With rapidly changing cybersecurity threats, clients from all industries look to us for trusted solutions for their increasingly complex risks. As a member of our Cyber Risk Management team you’ll have the opportunity help clients gain insights into their cybersecurity program and strategy as a whole. You will have access to our robust solutions to advise clients on managing cybersecurity risk, enhancing maturity, and improving efficiency. You will belong to an international connected team of specialists helping our clients with their most complex cybersecurity needs and contributing toward their business resilience.

The opportunity - What future are you building towards?

You’ll work alongside respected industry professionals, learning about and applying leading practices to better manage cybersecurity people, process and technology capabilities. You’ll gain insights into the design and operations of cybersecurity programs and strategies in a variety of industries and learn how to design measurable, sustainable programs to keep up with the ever changing cybersecurity landscape.

Our team - Do great minds always think alike?

Within the Cybersecurity department, we focus on reliable solutions for increasingly complex cybersecurity risks in operational environments. We are an international team of specialists who help our clients with their most complex cybersecurity needs. We work from the Advanced Security Center in Amsterdam in collaboration with our Advanced Security Centers around the world to access the most advanced tools to combat cybercrime.

Responsibilities – How can you make a lasting impact in a rapidly changing world?

You’ll work with our practice in Amsterdam, The Netherlands in one or more of the following four areas of expertise:

Cyber Transformation: to improve cybersecurity measurements and monitoring, and develop sustainable processes. You will gain experience applying risk management principles to a cybersecurity environment and leveraging cybersecurity frameworks / standards like ISO/IEC 27001:2013 / Baseline Informatiebeveiliging Overheid (BIO), NIST CSF, etc. You will design solutions to remediate gaps or enhance maturity of specific cybersecurity capabilities. And you will implement or improve cyber security management strategy and processes at the clients’ organization.
Cyber Assessment: to assess cybersecurity programs and strategies, or specific technologies and/or information security processes using our proprietary framework or industry standards. Your focus will be on security and risk assessments of processes, applications, systems. You will assist our clients in understanding cyber threat landscape, assess the maturity of their cyber security strategy and/or assess compliance to regulations and standards.
Data Protection & Privacy: to assess and consult clients on data privacy, implementation of data protection / GDPR programs to address confidentiality and security over customer, employee or patient data. You will gain insights into the design and operations of privacy programs and strategies in a variety of industries and learn how to design measurable programs to keep up with the ever changing regulatory landscape.
Vulnerability Management: to build a full service vulnerability management offering providing clients with tailored solutions to deploy and run vulnerability management programs. You will manage vulnerabilities, associated risks and remediation within complex environments.

Job requirements – Where do you start if you want to change the world?

Degree (Bachelor or Master) in Business Information Technology, in a technical field (e.g. Computer Science) with touch points to Cybersecurity topics or equivalent education
2 – 5 years of related work experience;
A passion for consulting and cybersecurity topics
Knowledge of one or more of the following areas: Cybersecurity assessments, IT and cybersecurity policies, standards, procedures and controls, Security strategies and roadmaps, Cybersecurity awareness and training, Cybersecurity metrics and reporting, Cybersecurity organization design and implementation.
A strong background of the security frameworks and standards such as ISO 27001/2 and NIST CSF, and the cybersecurity laws and regulations such as GDPR
A willingness to travel in The Netherlands to meet client needs and a valid driver’s license
Excellent written and verbal communication skills in preferably Dutch and English
Strong client services orientation and accustomed to taking a proactive role in engagements
Flexible, responsible and self-confident personality, who feels comfortable in client’s environment

Already interested? Apply now!

What we offer – Is everything that counts being counted?

We offer an attractive employment package that rewards individual and team achievements:

- Vitality: the choice is yours. An online session with an external vitality coach, practical tips on topics such as nutrition, energy, sleep and mindset, a discount at Healthcity and/or a voucher card to rent a padel court.
- Flexible working: you decide where and when you work in consultation with your team. At home, at the office, at the client or from another European country (up to 20 working days per year).
- Home office arrangement: to optimize your home office, EY provides the following resources for you: office chair, sit/stand desk, an external monitor, a desk lamp, a (Bluetooth) headset, and a large external keyboard.
- Birth leave: EY will pay 100% of the birth leave, in the case of an additional birth leave, EY will pay 70% of the salary.

For a full overview of our employment package click here: Hoe het is om bij ons te werken | EY – Global | EY - Nederland

The office

Our office in Amsterdam is located in the Zuidas, a bustling area where many businesses are situated. In our Cross Towers, Anouchka and Lucia welcome up to 1.000 people every day upon arrival. Haven't had breakfast yet? Taib will make his special smoothie for you or simply a delicious cappuccino. During the lunch break, the team of Hans and Mehdi will be ready with a fresh lunch for you. For a breathtaking view of Amsterdam, head to the 22nd floor. Collaborating takes on a new meaning with the Wavespace. This high-tech environment brings clients and colleagues together virtually from all over the world!

Recruitment procedure

The selection procedure exists in general out of 2 interview rounds and/or Business case. An (online) assessment an pre-employment screening will also be part of the process.

Due to laws and regulations, and because EY (and in some cases its clients) has high demands on the reliability and integrity of its employees, every new employee will be screened. Depending on your rank the pre-employment screening could contain the following: Certificate of Conduct (in Dutch: VOG) or - if requesting a Dutch VOG is not possible - Criminal Background Check of the country you are currently living or have lived during the last five years, integrity questionnaire, verification of ID, diploma’s and/or work experience and consultation of the Dutch insolvency registry.