Associate Partner - Business Consulting Risk - FS - Internal Audit - Mumbai

About EY
As a global leader in assurance, tax, transaction and advisory services, we're using the finance products, expertise and systems we've developed to build a better working world. That starts with a culture that believes in giving you the training, opportunities and creative freedom to make things better. Whenever you join, however long you stay, the exceptional EY experience lasts a lifetime. And with a commitment to hiring and developing the most passionate people, we'll make our ambition to be the best employer by 2020 a reality.
Partner, Principal, Associate Partner - Risk - Operational Technology/IIOT Security
EY is seeking an experienced and passionate Cyber OT (Operational Technologies), Industrial Control Systems (ICS) security and / or IIOT expert to join its practice focused on protecting business critical systems and national critical infrastructures. This role will be a part of an operational service to protect some of the world's leading organizations from Cyber threats that span more than just IT. Successful candidate will work closely with the Regional Cyber Leadership in developing the OT cybersecurity practice. #LI
The opportunity
The candidate will lead all aspects of EY's Cyber Security Go-to-Market for OT/ICS plans for the practice. While reporting to the India Cyber Security leadership, the candidate will liaison with local sector teams and work closely with them and other Information Security colleagues to monitor the implementation of the Information Security strategy and Go to Market plan. Other main responsibilities would be to serve as a subject matter expert for OT/ICS Cyber Security topics applicable to EY's Cyber Security Strategy.
• Serve as a security expert in operational technologies space including application development, database design, network and/or platform (operating system) efforts
• Develop the business, information, and technical artifacts that aid in the design and support of the enterprise information security architecture and solutions
• Research, design, and advocate new technologies, architectures, and security products that will support security requirements for the operational technologies area of clients, business partners and vendors
• Develop the GTM Strategy based on firm priorities and market
• Build a team with OT/IIOT security specialists
• Work cross-functionally to define measurable objectives, strategy and deliverables
• Oversee development and delivery of GTM Strategy and plans for short- and long-range planning purposes, constantly reporting on metrics and driving transformation
• Own up branding, marketing and communication for our solution, clearly defining messaging and timing.
• Identify new opportunities through the use of client insights, market research and competitive intelligence.
• Develop, direct, and ensure an integrated activation of the GTM Strategy to maximize EYs sales, profits, engagement and market share
As a respected senior professional, the candidate shall communicate effectively with EY's Partner/ Director Group and work to build, manage and motivate high-performing teams.

Your key responsibilities
• Participate in and, as required, lead Cyber Security transformational and long term strategic engagements
• Be able to provide thought leadership and advocate innovative cyber security offerings
• Meeting short term as well as long term needs for national critical infrastructures
• Own a P&L and manage profitability in line with firm's strategy and GTM plan
• Manage the financial aspects of client engagements and communicate significant issues, fees, and estimates-to-complete to partners and clients
• Help partners generate new business opportunities and build client networks and relationships
• Understand all Ernst & Young service offerings and actively identify opportunities to better serve clients
• Build strong internal relationships within Ernst & Young Advisory Services and with other services across the organization.
Skills and attributes for success
• Candidate shall have at minimum 8 years of experience in Information security and OT/ICS cyber security preferably within the Oil and Gas, Power and Utilities Sectors with subject matter expertise:
• Solid Knowledge of the OT and ICS security domain
• Solid experience in ICS/OT products and technologies, hardware and software including, but not limited to Honeywell, GE, Siemens and ABB product families and platforms
• Strong understanding of the complex and sensitive nature of ICS/SCADA environments
• Capable of Evaluating the cyber risks to SCADA, DCS, Smart Grids, DMS, and ECS systems architectures
• Solid understanding of the relevant industries production processes and operational procedures
• Solid knowledge of Industrial networking protocols security such as DNP3, Modbus, Profinet, ZigBee. etc.
• In depth endpoint OS and Server OS knowledge
• Strong analytical and problem solving skills
• Knowledge of OT Capable SIEM, security events logging and monitoring technologies and platforms such as Industrial defender, nextnine, Splunk, Arcsight, QRadar or others.
• Experience in deploying of unidirectional firewalls, host based firewalls, Anti-Malware, HIDS in plant and operational environments
• Awareness of Network monitoring technology platforms such as Fidelis XPS, RSA or others
• Awareness of End point protection tools, hardening techniques and platforms such as Carbon Black, Symantec, McAfee or others
• Solid understanding of applicable best practices and security standards such as NERC-CIP, ISA99 (IEC 62443), NIST 800-82, Qatar's National ICS security standard, etc.
• Internationally recognized technical certifications in relevant areas
• Good understanding of plant Process systems, plant safety and plant integrity systems and solutions.

To qualify for the role you must have
• Bachelor degree in Electronics Technology, Computer Engineering, Electrical engineering, mechatronics or similar specialization in the electronics, PLC, wireless (radio), networking, and/or ICS technology field
• Demonstrated track record with a blue chip consulting organization and/or a blue chip organization
• Demonstrated experience in business development and account management
• Relevant professional qualifications such as CISSP, GICSP, ISA99 implementer, ISO 27001, CCSA, CCSE, CCSP
Ideally you'll also have
• Strong communication, facilitation, relationship-building, presentation and negotiation skills.
• Be highly flexible, adaptable, and creative.
• Comfortable interacting with senior executives (within the firm and at the client)
• Strong leadership skills and supervisory responsibility.
What we look for
People with the ability to work in a collaborative way to provide services across multiple client departments while adhering to commercial and legal requirements. You will need a practical approach to solving issues and complex problems with the ability to deliver insightful and practical solutions.
What working at EY offers
EY is committed to being an inclusive employer and we are happy to consider flexible working arrangements. We strive to achieve the right balance for our people, enabling us to deliver excellent client service whilst allowing you to build your career without sacrificing your personal priorities. While our client-facing professionals can be required to travel regularly, and at times be based at client sites, our flexible working arrangements can help you to achieve a lifestyle balance.