APAC Technology Risk Consulting Lead - Associate Director
Location : Sydney
Other locations : Anywhere in Country
Date : Mar 5, 2025
Requisition ID : 1578356
At EY, you’ll have the chance to build a career as unique as you are, with the global scale, support, inclusive culture and technology to become the best version of you. And we’re counting on your unique voice and perspective to help EY become even better, too. Join us and build an exceptional experience for yourself, and a better working world for all.
Today’s world is fueled by vast amounts of information. Data is more valuable than ever before. Protecting data and information systems is central to doing business, and everyone in EY Information Security has a critical role to play. Join a global team of over 950 people who collaborate to support the business of EY by protecting EY and client information assets! Our Information Security professionals enable EY to work securely and deliver secure products and services, as well as detect and quickly respond to security events as they happen. Together, the efforts of our dedicated team helps protect the EY brand and build client trust.
Within Information Security we blend risk strategy, digital identity, cyber defense, application security and technology solutions as we consider the entire security lifecycle. You will join a team of hardworking, security-focused individuals dedicated to supporting, protecting and enabling the business through innovative, secure solutions that provide speed to market and business value.
The opportunity
Stepping into the role of APAC Technology Risk Leader is a uniquely attractive opportunity that offers a breadth of professional experiences and growth. The position involves navigating through a tapestry of cultures, regulatory frameworks, and economic landscapes, providing an unparalleled platform for mastering the intricacies of global risk landscapes. This role not only demands a keen understanding of diverse markets but also offers the chance to make a substantial strategic impact.
As the steward of the organization's technology risk posture across a vast and varied region, your decisions and strategies will be pivotal in fortifying the business's resilience and ensuring its success on an international scale. It's a role that will challenge you to innovate and stay ahead of the rapidly evolving technological landscape, all while providing a clear pathway for significant career advancement. As the lead for technology risk management in APAC, you will not only safeguard the organization's technological assets but also shape the future of risk management practices, making it an exceptionally rewarding and career-defining move for any ambitious professional.
Your key responsibilities
1. Identifying, evaluating, and mitigating technology risks in the APAC area through direct consultation and reports to the Technology Risk Consulting Lead.
2. Managing the delivery of TARP service offerings and driving country resiliency assessments.
3. Building strong stakeholder relationships and serving as the escalation point for technology risks.
4. Coordinating risk assessments using TARP methodology and developing risk management strategies.
5. Ensuring compliance with regulations and collaborating with various departments to tailor risk mitigation strategies.
6. Leading educational initiatives on technology risks and regularly reporting to senior management on risk status and mitigation efforts.
7. Staying abreast of the latest trends in technology and risk to continually refine the firm’s strategies and policies.
Skills and attributes for success
1. Insight into the business advantages of good risk management and internal controls beyond compliance purposes.
2. Proven ability to manage multiple projects and meet deadlines in a fast-paced and changing environment.
3. Skilled in executive level presentations and briefings.
4. Demonstrated leadership, negotiation and collaboration skills, and ability to influence up and down.
To qualify for the role you must have
1. A minimum of 10 years' experience in the field of Technology Risk Management and / or a similar field in Information Security capability.
2. An advanced degree in Computer Science, Information Security or a related discipline, or equivalent work experience.
3. Proficiency in policy frameworks such as ISO & COBIT.
4. Strong English language skills: excellent writing, presentation, interpersonal, and communication skills are required.
5. A minimum of 10 years of experience in managing senior or managerial staff in areas of Governance, Risk, and Compliance (GRC).
Ideally, you’ll also have
1. One or more of the following or equivalent certifications: Certified Risk and Information Systems Control (CRISC), Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), Certified Information System Auditor (CISA), Certified Internal Auditor (CIA), Global Information Assurance Certification (GIAC) in related area, CIPP, CIPT.
2. A strong understanding and constant update on external risk trends and business standards.
3. A strong understanding of the EY Business and Service Line Risk Priorities.
What we look for
We seek an individual with a strategic mindset and expertise in technology risk management to proactively identify, assess, and mitigate risks, ensuring the organization's resilience against the evolving threat landscape. The ideal candidate will possess strong leadership skills, the ability to collaborate across departments, and a commitment to maintaining compliance with industry standards and regulations.
What we offer
As part of this role, you'll work in a highly integrated, global team with the opportunity and tools to grow, develop and drive your career forward. Here, you can combine global opportunity with flexible working. The EY benefits package goes above and beyond too, focusing on your physical, emotional, financial and social well-being.
At EY we take inclusivity seriously, and we’re committed to removing barriers and improving the employment prospects of people with disability or long-term health conditions. We encourage you to share any support and adjustments you need to be your best and participate equitably in our recruitment process.
The exceptional EY experience. It’s yours to build.
EY | Building a better working world
#J-18808-Ljbffr