Cyber Transformation & Assessment Manager

At EY, we are committed to building a better working world. Our Cybersecurity Consulting Practice is rapidly expanding, and we are investing in our capabilities to meet the increasing demand for cybersecurity solutions. Join us and be part of a global team of over 13,000 professionals dedicated to delivering cutting-edge security transformation programs and services.

The Opportunity: As a Manager in Cybersecurity – Cyber Transformation and Assessment, you will drive cyber security transformation programmes and conduct comprehensive cyber risk, maturity and capability assessments to create actionable insight for our clients. The role combines team management, deep cyber knowledge and experience, sales support, and programme delivery to achieve outcomes for our cross-sector clients.

Location – London, Manchester or Scotland

• Support the design and delivery of cyber security transformation programmes, including operating model design, capability uplift and technology modernisation.
• Advise clients on integrating cyber security into digital, cloud, data and business transformation initiatives – including the impact of innovative / disruptive technologies such as AI.
• Translate complex cyber risks into business-relevant insights and actionable recommendations.
• Conduct cyber maturity, risk and resilience assessments (e.g. against NIST CSF, NIS2, ISO27001, CAF).
• Deliver high-quality cybersecurity engagements, ensuring alignment with EY’s standards of technical excellence and client satisfaction.
• Build and maintain strong relationships with clients, leveraging these connections to effectively execute work and understand their business agendas.
• Maintain open and proactive communication with clients and stakeholders, building credibility by staying informed about their businesses and industry trends.
• Develop and manage project plans, ensuring timely delivery and effective resource allocation.
• Foster a positive team environment by mentoring and coaching junior staff, conducting performance reviews, and contributing to their professional development.
• Support business development activities, including proposal writing and impactful presentations to potential clients.
• Contribute to recruiting, retaining, and training cybersecurity professionals, ensuring a high-performing team.

• Professional demeanour with the ability to establish credibility and demonstrate expertise quickly.
• Excellent communication skills, both oral and written, tailored to diverse audiences.
• Strong team player who values collaboration and kindness that encourages open communication among team members.
• Proven ability to deliver high-quality outputs against project objectives and tight deadlines.
• Experience in people management, coaching, and developing colleagues.
• The ability to build capabilities and drive innovation.

• Professional experience delivering cybersecurity solutions, either in an operational or consulting capacity.
• High level of drive and commitment to achieving solutions, with the ability to work under pressure and in unstructured environments.
• Expertise in developing impactful written presentations, bids / proposals and engaging effectively with senior stakeholders.
• Specialisation in one or more of the following areas: Governance, Risk, and Compliance; Cyber Security Culture; Transformation or large Cyber Security Programme Delivery.

• Security-related qualifications such as CISSP, CISM, CISA, CRISC or ISO27001 lead implementer or auditor.
• Experience operating within an NCSC Assured Cyber Consultancy.
• Experience in regulated sectors, (financial services, critical infrastructure, healthcare, government).
• Understanding of the cybersecurity regulatory landscape and assessment frameworks (e.g., NIS2, NIST CSF).
• Key delivery experience in cybersecurity strategy, transformation, and compliance.
• Sector experience in Government.