Manager (Senior Executive) (Cyber) Strategy and Execution - EY Parthenon

Location: London

Other locations: Primary Location Only

We are seeking to expand our team by recruiting a manager to work in our Transactions team, supporting the delivery of cyber due diligence projects for a range of clients, including private equity and corporate. You will be able to demonstrate a strong background in cyber risk management and privacy with experience drawn from a range of sectors; this may be because of past roles in consulting and/or in-house as an information security/cyber professional.

As a manager you will manage small delivery teams, advising clients on cyber due diligence. You will analyse company data (often with limited access), conduct outside‑in research, and evaluate whether cyber risk will have an impact on a potential investment or divestment. You will be able to recommend (and cost) solutions/remediation and help our clients understand what must be done if the transaction closes.

• Strong desire to work in a M&A environment operating across the transaction lifecycle, predominantly in the pre deal/diligence phase.
• Knowledge and experience of using recognised cyber standards and frameworks such as ISO27001, NIST CSF, CIS Controls, Cyber Essentials, PCI
• Familiarity with current and emerging regulations such as the EU GDPR, EU AI Act and NIS 2, and an ability to conduct gap assessments and define the impact to the transaction.
• Understanding of key concepts such as privacy and security by design, secure coding especially in the software/product development environment
• Understand how to design an operating model for managing Cyber risk and privacy, optimised for effectiveness and value and evaluate any complexities associated with transitions/roadmaps.
• Effective at leading projects (or significant workstreams) with little to no support
• Leads the development of complete, error‑free deliverables (e.g., data books, reports, non‑branded deliverables: blueprints, Day 1 plans, board packs, workshop content etc).
• Supports the Engagement Leaders (i.e. Partner, Director or Associate Director) in identifying, scoping, closing opportunities – both in current engagement, and new opportunities.
• Demonstrates strong client influence and relationship management, effectively identifying value creation opportunities and prioritising team efforts based on client needs.

• Proven experience and ability to communicate with clarity and impact to senior stakeholders. This may be demonstrable through leading large projects with senior visibility, success at presenting technical topics to non‑technical audiences or speaking at events.
• Stakeholder Management: Collaborate with company management teams and other stakeholders to align on value creation objectives and strategies.
• A history of successful project delivery in corporate businesses where you are responsible for managing project team members and vendors Have a broad range of cyber experience including, risk management, cyber controls, standards, resilience, and response etc.
• Professional services / consulting experience within transactions: ideally due diligence, value creation, carve‑out or integrations experience; or
• Deep understanding of one or more core aspects of a cyber function (e.g. governance, risk, and compliance, CISO, AppSec, compliance, privacy etc).
• Have deep knowledge of cyber governance and risk controls within businesses and how this can support and safeguard business operations.

• Experience in supporting sales and business development processes for professional services projects in a large‑scale consulting environment.
• Experience in providing cyber and privacy advice to senior stakeholders; transactions/M&A experience would be advantageous.
• Ability to design a roadmap to optimise performance often with financial/budgetary limitations.
• A high‑level understanding of the secure development of applications throughout the SDLC
• An understanding of how private equity firms are structured to buy and sell assets in their portfolio.
• Cyber or privacy certification such as CISSP, CISM, CIPP/E, CIPM etc.

EY-Parthenon teams work with clients to navigate complexity by helping them to reimagine their eco‑systems, reshape their portfolios and reinvent themselves for a better future. With global connectivity and scale, EY-Parthenon teams focus on Strategy Realized — helping CEOs design and deliver strategies to better manage challenges while maximizing opportunities as they look to transform their businesses. From idea to implementation, EY-Parthenon teams help organizations to build a better working world by fostering long‑term value. EY-Parthenon is a brand under which a number of EY member firms across the globe provide strategy consulting services. For more information, please visit ey.com/parthenon.

Prior to finalizing your application, you will be asked to provide personal information across several dimensions of diversity and inclusiveness. The information you provide is kept entirely confidential and will not be used to evaluate your candidacy. We collect this data to help us analyse our recruitment process holistically and implement actions that promote diversity and inclusiveness. While optional, we encourage you to provide this information to hold us accountable towards our goal of building a better working world. We ask because it matters!

If you can demonstrate that you meet the criteria above, please contact us as soon as possible.

Apply now.

EY is committed to being an inclusive employer and we are happy to consider flexible working arrangements. We strive to achieve the right balance for our people, enabling us to deliver excellent client service whilst allowing you to build your career without sacrificing your personal priorities. While our client‑facing professionals can be required to travel regularly, and at times be based at client sites, our flexible working arrangements can help you to achieve a lifestyle balance.