Cyber SDC - Vulnerability Management Project Lead - Senior - Consulting - Location OPEN

At EY, you’ll have the chance to build a career as unique as you are, with the global scale, support, inclusive culture, and technology to become the best version of you. And we’re counting on your unique voice and perspective to help EY become even better. Join us and build an exceptional experience for yourself, and a better working world for all.

The exceptional EY experience. It's yours to build.

EY focuses on high-ethical standards and integrity among its employees and expects all candidates to demonstrate these qualities.

At EY, you will have the chance to build a career as unique as you are, with the global support, inclusive culture, and technology to help you grow. We value your voice and perspective to help us improve. Join us to create an exceptional experience and contribute to a better working world.

EY’s professionals in over 150 countries are committed to operating with integrity, quality, and professionalism across audit, tax, transaction, and consulting services. We aim to help our people achieve their professional and personal goals within an inclusive environment that values contributions, diversity of thought, growth, and continuous development. Recognized as a top employer, EY strives to be a great place to work.

We are seeking an experienced Vulnerability Management (VM) Cyber Managed Services Senior to design, implement, and manage our vulnerability management services. The ideal candidate will have a strong background in vulnerability management tools and experience working with cybersecurity professionals. This role involves creating tailored solutions for clients to deploy effective vulnerability management programs, combining technical expertise with business risk understanding.

1. Develop rapport with colleagues by understanding their concerns and needs, building an internal network for advice and support.
2. Monitor progress, manage risks, and keep stakeholders informed about outcomes.
3. Stay updated on industry trends relevant to cybersecurity and the client's business.
4. Assist engagement teams in evaluating client vulnerability management programs across people, process, and technology.
5. Collaborate with teams to own parts of vulnerability management solutions tailored to client environments.
6. Perform vulnerability assessments to identify weaknesses and evaluate control effectiveness.

• Knowledge of security standards like ISO 27001, CIS, PCI DSS, NIST, ITIL, COBIT.
• Experience with Windows, Linux, UNIX, and cloud/on-premise operating systems.
• Operational experience with vulnerability management tools (e.g., Qualys, Nexpose), including deployment and configuration.
• Ability to evaluate and select vulnerability management tools.
• Proficiency in root cause analysis and technical solutions for vulnerabilities.
• Understanding of cybersecurity concepts including vulnerability management, privacy, incident response, governance, and risk.
• Project management skills for cybersecurity initiatives.
• Scripting/programming skills (e.g., Python, PowerShell).
• Experience with metrics development using Excel/PowerBi.
• Knowledge of web vulnerabilities, cloud security, and threat intelligence sources.
• Familiarity with CVE, CWE frameworks, and metrics for executive and operational reporting.

• Bachelor’s degree + 2 years of related experience, or graduate degree + 1-2 years of experience.
• Hands-on vulnerability management experience and tool usage.
• Experience providing vulnerability management services across industries.
• Strong communication skills for technical and non-technical audiences.
• Willingness to travel and a valid US driver’s license.

• Interpersonal skills for collaboration and presentation.
• Ability to analyze issues strategically and technically.
• Consulting experience (preferred).
• Cybersecurity certifications such as CISSP, CEH, or GSEC (a plus).

Competitive salary ranges based on location and experience, along with comprehensive benefits including health coverage, pension, 401(k), paid time off, and flexible work arrangements. We support continuous learning, leadership development, diversity, and inclusion. Our hybrid work model encourages in-person collaboration 40-60% of the time, with flexible vacation policies and support for well-being.

We encourage applications from all qualified individuals. If you meet the criteria, please contact us promptly.

EY is committed to building a better working world through trust, integrity, and innovation, with teams in over 150 countries. We offer equal employment opportunities and reasonable accommodations for individuals with disabilities.