Manager Cyber Security - Attack & Penetration Testing
Ernst & Young AG
hace 24 días

About EY Financial Services

EY is the only major professional services firm with a dedicated financial services practice integrated in the EMEIA Region.

An international team of over 12.000 professionals works across borders for clients in banking, insurance and asset management.

EY has a strong presence in Advisory, Assurance, Tax and Transactions services.

Manager Cyber Security - Attack & Penetration Testing, EMEIA Cyber HUB EY Madrid

In response to strong market demand, EY has set up an EMEIA wide Cyber Hub, with a young team passionate about their work and proud to be part of a leading global professional services firm.

The team is multinational and dynamic, with the common goal of being the company’s ultimate experts in cyber security. There are various areas of expertise amongst which are threat intelligence, incident response and other, but yours will be attack & penetration and you will play a critical role in making A&P services a success.

The opportunity

We are, over the coming months, substantially growing our European Cyber Security capability and are seeking an exceptional individual who is looking to steer his / her own A&P team.

Your home base will be Madrid, Spain, but your area of delivery will be continental Europe, the UK, and occasionally beyond.

You will become a member of an international team that operates as a virtual HUB, and you will have a high degree of flexibility in how, when and where you work, but will be asked to travel as necessary.

Your role will be almost exclusively focused on delivery, team management and technical expertise; there is no sales pressure or sales target for you to achieve.

About the role

We are looking for an individual with strong technical skills, along with a thorough understanding of cyber security. In addition, candidates should demonstrate knowledge of how information security integrates into, and impacts the business, and its value in business risk management, and have the capability to lead projects and steer small-

to medium-size teams executing them.

As a Manager in Attack & Penetration Testing, you will

  • Lead vulnerability assessments, source code reviews, penetration tests, red team and phishing exercises, security architecture configuration reviews, and technical security compliance reviews.
  • Be responsible for the exceptional quality and thorough review of the reports following these engagements.
  • Lead the innovation of existing services the team delivers, and set up new solutions depending on market demand.
  • Balance project stakeholders (buyer and seller), typically cross-border.
  • Coach your team members to grow and develop into experts.
  • Understand the broader team’s strategy.
  • We want you to have the following skills and experience :

  • Impeccable English and previous experience in using English as your working language. Knowledge of other languages is a plus.
  • Deep professional experience in all the assessment types described above. We do not judge you in years of experience and do not want you to see this as set in stone, but generally believe that you need about 5 to 8 years of previous experience to fit this role.
  • Solid understanding of security standards, frameworks and methodologies : OWASP, CVSS are some examples. Understanding how A&P fits in bigger security frameworks such as ISO27001 or NIST is definitely a plus.
  • Experience with various operating systems, network security technologies, web application development technologies, languages and frameworks such as .
  • Net, PHP, Angular JS, NodeJS et cetera.

  • Development and scripting languages such as Python, C / C++, Java / JavaScript.
  • Experience leading small- to medium size teams.
  • Experience in developing thought leadership, conducting and publishing research, speaking at technical conferences, conducting technical trainings, or even better : all of the above.
  • Certifications in various technical domains are a strong asset.
  • Good communication and presentation skills.
  • If you tick all of the above, we do not care about your degree.
  • Inscribirse
    Mi Correo Electrónico
    Al hacer clic en la opción "Continuar", acepto que neuvoo recolecte y procese mis datos de conformidad con lo establecido en su Política de privacidad . Tengo derecho a darme de baja o retirar mi autorización en cualquier momento.
    Formulario de postulación