Senior Consultant, Cyber Security, Data Protection, TC, UKI in Westminster

The opportunity: As a Senior Consultant in Data Protection you will take a key position in delivering EY's data protection services, supporting and managing engagements and client delivery. You will also be expected to take a supporting role in building out EY's Data Protection Services, working with alliance partners and advising clients on the current market trends. Location - London, Manchester or Scotland.

The role will see you providing specialist advice as part of a variety of teams – from discrete data protection and privacy focussed activities across large multi-disciplinary teams, to delivering privacy and cyber security transformation programmes.

• Supporting end-to-end data protection programmes at a UK and global level from design through to build and implementation.
• Delivering discrete elements of programmes and projects.
• Conducting data protection maturity and gap assessments – including evaluation of the control landscape, data loss prevention, insider threat and information management solutions; user awareness and training.
• Data discovery programmes and data inventory management to meet regulatory and security requirements.
• Data Loss Prevention assessment, strategy and implementation programmes.
• Data governance and data ethics review, management and design.
• Design and configuration of specific technology solutions associated with data protection – e.g. Microsoft Purview, BigID, OneTrust.
• Privacy technology advisory and implementation activities.
• Data Classification, handling and operational engagements to support effective privacy and security strategies.
• Deliver engagements and build productive relationships with client stakeholders through project delivery.
• Contributing to articles and thought pieces.
• Working with prospective clients on the planning and delivery phase of engagements.
• Creating high-quality reports as part of a team, for review by engagement and project leaders.
• Working with senior practice leaders and market leaders in the creation of proposals and marketing material.
• Be professional, quickly establishing personal credibility and demonstrating expertise.
• Be a good communicator with the ability to contribute assuredly to technical security and privacy discussions with peers.
• Be a team player who is not only looking to enhance their own career but recognises the value of teamwork, facilitating and encouraging collaboration amongst team members.
• Take a practical approach to solving issues and gaining client agreement.
• Be able to analyse complex problems and to deliver insightful, practical and sustainable solutions.
• Be confident and effective in recognising and managing potential issues during client assignments.
• Proactive identification of risks and issues that may impact delivery of day-to-day work.

• Professional experience within a consulting or professional services organisation operating within the Data Protection and privacy space. This includes ability to understand, assess and deliver programmes and technical implementation of data protection tooling.
• Experience delivering data protection programmes across the areas: classification, Data Loss Prevention, CASB and data management. Experience should range from assessment to programme redesign and implementation.
• Experience working with others in the development and delivery of complex client solutions and/or proposition development.
• A good understanding of privacy processes and requirements, from governance and data subject rights through to data mapping, privacy operations and privacy risk management.
• Security and Privacy relation qualifications such as CIPP/E, CIPP/M or vendor qualifications on DPP software including DLP, classification solutions and data discovery platforms.
• Broader cybersecurity knowledge and skills across cyber domains including NIST, ISO 27001, cyber assessments, programmes and management.
• Experience with privacy/data management tooling such as TrustArc, OneTrust and BigID.
• Key delivery experience in the following disciplines: security assurance, third party management, DLP, classification.
• Key sector experience in one or more of the following: Government & Public sector / Energy & Utilities / Retail and Consumer products / Life sciences / Telecoms, Media and Technology / Transport.

• Core consulting skills – advanced data and evidence management, client management on remediation programmes, driving innovation and continuous improvement.
• Proactive – a proactive individual who can get stuck in to client delivery and support the broader practice and solutions.
• Technical skills – strong technical insight, practical knowledge and specialist capability.
• Versatility – proven ability to adapt and learn in an innovative environment.

About EY: At EY, we are committed to building a better working world. Our Cybersecurity Consulting Practice is rapidly expanding, and we are investing in our capabilities to meet the increasing demand for cybersecurity solutions. Join us and be part of a global team of over 13,000 professionals dedicated to delivering cutting-edge security transformation programs and services.

• Continuous learning – you'll develop the mindset and skills to navigate whatever comes next.
• Success as defined by you – we'll provide the tools and flexibility, so you can make a meaningful impact, your way.
• Transformative leadership – we'll give you the insights, coaching and confidence to be the leader the world needs.
• Diverse and inclusive culture – you'll be embraced for who you are and empowered to use your voice to help others find theirs.