menu

News

IT Risk Management Manager, Ernst Young, United States (Salary Not Disclosed) [UCF]

September 25, 2019 | News/Articles

Ideally:  A working knowledge of policy frameworks such as ISO, COBIT and unified compliance framework

The IT Risk Management (ITRM) Manager is to enable the conduct of business, through proactive identification, assessment, and mitigation, of IT risks facing EY personnel, facilities, and operations around the globe. They will assume the key role for the creation, development, and on-going management and maintenance of IT Risk related training programs, communications, learning videos, newsletters and other collateral. This individual is a top leader in the IT Risk Management function who enables a critical service to EY Technology.

Key Responsibilities

The IT Risk Management function creates and maintains EY Technologies’ risk management framework, processes, tooling, and strategy. Our primary objectives are to enable EY Technology to build a risk-aware culture, reduce IT risk, defend against internal and external threats, and protect client and EY data.

The ITRM Manager is responsible for partnering closely with the Global IT Risk Management leader to set and drive the IT Risk Management vision, strategy, goals, and objectives for the three EY Technology organizations. The primary objectives for this role are to enable EY Technology to build a risk-aware culture, reduce IT risk, defend against internal and external threats, and protect client and EY data.

Skills /Attributes for Success

  • In partnership with the Global IT Risk Management Leader, drives technology risk agenda with CISO, EY Global Risk Leader, Enterprise Risk Management Leader for EY, EY Global Policy Leader, EY Global Business Continuity Leader, EY Global Data Protection Network Leaders, Global Internal Audit Technology Leader, and EY Legal Counsel.
  • Directs EY Technology’s risk methodology, processes, and tools, including our program and project management risk methodology
  • Represents EY Technology organizations as one of the primary EY Technology liaisons with the Americas Data Protection Network, Global Data Protection network, and Information Governance Steering Committee
  • Executing technology risk assessments throughout the EY Technology enterprise, which will reveal risks for top-level executives that impact business processes, performance and strategy.
  • Identify, assess, measure, manage, monitor, and report every aspect of the risk function and its maturity within the three EY Technology organizations
  • Assists in directing the strategy and roadmap for maturing the risk management capability in the three EY Technology organizations
  • Consult on Enterprise programs to embed risk-based decision-making
  • Consult and provide direction to leaders in EY Technology on effective risk mitigation strategies

For More Info. Go To: http://bit.ly/2nf2OP9