APAC Technology Risk Consulting Lead

At EY, you’ll have the chance to build a career as unique as you are, with the global scale, support, inclusive culture and technology to become the best version of you. And we’re counting on your unique voice and perspective to help EY become even better, too. Join us and build an exceptional experience for yourself, and a better working world for all. Today’s world is fueled by vast amounts of information. Data is more valuable than ever before. Protecting data and information systems is central to doing business, and everyone in EY Information Security has a critical role to play. Join a global team of over 950 people who collaborate to support the business of EY by protecting EY and client information assets! Our Information Security professionals enable EY to work securely and deliver secure products and services, as well as detect and quickly respond to security events as they happen. Together, the efforts of our dedicated team helps protect the EY brand and build client trust. Within Information Security we blend risk strategy, digital identity, cyber defense, application security and technology solutions as we consider the entire security lifecycle. You will join a team of hardworking, security-focused individuals dedicated to supporting, protecting and enabling the business through innovative, secure solutions that provide speed to market and business value. The opportunity Stepping into the role of APAC Technology Risk Leader is a uniquely attractive opportunity that offers a breadth of professional experiences and growth. The position involves navigating through a tapestry of cultures, regulatory frameworks, and economic landscapes, providing an unparalleled platform for mastering the intricacies of global risk landscapes. This role not only demands a keen understanding of diverse markets but also offers the chance to make a substantial strategic impact. As the steward of the organization's technology risk posture across a vast and varied region, your decisions and strategies will be pivotal in fortifying the business's resilience and ensuring its success on an international scale. It's a role that will challenge you to innovate and stay ahead of the rapidly evolving technological landscape, all while providing a clear pathway for significant career advancement. As the lead for technology risk management in APAC, you will not only safeguard the organization's technological assets but also shape the future of risk management practices, making it an exceptionally rewarding and career-defining move for any ambitious professional. Your key responsibilities The role is focused on identifying, evaluating, and mitigating technology risks in the APAC area through direct consultation and reports to the Technology Risk Consulting Lead. Key responsibilities include managing the delivery of TARP service offerings, driving country resiliency assessments, building strong stakeholder relationships, and serving as the escalation point for technology risks. The position involves coordinating risk assessments using TARP methodology, developing and implementing risk management strategies, and ensuring compliance with regulations. Collaboration with various departments is essential to tailor risk mitigation strategies to specific regional needs, involving understanding their technology dependencies and threats. The role also includes leading educational initiatives on technology risks, regularly reporting to senior management on risk status and mitigation efforts, and staying abreast of the latest trends in technology and risk to continually refine the firm’s strategies and policies. Skills and attributes for success

• Insight into the business advantages of good risk management and internal controls beyond compliance purposes.
• Proven ability to manage multiple projects and meet deadlines in a fast-paced and changing environment.
• Skilled in executive level presentations and briefings.
• Demonstrated leadership, negotiation and collaboration skills, and ability to influence up and down.

To qualify for the role you must have

• A minimum of 10 years' experience in the field of Technology Risk Management and/or a similar field in Information Security capability.
• An advanced degree in Computer Science, Information Security or a related discipline, or equivalent work experience.
• Proficiency in policy frameworks such as ISO & COBIT.
• Strong English language skills: excellent writing, presentation, interpersonal, and communication skills are required.
• A minimum of 10 years of experience in managing senior or managerial staff in areas of Governance, Risk, and Compliance (GRC).

Ideally, you’ll also have

• One or more of the following or equivalent certifications: Certified Risk and Information Systems Control (CRISC), Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), Certified Information System Auditor (CISA), Certified Internal Auditor (CIA), Global Information Assurance Certification (GIAC) in related area, CIPP, CIPT.
• A strong understanding and constant update on external risk trends and business standards. This role acts as an advisor and as such should be up to date with the latest methodologies and externalities that EY needs to prepare for from a risk perspective.
• A strong understanding of the EY Business and Service Line Risk Priorities.

What we look for We seek an individual with a strategic mindset and expertise in technology risk management to proactively identify, assess, and mitigate risks, ensuring the organization's resilience against the evolving threat landscape. The ideal candidate will possess strong leadership skills, the ability to collaborate across departments, and a commitment to maintaining compliance with industry standards and regulations. What we offer As part of this role, you'll work in a highly integrated, global team with the opportunity and tools to grow, develop and drive your career forward. Here, you can combine global opportunity with flexible working. The EY benefits package goes above and beyond too, focusing on your physical, emotional, financial and social well-being. Your recruiter can talk to you about the benefits available in your country. Here’s a snapshot of what we offer: Continuous learning: You’ll develop the mindset and skills to navigate whatever comes next. Success as defined by you: We’ll provide the tools and flexibility, so you can make a meaningful impact, your way. Transformative leadership: We’ll give you the insights, coaching and confidence to be the leader the world needs. Diverse and inclusive culture: You’ll be embraced for who you are and empowered to use your voice to help others find theirs. Acknowledgement of Country EY acknowledges the Traditional Owners and Custodians of the lands on which EY offices are located around Australia. We pay our respects to their cultures, and to their Elders — past, present, and emerging. Apply now… we’re over 9,000 perspectives in Australia and we’re ready to welcome yours. At EY we take inclusivity seriously, and we’re committed to removing barriers and improving the employment prospects of people with disability or long-term health conditions. We encourage you to share any support and adjustments you need to be your best and participate equitably in our recruitment process. The exceptional EY experience. It’s yours to build. EY | Building a better working world EY exists to build a better working world, helping to create long-term value for #J-18808-Ljbffr