Senior Manager - Tech Consulting - FS - CNS - TC - Platforms - Hyderabad

Technology Consulting 

Title: Senior Manager I, Technical Risk Assurance 

EY is a global leader in assurance, tax, transaction and advisory services. Technology is at the heart of what we do and deliver at EY. Technology solutions are integrated in the client services we deliver and are key to our innovation as an organization.   

Fueled by strategic investment in technology and innovation, Client Technology seeks to drive growth opportunities and solve complex business problems for our clients through building a robust platform for business and powerful product engine that are vital to innovation at scale. As part of Client Technology, you’ll work with technologists and business experts, blending EY’s deep industry knowledge and innovative ideas with our platforms, capabilities, and technical expertise. As a catalyst for change and growth, you’ll be at the forefront of integrating emerging technologies from AI to Data Analytics into every corner of what we do at EY. That means more growth for you, exciting learning opportunities, career choices, and the chance to make a real impact. 

EY Technology: 

Technology has always been at the heart of what we do and deliver at EY. We need technology to keep an organization the size of ours working efficiently. We have 250,000 people in more than 140 countries, all of whom rely on secure technology to be able to do their job every single day.  Everything from the laptops we use, to the ability to work remotely on our mobile devices and connecting our people and our clients, to enabling hundreds of internal tools and external solutions delivered to our clients.  Technology solutions are integrated in the client services we deliver and is key to us being more innovative as an organization. 

EY Technology supports our technology needs through three business units: 

Client Technology (CT) - focuses on developing new technology services for our clients. It enables EY to identify new technology-based opportunities faster and pursue those opportunities more rapidly. 

Enterprise Workplace Technology (EWT) – EWT supports our Core Business Services functions and will deliver fit-for-purpose technology infrastructure at the cheapest possible cost for quality services. EWT will also support our internal technology needs by focusing on a better user experience. 

Information Security (Info Sec) - Info Sec prevents, detects, responds and mitigates cyber-risk, protecting EY and client data, and our information management systems.    

The opportunity 

The Senior Manager, Technical Risk Assurance role is responsible for leading security risk assessments, vulnerability management and IT security governance to protect enterprise systems and data. This role oversees secure coding practices, threat modeling, penetration testing, and compliance with security frameworks . The manager collaborates with IT teams, business leaders and third-party vendors to evaluate security risks, implement mitigation strategies and drive continuous improvements in cybersecurity. This role provides leadership, mentorship and strategic direction to security teams, ensuring effective risk management and alignment with organizational security objectives.  

Your key responsibilities 

• Lead and manage a team responsible for security risk assessments, vulnerability management and IT security governance. 

• Develop and implement security strategies to prevent unauthorized access, data breaches and cyber threats, ensuring compliance with industry standards. 

• Oversee security assessments to evaluate the adequacy of existing security controls, identify vulnerabilities and recommend corrective actions. 

• Collaborate with IT, business units and third-party partners to assess the impact of technology implementations on security and operations. 

• Define best practices for risk assessments, security policies and technical security solutions, ensuring integration with enterprise security frameworks. 

• Monitor and analyze system access logs, network activity and security incidents, leading investigations into potential or actual security violations. 

• Oversee security evaluations for technical acquisitions, infrastructure and development processes to ensure compliance with security standards. 

• Manage vendor relationships and third-party security assessments, ensuring alignment with organizational security requirements. 

• Validate security plans, risk assessments and mitigation strategies, ensuring effectiveness in protecting critical systems and data. 

• Provide leadership in cybersecurity strategy and industry best practices, staying ahead of emerging security threats and regulatory requirements. 

• Hire, develop, and mentor security teams, setting performance standards and ensuring continuous skill development. 

• Support business continuity and disaster recovery efforts, ensuring robust security measures for system resilience. 

• Participate in special projects and contribute to continuous improvement initiatives in cybersecurity risk management 

Skills and attributes for success 

• A team player with strong analytical, communication and interpersonal skills 

• Constantly updating yourself about new technologies in the market 

• A winning personality and the ability to become a trusted advisor to the stakeholders 

To qualify for the role, you must have 

• Minimum 10 years of related work experience, preferably in IT security or application development, with supervisory experience preferred.  

• Undergraduate degree in Information Security, Computer Science, Information Technology, or a related field (or equivalent combination of training and experience). 

• Expertise in secure coding, threat modeling, vulnerability assessments, penetration testing, and application architecture review. 

• Strong knowledge of DevSecOps practices, OWASP standards, compliance frameworks and risk management. 

• Experience with secure software development, cloud security (AWS, Azure, GCP), and integrating security tools in CI/CD pipelines. 

• Proficiency in vendor risk assessments, third-party security reviews, and regulatory compliance (SOX, GDPR, HIPAA). 

• Strong leadership, team management, and mentoring abilities, with experience working cross-functionally and influencing security priorities. 

• Excellent strategic thinking, decision-making, and conflict-resolution skills, with a results-oriented mindset. 

• Ability to communicate security risks effectively to stakeholders and foster collaboration between IT, business units, and leadership. 

• Preferred Certifications: Certified Information Systems Security Professional (CISSP), GIAC Security Essentials Certification (GSEC), GIAC Penetration Tester (GPEN), GIAC Web App Pen Tester (GWPN), Certified Ethical Hacker (CEH), Offensive Security Certified Professional (OSCP), AWS Certified DevOps Engineer, or equivalent 

Ideally, you’ll also have 

• Strong verbal and written communication, facilitation, relationship-building, presentation and negotiation skills. 

• Be highly flexible, adaptable, and creative. 

• Comfortable interacting with senior executives (within the firm and at the client) 

What we look for 

• Strong teamwork, work ethic, product mindset, client centricity and a relentless commitment to EY values. 

What working at EY offers  

We offer a competitive remuneration package where you’ll be rewarded for your individual and team performance. Our comprehensive Total Rewards package includes support for flexible working and career development, and with FlexEY you can select benefits that suit your needs, covering holidays, health and well-being, insurance, savings and a wide range of discounts, offers and promotions. Plus, we offer: 

• Support, coaching and feedback from some of the most engaging colleagues around 

• Opportunities to develop new skills and progress your career 

• The freedom and flexibility to handle your role in a way that’s right for you 

EY is committed to being an inclusive employer and we are happy to consider flexible working arrangements. We strive to achieve the right balance for our people, enabling us to deliver excellent client service whilst allowing you to build your career without sacrificing your personal priorities. While our client-facing professionals can be required to travel regularly, and at times be based at client sites, our flexible working arrangements can help you to achieve a lifestyle balance. 

About EY 

As a global leader in assurance, tax, transaction and advisory services, we’re using the finance products, expertise and systems we’ve developed to build a better working world. That starts with a culture that believes in giving you the training, opportunities and creative freedom to make things better. Whenever you join, however long you stay, the exceptional EY experience lasts a lifetime.  

If you can confidently demonstrate that you meet the criteria above, please contact us as soon as possible. 

Make your mark.  

Apply now.