Threat Exposure Management Senior Manager What if you didn't focus on who you are now, but who you could become?
At EY we believe that whoever you are, your uniqueness helps us stand apart.
We bring together extraordinary people, like you, to build a better working world.
What's in it for you?
As a Senior Manager in our cybersecurity practice, you will lead client engagements, ensure effective stakeholder engagement, and manage teams to deliver exceptional client experiences. As an expert in threat exposure management, you will speak with authority in the security industry and use that voice to drive practice growth.
This role is responsible for helping our clients develop strategies and implement solutions for managing technical vulnerabilities for their technology estate and coordinating their resolution while reporting key metrics to the leadership team to provide an accurate representation of their residual cyber risk from vulnerable systems and applications.
Leveraging and growing your expertise in vulnerability management, threat exposure management, attack surface management, threat intelligence, defensive security, infrastructure protection, incident response, and operational security, you will quickly become a leader in one of EY's most interesting growth areas.
Your key responsibilities:
Lead and develop EY's threat exposure management offerings. Help clients reduce cyber risk by providing solutions for proactively monitoring for internal and external threats and vulnerabilities and advising on mitigating them. Be the expert in threat intelligence, vulnerability intelligence, vulnerability management, threat hunting, and threat analytics. Establish and help clients operate a prioritization framework for vulnerability management and governance. Lead engagements to ensure a rapid response to high-risk vulnerabilities. Provide consultation on projects to improve the data quality of asset management tools. Continually improve the vulnerability management offering, processes, and procedures and direct others as needed. What we're looking for:
Here's our 'wish list' but don't worry if you don't tick all the boxes. We're interested in your strengths, what you want to learn, and how far you want to go.
Proven experience developing and managing a vulnerability management program or threat exposure management program at one or more organizations. Ability to deliver successful Cyber Security engagements both as an individual contributor and leader. Proven experience as a Cyber Security practitioner with the knowledge to provide industry best-practice advice to clients in the areas of threat detection, incident response, threat hunting, and purple teaming. Experience with Information Security domains - in particular one or more of the following: Threat exposure management, Threat Detection & Response, and Breach Support. This experience should include both advisory and implementation experience. Experience leading implementation and operations capability for security operations centers. Strong program/project delivery on major security uplift programs. 7+ years' experience in cybersecurity. 3+ years leading vulnerability management or threat exposure management functions. Experience in complex networks related to software patching and processes. Experience in translating threat intelligence into business risk indicators. Familiarity with modern technologies and security approaches, i.e., cloud security. Experience with leading and implementing vulnerability scanning and risk-based vulnerability management platforms. Practical experience with security technologies such as firewalls, web and mail gateway filtering, AV, IDS/IPS, WAF, SIEM, FIM, IDAM, security monitoring, threat intelligence, and security analytics. Basic understanding of secure software development and related guidelines/standards (e.g., OWASP Top 10). Ability to execute within an agile or waterfall project environment. Our roles can be adjusted to work flexibly with the potential of reduced hours to balance your time between the home and office. Please speak with us about potential options.
Discover the various ways our benefits can cater to your needs, across wellness, financial wellbeing, and family-friendly policies which include 26 weeks gender-neutral paid parental leave at .
We offer a competitive salary which is open to negotiation pending on skills and experience.
Acknowledgement of Country:
EY acknowledges the Traditional Owners and Custodians of the lands on which EY offices are located around Australia. We pay our respects to their cultures, and to their Elders — past, present, and emerging. Find out more about our vision for reconciliation at .
Diversity, equity, and inclusiveness (DE&I) are core to who we are, how we work, and how we live our values. We hold a collective commitment to continue to drive an environment where all differences are valued, practices are equitable, and everyone experiences a sense of belonging— where people are inspired to team and lead inclusively in their interactions every day. We encourage applications from people of all ages, nationalities, abilities, cultures, sexual orientations, and gender identities and are committed to providing an equitable and barrier-free recruitment experience for all. We encourage you to share any support and adjustments you need to be your best and participate equitably in our recruitment process. We understand sharing your needs with us can be daunting, so if you have questions before or during your application, we welcome you to get in touch at or +61 3 8650 7788 (option 2). Anything you tell us will be kept completely confidential.
The exceptional EY experience. It's yours to build.
#LI-Hybrid
EY | Building a better working world.
#J-18808-Ljbffr