Apply now »

Manager -Certification Consultant

Location:  Canberra
Other locations:  Primary Location Only
Salary: Competitive
Date:  19-Jan-2023

Job description

Requisition ID:  1391547

At EY, you’ll have the chance to build a career as unique as you are, with the global scale, support, inclusive culture and technology to become the best version of you. And we’re counting on your unique voice and perspective to help EY become even better, too. Join us and build an exceptional experience for yourself, and a better working world for all. 



At EY we believe that whoever you are, your uniqueness helps us stand apart. 


We bring together extraordinary people, like you, to build a better working world.


What’s in it for you?  


EY is looking to procure a pool of potential specialist security experts to support Defence delivery in the future for a wide variety of Defence systems, including standalone, deployed, strategic, and coalition networks. To achieve this the incumbent would be required to work at the direction of Defence to support IRM’s ICT system certification capability, which is used to conduct certification of systems within the portfolio of the CIO and, where applicable, systems belonging to broader Defence portfolio owners.

This is a huge opportunity for someone who’s Canberra based, to work on some of the largest Cyber Security engagements across Federal Government clients.


We’re looking for someone at the Manager level for this role.


What you’ll be doing:  

  • Assessing the effectiveness of security controls for a system and its operating environment
  • Producing high quality written risk assessment reports that details the assessment including:
    1. Scope
    2. Security strengths and weaknesses (key threats and vulnerabilities)
    3. Security risks
    4. Effectiveness of currently implemented security controls
    5. Recommended remediation activities

Attend meetings and workshops as required to provide security advice and guidance to stakeholders and customers. Contribute to reporting and briefing requirements


What we’re looking for

Here’s our ‘wish list’ but don’t worry if you don’t tick all the boxes. We’re interested in your strengths, what you want to learn, and how far you want to go. 

  • Proven experience as a Cyber Security practitioner with relevant knowledge
  • Experience with Information Security domains - in particular one or more of the following: Cyber Strategy & Architecture, Cyber Risk Management, Cyber Detection & Response, Cyber Threat Exposure Management, Identity & Access Management, Data Protection, Infrastructure Security, Privacy, Cyber Resilience and Breach Support. This experience should include both advisory and implementation experience.  
  • Experience in assessing and/or implementing security and risk standards including ISM, DSPF, PSPF, NIST CSF, ISO 27001-2, PCI DSS, ITIL, COBIT, AS/NZS 4360, CPS234.
  • Experience in writing risk assessment reports and briefs to senior executives
  • Strong program / project delivery on major security uplift programs.
  • Security clearances as required for the role


What we can offer you


Acknowledgement of Country


EY acknowledges the Traditional Owners and Custodians of the lands on which EY offices are located around Australia. We pay our respects to their cultures, and to their Elders — past, present, and emerging. Find out more about our vision for reconciliation at


Apply now… we’re over 9,000 perspectives in Australia and we’re ready to welcome yours. 

 At EY we take inclusivity seriously, and we’re committed to removing barriers and improving the employment prospects of people with disability or long-term health conditions. We encourage you to share any support and adjustments you need to be your best and participate equitably in our recruitment process. We understand sharing your needs with us can be daunting, so if you have questions before or during your application, we welcome you to get in touch at or +61 3 8650 7788 (option 2). Anything you tell us will be kept completely confidential.


The exceptional EY experience. It’s yours to build.


EY | Building a better working world 

Our preferred applicant will be required to undertake employment screening by EY or our external third-party provider.



EY | Building a better working world 
EY exists to build a better working world, helping to create long-term value for clients, people and society and build trust in the capital markets.  
Enabled by data and technology, diverse EY teams in over 150 countries provide trust through assurance and help clients grow, transform and operate.  
Working across assurance, consulting, law, strategy, tax and transactions, EY teams ask better questions to find new answers for the complex issues facing our world today.  

Apply now »