qualifications:
• Bachelor’s Degree relevant to Information Technology or Computer Science
• Can work under pressure, displays high level of ownership & accountability with very minimal supervision to execute tasks and deliverables
• Related Certification such as CEH, CHFI, Sec+, ITILv3, GCFA, ECIH, GCIH, CySA+, and other cybersecurity engineering-related certifications

You get to work with inspiring and meaningful projects. Our focus is education and coaching alongside practical experience to ensure your personal development. We value our employees and you will be able to control your own development with an individual progression plan. You will quickly grow into a responsible role with challenging and stimulating assignments. Moreover, you will be part of an interdisciplinary environment that emphasizes high quality and knowledge exchange. Plus, we offer:

• Support, coaching and feedback from some of the most engaging colleagues around
• Opportunities to develop new skills and progress your career
• The freedom and flexibility to handle your role in a way that’s right for you

If you can confidently demonstrate that you meet the criteria above, please contact us as soon as possible.

EY exists to build a better working world, helping to create long-term value for clients, people and society and build trust in the capital markets.

There really is no average day in this role, since every client will have multi-faceted challenges and a distinct business environment. What it means is that you’ll have an opportunity to learn and adapt to our clients’ cultures and contribute towards developing unique solutions that are tailored to individual engagements. Whichever industry or client you’re working with, you’ll have plenty of opportunities to expand your business network and transform yourself into a truly global professional.

This is client-facing role in a rapidly growing practice, where you’ll build client relationships with key stakeholders, including management executives for some of the most globally recognized brands. It makes this the perfect place to gain a deeper understanding of complex businesses transactions, all the while recommending solutions to some of the most pressing business challenges and process inefficiencies. You'll also team with our performance improvement professionals in multidisciplinary engagements, helping major global clients transform and sustain business performance. The team is focused on leveraging emerging technologies like Robotics, AI, Advanced Analytics to enhance various Internal Audit and internal control solutions being provided to the client and actively work in building multiple tools and assets for efficient and effective client delivery. By plugging into our market-leading global network, you'll gain the experience you need to become an exceptional Risk Advisor

• Manage a team of Staffs and Seniors (across locations) to manage delivery of the SOX engagements - including scoping, test of design, test of effectiveness and reporting – for multiple processes across clients
• Provide guidance to Staffs and Seniors to conduct effective assessment to comply to Sarbanes-Oxley (SOX) compliance
• Conduct / Lead control rationalization and standardization activity or re-design existing controls for business processes
• Evaluate control gaps noted during design or operating effectiveness testing, provide recommendations and track remediation
• Responsible to define budget, track actuals against the budget and resource planning / scheduling
• Independently manage client process owners with minimal supervision
• Meet quality guidelines within the established turnaround time (or allotted budget) to drive the value for the client
• Demonstrate application and solution-based approach to problem solving while executing client engagements
• Anticipate and identify engagement related risks and escalate issues as appropriate on a timely basis
• Design and lead area specific transition plan within agreed timelines
• Spear head the team performing analytics and benchmarking activities for clients
• Drive process automation and implement opportunities for continuous improvements

• Executive-level skills in client relationship management and the hold conversations with senior executives.
• Partnering with onshore teams to understand client’s business & related industry issues / trends for global clients.
• Identify buyers, influencers & stakeholders in existing client engagements and build strong relationships.
• Assist Senior Managers / Directors in driving the account management agenda by focusing on high impact opportunities.
• Contribute to new solution development basis the industry trends and client’s problem statement
• Conduct knowledge sharing discussions & contribute to EY thought leadership.
• Supports in responding to RFP / RFIs
• Support multiple innovation initiatives to enhance existing solutions leveraging emerging technologies like Robotics, AI, Advanced Analytics
• Collaborating with colleagues across multiple service lines, sharing your knowledge and experience to guide business decisions.
• Monitoring industry news, tools and trends while suggesting potential risks, as well as opportunities to improve the way we work.

• Suggest ideas on improving engagement productivity and identify opportunities for improving client service.
• Manage engagement budgets and ensure compliance with engagement plans and internal quality & risk management procedures.

• Display teamwork, integrity and leadership. Work with team members to set goals and responsibilities for specific engagements. Foster teamwork and innovation.
• Utilize technology & tools to continually learn and innovate, share knowledge with team members and enhance service delivery.
• Understand EY and its service lines. Actively encourage team members to contribute ideas.
• Conduct workshops and technical training sessions for team members. Contribute to the learning & development agenda and knowledge harnessing initiatives.

• Exceptional command on spoken and written English
• Globally mobile and flexible to travel to onsite locations
• Highly analytical, organized and meticulous consulting skills
• Strong academic history (degree in Business, Accounting, or similar work experience in similar industry, Big 4 preferred)
• Proficient in MS-Office Suite, data analysis & validation
• Team player with strong interpersonal skills
• Ability to prioritize deliverables effectively in order to achieve optimum results.

• More than 7 years of a “Big 4” or professional firm or professional industry experience in risks & controls, with more than 4 years of experience in SOX / internal controls
• Strong understanding of SOX and COSO framework
• CIA certification is preferred
• Strong academic history (degree in Business, Accounting, Engineering or similar)
• Strong multi-project management skills
• Skilled at collaborating, motivating and guiding high performance teams.
• Cognitive problem solving capabilities, quick decision making skills and ability to handle complex situations with a calm demeanor
• Exceptional command on spoken and written English
• Globally mobile and flexible to travel to onsite locations
• Team player with strong interpersonal skills
• Ability to think differently and innovate

• Responsible for the performance and appraisal of direct reports, including training and developing necessary skill sets to enable them to grow in their careers.
• Mentor and coach junior team members, enabling them to meet their performance goals and successfully grow their careers.

• A Team of people with commercial acumen, technical experience and enthusiasm to learn new things in this fast-moving environment
• Opportunities to work with EY Risk -Internal Audit practices global with leading businesses across a range of industries

At EY, we’re dedicated to helping our clients, from start–ups to Fortune 500 companies — and the work we do with them is as varied as they are.
You get to work with inspiring and meaningful projects. Our focus is education and coaching alongside practical experience to ensure your personal development. We value our employees and you will be able to control your own development with an individual progression plan. You will quickly grow into a responsible role with challenging and stimulating assignments. Moreover, you will be part of an interdisciplinary environment that emphasizes high quality and knowledge exchange. Plus, we offer:
• Support, coaching and feedback from some of the most engaging colleagues around
• Opportunities to develop new skills and progress your career
• The freedom and flexibility to handle your role in a way that’s right for you

Apply now

EY exists to build a better working world, helping to create long-term value for clients, people and society and build trust in the capital markets.

As part of our EY Cyber security, Technology Consulting team, your role will be to actively establish, maintain and strengthen internal and external relationships. You will be responsible for delivery and maintaining quality of services and deliverables on your engagements. You’ll also identify potential business opportunities for EY and GDS within existing engagements and escalate these as appropriate. Similarly, you’ll anticipate and identify risks within engagements and share any issues with senior members of the team.

Your key responsibilities

• Engage in DPP projects.
• Work effectively as a team member, sharing responsibility, providing support, maintaining communication and updating senior team members on progress.
• Execute the engagement requirements, along with review of work by junior team members.
• Help prepare reports and schedules that will be delivered to clients and other parties.
• Develop and maintain productive working relationships with client personnel.
• Build strong internal relationships within EY Consulting Services and with other services across the organization.
• Help senior team members in performance reviews and contribute to performance feedback for staff/junior level team members.
• Contribute to people related initiatives including recruiting and retaining DPP professionals.
• Maintain an educational program to continually develop personal skills of staff.
• Understand and follow workplace policies and procedures.

Skills and attributes for success

• Relevant work Experience: 4 to 6 years.
• Thorough understanding of various Data privacy regulations and privacy concepts (for e.g. GDPR, CCPA etc.).
• Experience in performing PIA, DPIA and data mapping etc. At least 3 years of experience in Privacy domain.
• Experience in developing data protection privacy strategies and roadmaps.
• Experience in planning and implementation of data protection and privacy controls.
• Experience in creating Data privacy related training content and imparting cross functional training on Data Privacy.
• Experience in responding to Data Privacy Request for Proposals (RFPs).
• Candidate should remain abreast of the industry trends and updated on Data Privacy standards, regulations and related technologies.
• Good Understanding of risk assessment frameworks.
• Candidate should be able to prioritize tasks and work accurately under pressure in order to meet deadlines.
• Excellent documentation and communication skills.

To qualify for the role, you must have

• Graduates / BE - B. Tech / MCA / M. Sc (Stats, Maths, Computer Science) / MBA with background in computer science and programming.
• Certifications related to Data Privacy such as CIPP, CIPM, CIPT etc.
• Functional and non-functional privacy requirements definition and documentation experience.

• Project management skills.
• CISSP, CISA, CISM, CEH, ISO 27001 Lead Auditor and Lead Implementer.What we look for

• A team of people with commercial acumen, technical experience and enthusiasm to learn new things in this fast-moving environment with consulting skills.
• An opportunity to be a part of market-leading, multi-disciplinary team of 1400 + professionals, in the only integrated global transaction business worldwide.
• Opportunities to work with EY Consulting practices globally with leading businesses across a range of industries.

At EY, we’re dedicated to helping our clients, from start–ups to Fortune 500 companies — and the work we do with them is as varied as they are.
You get to work with inspiring and meaningful projects. Our focus is education and coaching alongside practical experience to ensure your personal development. We value our employees and you will be able to control your own development with an individual progression plan. You will quickly grow into a responsible role with challenging and stimulating assignments. Moreover, you will be part of an interdisciplinary environment that emphasizes high quality and knowledge exchange. Plus, we offer:

• Support, coaching and feedback from some of the most engaging colleagues around.
• Opportunities to develop new skills and progress your career.
• The freedom and flexibility to handle your role in a way that’s right for you.

EY exists to build a better working world, helping to create long-term value for clients, people and society and build trust in the capital markets.