Cyber SDC - Vulnerability Management Project Lead - Senior - Consulting - Location OPEN

Join us at EY as a Cyber SDC - Vulnerability Management Project Lead - Senior - Consulting - Location OPEN.

At EY, you’ll have the opportunity to build a unique career with global support, an inclusive culture, and advanced technology. We value your perspective and aim to help you grow professionally and personally. Join us to create an exceptional experience for yourself and contribute to a better working world.

EY is committed to operating with integrity, quality, and professionalism across our services in audit, tax, transaction, and consulting. We foster an inclusive environment that values diversity, encourages growth, and offers continuous development opportunities.

We seek an experienced Vulnerability Management (VM) Cyber Managed Services Senior to design, implement, and manage our vulnerability management services. The ideal candidate will have a strong background in vulnerability management tools and experience working with cybersecurity teams. This role involves creating tailored vulnerability management solutions for clients, combining technical expertise with business risk understanding.

• Develop relationships by understanding client concerns and needs, and build an internal network for advice and support.
• Monitor project progress, manage risks, and keep stakeholders informed.
• Stay updated on industry trends relevant to cybersecurity and the client's business.
• Assist in evaluating client vulnerability management programs across people, processes, and technology.
• Collaborate with engagement teams to develop and own vulnerability management solutions tailored to client environments.
• Perform vulnerability assessments to identify control weaknesses and evaluate existing controls.

• Knowledge of security standards like ISO 27001, CIS, PCI DSS, NIST, ITIL, COBIT.
• Experience with Windows, Linux, UNIX, and cloud-based operating systems.
• Hands-on experience with vulnerability management tools (e.g., Qualys, Nexpose), including deployment and configuration.
• Ability to evaluate and select vulnerability management tools and conduct root cause analysis.
• Understanding of cybersecurity concepts, including vulnerability management, incident response, governance, and architecture.
• Project management skills, including developing project plans and status updates.
• Scripting or programming skills (e.g., Python, PowerShell).
• Proficiency with Excel and PowerBi for developing metrics.
• Familiarity with security vulnerabilities, web application vulnerabilities, cloud security, and threat intelligence sources.
• Knowledge of CVE and CWE frameworks.
• Ability to develop metrics for technical and executive audiences.

• Bachelor's degree with 2+ years of related experience, or a graduate degree with 1-2 years of experience.
• Experience with vulnerability management tools and services.
• Experience delivering vulnerability management services across various industries.
• Strong communication skills, capable of interacting with senior management and technical teams.
• Willingness to travel and hold a valid US driver’s license.

• Strong interpersonal skills and the ability to influence decisions.
• Consulting experience (preferred).
• Cybersecurity certifications such as CISSP, CEH, or GSEC are a plus.

Competitive salary ranges based on location and experience, comprehensive benefits, and a hybrid work model. We support continuous learning, leadership development, diversity, and inclusion.

We encourage applications from all qualified individuals and are committed to providing accommodations for persons with disabilities during the application process.