Assistant Director - Data Risk Management |Infosec

At EY, you’ll have the chance to build a career as unique as you are, with the global scale, support, inclusive culture and technology to become the best version of you. And we’re counting on your unique voice and perspective to help EY become even better, too. Join us and build an exceptional experience for yourself, and a better working world for all. 

Title   -  Assistant Director - GDS Data Risk Management

Assistant Director - GDS Data Risk Management

This role will help drive the local implementation of cross-functional initiatives that mitigate data risk and operationalize data governance, driving aligned goals across GDS.

The opportunity

This is an exciting time to join the GDS Data Risk Management team as we scale up our program to match the expansion of the business. You will build your professional knowledge and credentials, learn how EY operates globally and work within a cross functional team of professionals to embed and improve the GDS Data Risk Management program across its operating locations in Argentina, Hungary, India, Mexico, Philippines, Poland and Spain. 

Your key responsibilities require you to

• Take a leading role in driving the cross-functional implementation of data and security program initiatives within GDS, connecting expertise from RM, GCO, InfoSec, CT/ET, Security and Service Lines to effectively mitigate risks across:
  • Data Risk Management
  • AI and Innovations Risk
  • Retention & Disposition
  • Technology & Information Security Risk Management
• Develop local strategies to coordinate and effectively execute activities to:
  • Identify and evaluate data risks at GDS level.
  • Evaluate and monitor the presence and effectiveness of controls and data risk mitigation activities
  • Operationalize models to enable effective data risk mitigation in the First LoD, including initiatives across GDS.
  • Enabling the safe and effective use of data within AI and technology innovations by coordinating agile and responsive risk evaluations from local teams to drive speed-to-market for internal adoption and client service.
  • Coordinating response to emerging risks relating to AI, including emerging regulatory requirements.
  • Enable the local adoption of tools and processes to enhance the governance of information and data across the lifecycle.
  • Enhance the prevention, detection and response to data incidents, including Insider Threat events.
  • Support and enable GDS Records and Information Management initiatives to promote retention and disposition compliance by coordinating controls across the data lifecycle.
  • Support and enable technology and information security initiatives to establish or enhance the technical controls to protect and govern EY Information.
• Champion and amplify training, awareness and communication initiatives to resonate with GDS requirements in developing the data risk culture.
• Be the go-to person for data risk aligned topics, confident in engaging with service lines in the data risk initiatives, trends and requirements.
• Coordinate and shape local data risk appetite, strategy, prioritization and delivery to ensure data risk approaches continue to mature.
• Evaluate, monitor and enhance the level of data risk maturity, including evaluation of resource requirements, skills gaps and development opportunities.
• Maintain effective collaborative relationships with allied functions including GCO, Information Security, Technology, and Risk. 

Skills and attributes for success

• 10 years prior professional experience of Data Risk Management
• Experienced professional in the delivery of risk and compliance for Data Protection, Data Governance, or Information Security – combined with a desire to learn more about the aligned and emerging risks that connect these functions.
• An understanding of local data-impacting regulatory frameworks and their implementation.
• Proven track record of delivery, leading programmes that are cross-functional and cross-border.
• Effective and engaging communication, including the confidence to influence and inspire local leadership teams across business functions.
• Professional curiosity to explore a complex and dynamic risk landscape.
• Organization, prioritization and agility to respond in operational or project roles.
• Ability to learn and understand the EY’s global policies as well as familiarity with Risk Management initiatives outside of area of expertise
• Good knowledge of project management tools and methodologies
• Interest in working with a culturally diverse team from around the globe to design, develop, and deploy programs and share knowledge
• Excellent relationship-building and interpersonal skills, with an inclusive approach
• Effective communicator with good written and oral presentation skills
• Team player and active listener with the ability to respond to and develop the ideas of others

To qualify for the role, you must have

• University graduate / post -graduate
• Good academic background
• Advanced MS office knowledge (Word, Excel, PowerPoint)
• Experience of implementing a privacy program management platform
• Candidates with exposure to client interaction would be preferred
• Candidates with a recognized Data Risk Management/data privacy qualification (e.g. CIPM, CIPP/E or similar) or willingness to obtain the qualification in first six months with team would be preferred.

Ideally, you should also have

• Ability to operate and flex in an ambiguous and changing environment to respond to emerging priorities
• Experience of working to deadlines and delivering high quality outputs
• Ability and willingness to periodically work flexibly e.g., participating in calls outside of standard office hours (early morning/late night) to support our global organization

What we look for

• Working in a team of experts with deep domain knowledge
• Opportunity to work in fast paced multinational environment
• Positive attitude and dependable team player
• Ability to deal with problems in a practical and common-sense way, proactively applying judgment when required.
• A high standard of Excel and PowerPoint skills
• Flexibility to adapt activities based on the team priorities
• Ability to work in a fast-paced environment, producing work of a high quality that meets business demands
• Able to establish credibility, respect and trust in their working relationships and internal networks

What we offer

EY Global Delivery Services (GDS) is a dynamic and truly global delivery network. We work across seven locations – Argentina, Hungary, India, Mexico, Philippines, Poland and Spain – and with teams from all EY service lines, geographies and sectors, playing a vital role in the delivery of the EY growth strategy. From accountants to coders to advisory consultants, we offer a wide variety of fulfilling career opportunities that span all business disciplines. In GDS, you will collaborate with EY teams on exciting projects and work with well-known brands from across the globe. We’ll introduce you to an ever-expanding ecosystem of people, learning, skills and insights that will stay with you throughout your career.

• Continuous learning: You’ll develop the mindset and skills to navigate whatever comes next.
• Success as defined by you: We’ll provide the tools and flexibility, so you can make a meaningful impact, your way.
• Transformative leadership: We’ll give you the insights, coaching and confidence to be the leader the world needs.
• Diverse and inclusive culture: You’ll be embraced for who you are and empowered to use your voice to help others find theirs.

EY | Building a better working world 

 
EY exists to build a better working world, helping to create long-term value for clients, people and society and build trust in the capital markets.  

 
Enabled by data and technology, diverse EY teams in over 150 countries provide trust through assurance and help clients grow, transform and operate.  

 
Working across assurance, consulting, law, strategy, tax and transactions, EY teams ask better questions to find new answers for the complex issues facing our world today.