EY Information Security Control Assessor 

Philippines, Taguig 

367058381

• Execute and complete test plans for a variety of Information Security controls across the full scope of a Technology Risk Universe
• Based on results of assessments and testing, assist control owners with the design and implementation of their controls in the organization's IT environment.
• Build and maintain appropriate relationships with internal and external stakeholders.
• Flexibility to adjust to multiple demands, shifting priorities, ambiguity, and rapid change.
• Outstanding interpersonal, communication, organizational, and decision-making skills.
• Ability to understand and integrate cultural differences to effectively participate on cross cultural teams.
• Act as a thought leader in the firm, staying informed of changes in information security, regulatory requirements, audit standards, and industry trends, adjusting strategies, as necessary.
• Demonstrate integrity and judgment within a professional environment.

• 2+ years of experience in the Information Technology, Information Security and/or Risk Management field(s).
• Audit experience or a demonstrated ability to design and test technology controls.
• Experience working on global and virtual teams.
• High proficiency in speaking, reading, and writing skills in English (primary).
• Moderate proficiency in speaking, reading, and writing skills in Mandarin (secondary).
• An advanced degree in Computer Science, Information Security, or a related field; equivalent work experience will be considered on a case-by-case basis.

• A working knowledge of external control standards like ISO 27001, NIST 800-53, COBIT, etc. and regulatory requirements like GDPR and SOX.
• Skilled in Microsoft Office and M365 products; primarily Word, Excel, PowerPoint, SharePoint, PowerApps, and PowerBI.
• Flexibility to work outside of normal business hours when engaging with team members and stakeholders in various time zones.
• Interest and ability to obtain one or more of the following or equivalent certifications: Certified Risk and Information Systems Control (CRISC), Certified Information Systems Security Processional (CISSP), Certified Information Security Manager (CISM), Certified Information System Auditor (CISA), Certified Internal Auditor (CIA), Global Information Assurance Certification (GIAC) in related area, CIPP, CIPT.

•: You will develop the mindset and skills to navigate whatever comes next.
•: We will provide the tools and flexibility, so you can make a significant impact, your way.
•: We will give you the insights, coaching and confidence to be the leader the world needs.
•: You will be accepted for who you are and empowered to use your voice to help others find theirs.
If you can confidently demonstrate that you meet the criteria above, please contact us as soon as possible.Apply now.

EY exists to build a better working world, helping to create long-term value for clients, people and society and build trust in the capital markets.