Cyber SDC - Vulnerability Management Project Lead - Senior - Consulting - Location OPEN

Join us to apply for the Cyber SDC - Vulnerability Management Project Lead - Senior - Consulting - Location OPEN role at EY.

At EY, you’ll have the chance to build a career as unique as you are, with the global scale, support, inclusive culture, and technology to become the best version of yourself. We value your unique voice and perspective to help EY improve and grow. Join us to create an exceptional experience for yourself and contribute to a better working world for all.

EY's professionals in over 150 countries are committed to integrity, quality, and professionalism. We aim to help our people achieve their professional and personal goals through an inclusive environment that values diversity, fosters growth, and offers continuous development opportunities. Recognized as a top employer, EY strives to be a great place to work.

We are seeking an experienced Vulnerability Management (VM) Cyber Managed Services Senior to help design, implement, and manage our vulnerability management services. The ideal candidate will have a strong background in vulnerability management tools and experience working with cybersecurity teams. Your role will be crucial in creating tailored solutions for clients, combining technical expertise with business risk understanding.

• Develop relationships by understanding stakeholders' concerns and needs, building a supportive internal network.
• Monitor project progress, manage risks, and keep stakeholders informed about outcomes.
• Stay updated on industry trends relevant to cybersecurity and client businesses.
• Assist in evaluating client vulnerability management programs across people, processes, and technology.
• Collaborate with teams to develop and own parts of vulnerability management solutions tailored to client environments.
• Perform vulnerability assessments to identify weaknesses and evaluate control effectiveness.

• Knowledge of security standards like ISO 27001, CIS, PCI DSS, NIST, ITIL, COBIT.
• Familiarity with Windows, Linux, UNIX, and cloud-based operating systems.
• Operational experience with vulnerability management tools (e.g., Qualys, Nexpose), including deployment and configuration.
• Ability to evaluate tools and assist in vendor selection.
• Skills in root cause analysis and technical solution development.
• Understanding of cybersecurity concepts including vulnerability management, incident response, and governance.
• Experience managing cybersecurity projects, including planning and reporting.
• Scripting or programming skills (e.g., Python, PowerShell).
• Proficiency with Excel and PowerBi for metrics development.
• Knowledge of web vulnerabilities, cloud security, and threat intelligence sources.
• Familiarity with CVE, CWE frameworks, and developing actionable metrics for diverse audiences.

• Bachelor’s degree with at least 2 years of related experience, or a graduate degree with 1-2 years of experience.
• Hands-on vulnerability management experience and familiarity with related tools.
• Experience providing vulnerability management services across industries.
• Strong communication skills for engaging with senior management and technical teams.
• Willingness to travel and a valid US driver’s license.

• Strong interpersonal skills and ability to analyze issues strategically and technically.
• Proven influence and multitasking capabilities.
• Consulting experience and cybersecurity certifications (e.g., CISSP, CEH, GSEC) are a plus.

Competitive salary range from $73,100 to $132,900, with higher ranges for specific locations. Our benefits include health coverage, pension, 401(k), paid time off, flexible work arrangements, and ongoing learning opportunities. We value diversity and inclusion, encouraging you to bring your whole self to work.

EY is committed to equal opportunity employment and providing reasonable accommodations for individuals with disabilities. For assistance, contact our support team via phone or email.

Level: Mid-Senior, Full-time, in the professional services industry. We encourage ongoing applications and look forward to your potential contribution to our team.