At EY, you’ll have the chance to build a career as unique as you are, with the global scale, support, inclusive culture and technology to become the best version of you. And we’re counting on your unique voice and perspective to help EY become even better, too. Join us and build an exceptional experience for yourself, and a better working world for all. 

 

 

 

 

EY GDS Consulting - Non-financial Services – Third-Party Risk Management - NFS TPRM – Manager

As part of our EY- NFS TPRM team, you will help clients enhance their business performance by translating their strategies into realities. Working with EY-high performing teams, you will help clients to grow, innovate, protect, and optimize their business performance. 

 

The opportunity

We're looking for Managers with expertise in Third-Party Risk Management to join the leadership group of our EY- NFS TPRM team. This is a lucrative opportunity to be part of a leading firm while being instrumental in the growth of a new service offering.

Your key responsibilities

Manage the delivery of Third-Party Risk Management (TPRM) engagements. Review the application of legal and regulatory requirements to clients TPRM practices. Review technology enhancement requirements such as Automation, Data Analytics, AI to support TPRM processes. Manage the design and implementation of TPRM operating models, identifying, evaluating, and providing solutions to evaluate complex business and technology risks. Build connect with client stakeholders, understand their business challenges/pain areas, and work with leadership to propose innovative solutions. Lead process walkthrough discussions to document end-to-end business processes and functional requirements. Lead the selection and tailoring of approaches, methods, and tools to support project scope.  Demonstrate detailed knowledge of market trends, competitor activities, EY products, and service lines. Generate innovative ideas and challenge the status quo. Build and nurture positive working relationships with clients to achieve exceptional client service. Identify opportunities to improve engagement profitability. Help manage the financial aspects of engagements by organizing staffing, tracking financials, proactive Project management, and tracking of issues.  Support leadership to drive business development initiatives and account mining activities. Build strong internal relationships within EY Consulting Services and with other services across the organization.

 

Skills and attributes for success

Develop people through effective coaching and mentoring. Should cross skill and cross-train the team members as per the business requirements.  Conduct performance reviews and contribute to performance feedback. Contribute to people-related initiatives including recruiting, retaining, appraisal and training Contribute towards building and strengthening team competency for controls transformation, third party assessments, and technology consulting. Participate in organization-wide people initiatives. Maintain an educational program to develop skills of team members and self continually. 

 

To qualify for the role, you must have

8+ years of experience in Risk Management domain across Third-Party engagement lifecycle (pre-contracting, contracting, and post contracting) and an understanding of the associated organizational infrastructure (e.g., relevant internal controls, business processes, governance structures). Deep understanding of the TPRM framework, Risk Management, Information Security practices. Experience in TPRM tools and technology solutions (e.g., GRC enablement solutions, such as Process Unity, Prevalent, Archer, ServiceNow, etc.). Strong knowledge of standards such as ISO 27001/2, ISO 22301, ISO 27018, PCI – DSS, HITRUST, etc.  Strong knowledge of privacy regulations such as GDPR, CCPA, etc. Strong knowledge of regulations such as FISMA, HIPAA, Reg SCI, MAS, etc. Good understanding of the contract risk review management process. Good knowledge of TCP/IP, concepts of OSI layer and protocols, networking and security concepts, Physical & Environmental Security, Asset Security and Identity & Access Management. Good knowledge of OS (Windows / Linux) security, Database security, IT infrastructure (switches, routers, firewalls, IDS, IPS, etc.), Security architecture design and review   Strong familiarity with OWASP and Secure SDLC standards/frameworks, anti-virus solutions (e.g., Symantec, McAfee, etc.). Sound experience in LAN/WAN architectures and reviews. Strong knowledge of incident management, disaster recovery, and business continuity management, cryptography. Prior Big-4/consulting experience preferred. Good to have certifications - CISSP, CISA, CISM, CTPRP, CIPP, ISO 27001 Lead Auditor or Lead Implementer.

 

Ideally, you'll also have

Exposure to initiatives to support practice development. Client interaction chances to tab opportunities for constant growth and improvement. Support pursuits, client proposals by directly working with the regional partners and senior managers as required.

What we look for

A Team of people with technical experience and who can seamlessly work with the team and the client to create plans for accomplishing engagement objectives and a strategy that complies with professional standards and addresses the risks inherent in the engagement. Demonstrate excellent project management skills, inspire teamwork and responsibility with engagement team members, and use current technology/tools to enhance the effectiveness of deliverables and services. Understand EY and its service lines and actively assess what the firm can deliver to serve clients. Create innovative insights for clients, adapt methods & practices to fit operational team needs & contribute to thought leadership documents. Periodically review the status of engagements managed, prepare management presentations, and perform quality review of the team's work products. Maintain a strong client focus by effectively serving client needs and developing productive working relationships with client personnel. Stay abreast of current business and economic developments and new pronouncements/standards relevant to the client's business. Actively contribute to improving operational efficiency on projects & internal initiatives.

What working at EY offers

At EY, we're dedicated to helping our clients, from the startups to Fortune 500 companies — and the work we do with them is as varied as they are.
You get to work with inspiring and meaningful projects. Our focus is on education and coaching alongside practical experience to ensure your personal development. We value our employees, and you will be able to control your development with an individual progression plan. You will quickly grow into a responsible role with challenging and stimulating assignments. Moreover, you will be part of an interdisciplinary environment that emphasizes high quality and knowledge exchange. Plus, we offer:

Support, coaching, and feedback from some of the most engaging colleagues around Opportunities to develop new skills and progress your career The freedom and flexibility to handle your role in a way that's right for you

 

EY | Building a better working world 

 
EY exists to build a better working world, helping to create long-term value for clients, people and society and build trust in the capital markets.  

 
Enabled by data and technology, diverse EY teams in over 150 countries provide trust through assurance and help clients grow, transform and operate.  

 
Working across assurance, consulting, law, strategy, tax and transactions, EY teams ask better questions to find new answers for the complex issues facing our world today.