At EY, you will have the chance to build a career as unique as you are, with the global scale, support, inclusive culture, and technology to become the best version of you. And we are counting on your unique voice and perspective to help EY become even better too. Join us and build an exceptional experience for yourself, and a better working world for all.
The opportunity
EY is on the lookout for Manager/Senior Manager Cyber Security – Strategy & Transformation. This role will be based in Karachi, Pakistan. The role plays a key part in execution of strategic initiatives under Cybersecurity (CS) Priorities. The role executes (plan, design/development and deploy) strategic, complex cross-functional initiatives across the business. Expectation would be to develop execution plans, drive actions, resolve issues, identify dependencies, and manage stakeholders to produce intended results on initiatives and programs.
Your key responsibilities
Review and develop cyber security policies, procedures and guidelines. Experience in working with SBP/SECP/National policies for cybersecurity and technology. Review and give recommendation on cyber security strategy and action plan in alignment with business strategy to ensure a robust overall security posture. Review and develop cyber security governance program presenting the overall security status to the different layers in business. Experience in implementing reporting dashboards to the management for taking informed decisions. Experience in assessing and implementing infrastructure and application security primarily for banks and government sector. Experience in implanting and auditing ISO27001:2013/2022. Experience in executing IT General Control assessments. Experience in responding to cyber security incidents in different organizations and establishing the security response framework. Experience in reviewing IT and Cybersecurity DR plan. Experience in security information and event management infrastructure, covering all areas including infrastructure, network, cloud, applications and SaaS platforms. Strong understanding of cybersecurity requirements in public and private clouds.
Qualifications and Requirements:
Master’s/bachelor’s degree in computer engineering, Information Technology, Information Security, or a related field from an accredited university. Proven experience implementing IT Security Controls including baseline standards like CIS. Sound understanding of privacy frameworks like GDPR, PDPL etc. Sound understanding of compliance with SOC type I and type II audits. Sound understanding of NIST CSF, ISO 27001, 27005, 27701, SP800 etc. Experience in assessing and establishing security architecture for applications (web, thick client, others), cloud servers, SaaS etc. 8-10 years of Experience managing both on-premises and cloud-based platforms. Certifications such as CISSP, OSCP, CISM, CCSP, CISA.
What we look for
What we offer
We offer a competitive compensation package where you’ll be rewarded based on performance and recognized for the value you bring to our business. Plus, we offer:
Continuous learning: You’ll develop the mindset and skills to navigate whatever comes next. Success as defined by you: We’ll provide the tools and flexibility, so you can make a meaningful impact, your way. Transformative leadership: We’ll give you the insights, coaching and confidence to be the leader the world needs. Diverse and inclusive culture: You’ll be embraced for who you are and empowered to use your voice to help others find theirs.If you can demonstrate that you meet the criteria above, please contact us as soon as possible.
The exceptional EY experience. It’s yours to build.
EY | Building a better working world
EY exists to build a better working world, helping to create long-term value for clients, people and society and build trust in the capital markets.
Enabled by data and technology, diverse EY teams in over 150 countries provide trust through assurance and help clients grow, transform and operate.
Working across assurance, consulting, law, strategy, tax and transactions, EY teams ask better questions to find new answers for the complex issues facing our world today.