EY Cyber Security - Data Protection Manager Multiple Positions 

United States, Michigan, Detroit 

20078950

Cyber Security - Data Protection (Manager) (Multiple Positions), Ernst & Young U.S. LLP, Detroit, MI.Lead teams to assist clients with defining technical and business requirements for data protection solutions. Help design and implement data protection governance, processes and technology to identify and protect the data that is most impactful to the business from a financial, operational, regulatory or reputational perspective. Deliver new systems and improvements to existing systems customized to meet the clients’ data protection needs. Devise methods to add new functionality to the existing technologies to address new threats and tactics. Produce new playbooks as threats change and new data protection tools and controls emerge, and train the clients’ end users. Participate in client meetings to advise clients on multiple data protection products and solutions including enterprise data loss prevention, data classification, digital rights management, cloud data loss prevention / cloud access security brokers, tokenization, file and database encryption.

Full time employment, Monday – Friday, 40 hours per week, 8:30 am – 5:30 pm.

MINIMUM REQUIREMENTS:

Bachelor's degree in Computer Engineering, Technology Management, Information Systems, Engineering, Business Administration or related, and 5 years of progressive post-bachelor's experience; or a Master's degree in Computer Engineering, Technology Management, Information Systems, Engineering, Business Administration or related, and 4 years of experience.

Must have 3 years of experience in at least 5 of the following Cybersecurity concepts and methods: vulnerability assessments, data classification, privacy assessments, incident response, security policy creation, enterprise security strategies, architectures and governance.

Must have 1 year of cumulative experience in any of the following:
- Networking (TCP/IP or OSI model), operating system fundamentals (Windows, UNIX, or mainframe), security technologies (firewalls or IDS/IPS) and application programming/scripting languages (C, Java, Perl, or Shell);
- Technical architecture experience integrating data protection software into clients' infrastructure; network architecture design, implementation and administration;
- Operating systems, virtual machine environments, mainframe security packages, and relational database management systems.

- 3 years of experience in at least one of the following regulatory requirements and/or compliance issues affecting clients related to privacy and data protection: PCI DSS, GLBA, Basel II, EU Data Protection Directive, International Cross Border and United States’ State Data Privacy Laws.Must have 3 years of technical architecture experience integrating data protection software into clients' infrastructure and applications.Must have 2 years of experience leading teams of cyber security advisory/consulting professionals.Must be eligible to obtain a professional certification such as CIPP, CIPT, CISA, CISM, CISSP, CRISC, PMP or other related certification within one year of hire.Employer will accept any suitable combination of education, experience, or training.

• Continuous learning: You’ll develop the mindset and skills to navigate whatever comes next.
• Success as defined by you: We’ll provide the tools and flexibility, so you can make a meaningful impact, your way.
• Transformative leadership: We’ll give you the insights, coaching and confidence to be the leader the world needs.
• Diverse and inclusive culture: You’ll be embraced for who you are and empowered to use your voice to help others find theirs.