Job Description

Technology Consulting - Cyber Security - Cyber Threat Management (Vulnerability Management) (Manager) (Multiple Positions), Ernst & Young U.S. LLP, McLean, VA.

Provide advisory services on technology risk and security to help clients protect themselves against cyber attacks. Evaluate client vulnerability management programs across people, process, and technology. Create multi-faceted cyber vulnerability management solutions tailor to client environments. Perform and control vulnerability assessments to identify control weaknesses and assess the effectiveness of existing controls. Lead client discussions and provide training and mentoring on cyber vulnerability management. Manage and motivate teams with diverse skills and backgrounds. Consistently deliver quality client services by monitoring progress. Demonstrate in-depth technical capabilities and professional knowledge. Maintain long-term client relationships and networks. Cultivate business development opportunities.

Full time employment, Monday Friday, 40 hours per week, 8:30 am 5:30 pm

MINIMUM REQUIREMENTS:

Must have a Bachelor's degree in Management Information Systems (MIS), Computer Science, Engineering or a related field and 5 years of progressive, post-baccalaureate work experience in cyber threat management. Alternatively, will accept a Master's degree in Management Information Systems (MIS), Computer Science, Engineering or a related field and 4 years of work experience in cyber threat management.

Must have 4 years of work experience in vulnerability management.

Must have 2 years of experience in running vulnerability management programs, assisting with vendor selection, conducting root cause analysis against vulnerabilities, and determining feasible technical solutions.

Must have 2 years of hands-on operational experience in deploying, configuring, and running Qualys, Nexpose, or a similar vulnerability management tool.

Must have 2 years of experience with security and risk standards, which must include ISO 27001-2, PCI DSS, NIST, ITIL, or COBIT.

Must have 2 years of experience leading teams of Cyber Security advisory/consulting professionals.

Must be eligible to obtain a professional certification such as CIPP, CISSP, CIPT, CISA, CISM, CISSP, CRISC, PMP or other related certification within one year of hire.

Requires domestic and international travel up to 80% to serve client needs.

Employer will accept any suitable combination of education, training or experience.

TO APPLY: Please apply on-line at ey.com/en_us/careers, and click on Find jobs (Job Number MCL005AR).

EY provides equal employment opportunities to applicants and employees without regard to race, color, religion, age, sex, sexual orientation, gender identity/expression, national origin, protected veteran status, disability status, or any other legally protected basis, in accordance with applicable law.

This particular position at Ernst & Young in the United States requires the qualified candidate to be a "United States worker" as defined by the U.S. Department of Labor regulations at 20 CFR 656.3. You can review this definition at https://www.gpo.gov/fdsys/pkg/CFR-2011-title20-vol3/pdf/CFR-2011-title20-vol3-sec656-3.pdf at the bottom of page 750. Please feel free to apply to other positions that do not require you to be a "U.S. worker".