Senior Consultant, Cyber Security - Cyber Risk & Compliance - FS - GB

Posted 4 hours 11 minutes ago by Ernst & Young Advisory Services Sdn Bhd

Permanent
Full Time
Other
Edinburgh, United Kingdom
Job Description
Overview

Location: Edinburgh. Other locations: Primary Location Only. Date: 16 Sept 2025. Requisition ID: .

At EY, we're all in to shape your future with confidence. We'll help you succeed in a globally connected powerhouse of diverse teams and take your career wherever you want it to go. Join EY and help to build a better working world.

Senior Consultant, Cyber, FS

You are required to be onsite 3 times per week in your local office which can be Edinburgh, Bristol or London.

It is an exciting time for our Financial Services Cyber Security practice. We're looking for Senior Consultants to join our expanding team of professionals to help us deliver an exceptional client experience.

The opportunity

EY's EMEIA Cyber Practice is rapidly growing and the UK team is looking for a Cyber Security Senior Consultant experienced in working on a range of projects covering the breadth of Cyber Security including: Cyber Strategy Development, Cyber Programme Management and Definition, Cyber Maturity Assessments, Cyber Transformation and Cyber Risk. You will join an expanding team of over 1,000 Cyber professionals across EMEIA and align to the UK team dedicated to providing Cyber advisory services to leading Financial Services organisations.

Your key responsibilities
  • UK Financial Services Cyber Security professionals draw upon their knowledge and experience to manage client engagement teams, act as an advisor to a variety of clients and contribute to business development activities on strategic and global priority accounts.
  • Provide innovative commercial insights for clients, adapt methods and practices to fit operational team and cultural needs and contribute to thought leadership. Improve operational efficiency on projects and internal initiatives in line with EY's commitment to quality.
  • Deliver engagements with teams of different sizes under the guidance of Managers and Senior Managers. Coach and counsel junior team members to assist in their professional development. Model EY values.
  • Client responsibilities:
    • Deliver Cyber Security engagements
    • Support in client business development activities, including proposal writing and presentations to potential clients
    • Support senior members of the team in go-to-market activities across the UK with collaboration from European teams
    • Build EY brand awareness and start to build key client relationships
    • Assist in managing financial aspects of engagements by organising staffing, tracking fees and communicating issues to engagement partners
    • Build strong internal relationships within Consulting and across other services
  • People responsibilities:
    • Develop people through supervising, coaching, and mentoring staff
    • Conduct performance reviews and contribute to performance feedback for staff
    • Contribute to people initiatives including recruiting, retaining, and training Cyber professionals
Skills and attributes for success
  • To qualify for the role you must have:
  • Broad cyber security experience with a combination of technology involvement, business knowledge and risk awareness
  • Pragmatic approach to identifying and explaining cyber risks within complex transformation initiatives
  • Project management and delivery experience across the following Cyber Security areas: frameworks (e.g. NIST CSF, CPMI-IOSCO, ISO, NIST CRI), assessments, implementation, roadmap definition (tactical and strategic), strategy, risk identification and management, controls framework, programme management and target operating modelling
  • Understanding of the Financial Services cyber security threat landscape and UK regulatory landscape (PRA, FCA, BoE, ECB, MAS)
  • Awareness of security frameworks and regulations within the UK Financial Services sector (ISO27001, NIST SP800-53, PCI-DSS, DORA, etc.)
  • Experience in supporting winning proposals and RFP responses in complex multinational engagements
  • Excellent communication skills, both oral and written
  • Experience in people management, coaching and development of colleagues
  • Security and Cloud related qualifications such as: CISSP, CISA, CRISC, CCSP, CCSK, TOGAF, SABSA, and/or vendor architectural qualifications in AWS, Azure and/or GCP is a plus
  • Experience with Microsoft Security Copilot, gen AI, LLM, ChatGPT, etc.
  • Ideally you'll also have:
  • Some experience and understanding of Cyber Security architecture design and implementation (including Cloud)
  • Identity & Access Management (IAM) solutions (e.g. Saviynt, Entra ID, SailPoint)
  • Endpoint security (e.g. Defender, Tanium, CrowdStrike)
  • Security Information & Event Management (SIEM) (e.g. Sentinel, Splunk, QRadar)
  • Cloud Security (CASB/CSPM) (e.g. CASB, Zscaler)
  • Data Loss Prevention and Data protection (e.g. Purview, Symantec)
  • Security assessments related to threat, vulnerability and penetration testing (e.g. MITRE, CBEST)
What we look for

We look for candidates with experience in the industry, that can prove their knowledge of cyber regulations and frameworks in the UK. We are looking for people with the motivation and ambition to lead teams and the communication skills required to interact with clients.

What we offer
  • Continuous learning: You'll develop the mindset and skills to navigate whatever comes next.
  • Success as defined by you: We'll provide the tools and flexibility, so you can make a meaningful impact, your way.
  • Transformative leadership: We'll give you the insights, coaching and confidence to be the leader the world needs.
  • Diverse and inclusive culture: You'll be embraced for who you are and empowered to use your voice to help others find theirs.

If you can demonstrate that you meet the criteria above, please contact us as soon as possible.

The exceptional EY experience. It's yours to build.

Apply now.

EY Building a better working world

EY exists to build a better working world, helping to create long-term value for clients, people and society and build trust in the capital markets. Enabled by data and technology, diverse EY teams in over 150 countries provide trust through assurance and help clients grow, transform and operate. Working across assurance, consulting, law, strategy, tax and transactions, EY teams ask better questions to find new answers for the complex issues facing our world today.

EY Building a better working world

EY is building a better working world by creating new value for clients, people, society and the planet, while building trust in capital markets. Enabled by data, AI and advanced technology, EY teams help clients shape the future with confidence and develop answers for the most pressing issues of today and tomorrow. EY teams work across a full spectrum of services in assurance, consulting, tax, strategy and transactions. Fueled by sector insights, a globally connected, multi-disciplinary network and diverse ecosystem partners, EY teams can provide services in more than 150 countries and territories.