Advisor WO Cybersecurity and Privacy - CertifyPoint

EY

Vacature informatie

Bedrijf: EY

Locatie: Amsterdam

Opleidingsniveau: WO

Arbeidsvoorwaarden: Marktconform

Solliciteren

The opportunity

Our leading Cloud service clients are under constant pressure from their customers and stakeholders to demonstrate compliance with Cybersecurity and Privacy/GDPR standards and that's where EY CertifyPoint assists them via certification services. As a security/privacy assessor, you will primarily be performing certification audits for security and privacy-related controls for our clients as well as proving workshops and training sessions on related topics. EY is expanding its certification and implementation services on management systems for a broad range of standards. Within EY, you will discover the best of two worlds for leading global organizations.

 

Your key responsibilities

This is a role where no two days are the same – so you will find yourself taking on plenty of new responsibilities as you go. You will work alongside leading global technology organizations and colleagues, balancing your time between auditing, traveling, providing workshops and supporting business development. If you are flexible and ready to adapt to a constantly changing environment, there’s no better place to develop your skills. Since the position is for a team which works on a global scale within EY, there are many global travel opportunities (30 -60%) for willing individuals.

 


Skills and attributes for success

  • Ability to critically review security policies and procedures, design and implementation of security policies, procedures, standards and controls in line with regulation and/or current standards, ISO27001, NIST frameworks, SANS etc.
  • Strong understanding – educational background and work experience with IT and Cloud services organizations.
  • Execute data privacy audits in line with GDPR regulation and ability to assist the clients in implementation of data protection / GDPR programme to address confidentiality and security over customer, employee or patient data
  • Good technical knowledge and project management skills with the ability to collaborate with teams across multiple locations
  • Be able to articulate threats and risk to business and technology leaders and understand security and privacy concepts and how they apply to business and technology solutions
  • Problem-solving and proactive mindset with good auditing and interpersonal skills
  • Ability to ask the right questions as the role demands tremendous exposure to the management layer of our international clients who are leading organizations in their respective industries
  • A strong command of the English language is a must due to the International clientele of EY CertifyPoint

Advanced knowledge of

  • IT general controls (security, change management, disaster backup recovery, data center, infrastructure, etc.)
  • Cloud Services technical concepts
  • Experience with security/ technology frameworks like NIST, ISO27001, ISO20000-1 etc.
  • Systems Development Life Cycle (SDLC) methodology
  • Operation system and database platforms (mainframe, client/server, Windows, UNIX, AS400, DB2, etc.)
  • Networking (TCP/IP)
  • IT governance processes (IT Policies and Standards, ITIL)
  • IT Risk Management’s assessments processes (Security, Vendor, and Risk Assessments) 

Ideally, you should have

  • Relevant Bachelor's and/or Master's degree in Computer Science, IT Auditing, Information Systems, Privacy Law
  • Have more than 3 years of IT auditing working experience and familiar with NIST/ FEDRAMP/ FISMA standards
  • Good understanding of industry standards in cybersecurity (ISO, ITIL, NIST, ISF) and privacy ( GDPR, ISO 27018) is an advantage
  • Currently holding/ willingness to pursue industry certifications e.g. CISA, CISM, CISSP, CCSP, CIPP, CIPM, ISO 27001, ISO 22301 etc.
  • Proficiency in Dutch, German or French would be an advantage, though not mandatory.

Preferred qualifications

  • Master’s Degree in Auditing, Master’s Degree in Information Systems or Master of Business Administration
  • Certified Information Systems Auditor ( CISA ), Certified Internal Auditor ( CIA ) or Certified Public Accountant ( CPA ), Certified Information Systems Security Professional ( CISSP ), Certified Information Security Manager ( CISM ), FEDRAMP

What we look for

An individual who has 3+ years of relevant experience. Highly motivated individuals with excellent problem-solving skills and the ability to prioritize shifting workloads in a rapidly changing industry. An effective communicator, you will be a confident team player who collaborates with people from various teams while looking to develop your career in a dynamic organization.

 

If you can confidently demonstrate that you meet the criteria above, please get in contact with Solange van Heemstra, Recruiter, tel: 0615886484 of via solange.van.heemstra@nl.ey.com.
Make your mark. Apply now.

 

Vacature informatie

Bedrijf: EY

Locatie: Amsterdam

Opleidingsniveau: WO

Arbeidsvoorwaarden: Marktconform

Solliciteren

Meer vacatures

Vacatures