Technology Consulting
Specialist III, Third Party Technical Risk Assessment Analyst
Client Technology (CT) -identify new technology-based opportunities faster and pursue those opportunities more rapidly.
Enterprise Workplace Technology (EWT) –
Information Security (Info Sec) -
Your key responsibilities
Lead and coordinate security initiatives to safeguard IT infrastructure, data and applications from cyber threats and unauthorized access.
Conduct risk assessments and security audits, identifying vulnerabilities and recommending mitigation strategies to enhance security controls.
Evaluate third-party applications, technologies and technical acquisitions to ensure they meet internal security standards and compliance requirements.
Design, implement, and test secure operating systems, networks and databases, ensuring the integrity of organizational IT infrastructure.
Monitor and analyze system access logs to detect unauthorized access attempts, anomalies, or potential security breaches.
Recommend and implement security process improvements related to third-party assessments, application security and risk mitigation strategies.
Perform vulnerability scans, penetration testing and intrusion detection analysis to proactively identify and resolve security threats.
Plan and oversee security measures for system backups and disaster recovery, ensuring business continuity and data protection.
Collaborate with key stakeholders, including IT, compliance and leadership teams, to align security strategies with business objectives.
Stay updated on emerging security threats, technologies and regulatory requirements, driving continuous improvement in security frameworks.
Participate in special projects and support security-related initiatives, ensuring adherence to industry best practices and organizational security policies.
Skills and attributes for success
A team player with strong analytical, communication and interpersonal skills
Constantly updating yourself about new technologies in the market
A winning personality and the ability to become a trusted advisor to the stakeholders
To qualify for the role, you must have
Minimum 8 years of relevant work experience, including at least 5 years in application development and IT security.
Bachelor’s degree (B.E./B.Tech) in Computer Science or IT(or equivalent combination of training and experience) or Bachelor’s in Computer Applications (BCA) from a recognized institution. MBA degree preferred
Expertise in vendor risk assessment frameworks, third-party security reviews, and compliance standards such as SOC 2, ISO 27001, NIST, and COBIT.
Experience with risk scoring methodologies, contract reviews, and regulatory compliance requirements.
Familiarity with security tools such as Archer and ServiceNow for risk and compliance management.
Strong knowledge of vulnerability assessments, penetration testing, and security auditing to identify and mitigate risks.
Understanding of secure application development, encryption, authentication, and access control best practices.
Proficiency in cloud security (AWS, Azure, GCP), network security, and endpoint protection.
Strong analytical, critical-thinking, and technical writing skills to document findings, perform security assessments, and communicate risk mitigation strategies.
Excellent interpersonal and communication abilities to collaborate with vendors, stakeholders, and IT teams.
Certification requirements: Ability to obtain Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM)
Ideally, you’ll also have
Strong verbal and written communication, facilitation, relationship-building, presentation and negotiation skills.
Be highly flexible, adaptable, and creative.
Comfortable interacting with senior executives (within the firm and at the client)
What we look for
Strong teamwork, work ethic, product mindset, client centricity and a relentless commitment to EY values.
We offer a competitive remuneration package where you’ll be rewarded for your individual and team performance. Our comprehensive Total Rewards package includes support for flexible working and career development, and with FlexEY you can select benefits that suit your needs, covering holidays, health and well-being, insurance, savings and a wide range of discounts, offers and promotions. Plus, we offer:
Support, coaching and feedback from some of the most engaging colleagues around
Opportunities to develop new skills and progress your career
The freedom and flexibility to handle your role in a way that’s right for you
can be requiredto travel regularly, and at times be based at client sites, our flexible working arrangements can help you to achieve a lifestyle balance.
As a global leader in assurance, tax, transaction and advisory services, we’re using the finance products, expertise and systems we’ve developed to build aetter working world. That starts with a culture that believes in giving you the training, opportunities andfreedom to make things better.
If you can confidently demonstrate that you meet the criteria above, please contact us as soon as possible.
Make your mark.
Apply now.
משרות נוספות שיכולות לעניין אותך