Cyber Risk and Resilience - Senior Consultant - Cybersecurity
Job Description
Location: Auckland
\nOther locations: Primary Location Only
\nRequisition ID: 1713884
\nAt EY, we’re all in to shape your future with confidence.
\nWe’ll help you succeed in a globally connected powerhouse of diverse teams and take your career wherever you want it to go.
\nJoin EY and help to build a better working world.
\nWith your contribution and my contribution, together we will thrive.
\nHei Oranga Iwi | The opportunity
\nThis is a hybrid position is based in our Tāmaki Makaurau (Auckland)
\nJoin a growing cyber team helping organisations navigate increasingly complex threats and build stronger, more resilient operations. As a Senior Consultant - Cyber RiskandResilience , you will work on meaningful client challenges and deliver practical outcomes that strengthen cyber maturity, resilience, and decision-making.
\nThis opportunity is suited to someone with 3–5 years of experience in cyber security, technology risk, cyber resilience, or related consulting who is looking to deepen theirexpertise, broaden client exposure, and grow their career in a high-demand capability area.
\nYou will be part of a team delivering trusted advice across cyber risk, governance, resilience, and security improvement, with the opportunity to build your profile, expand your capability, and contribute to work that matters.
\nDeliver cyber risk and resilience engagements that help clients strengthen capability across a range of sectors and business environments.
\nDevelop clear recommendations, roadmaps, and action plans that help clients improve cyber maturity, strengthen resilience, and support better decision‑making.
\nDevelop clear recommendations, roadmaps, and action plans that help clients improve cyber maturity, strengthen resilience, and support better decision‑making. Assess cyber maturity, controls, and resilience using recognised frameworks such as NIST CSF, NZISM, ISO 27001 to identify gaps and inform practical improvement priorities.
\nHelp clients identify, assess, and prioritise cyber risks, control weaknesses, resilience gaps, and improvement opportunities.
\nSupport resilience initiatives such as incident response readiness, recovery planning, crisis preparedness, and operational resilience uplift.
\nCreate high‑quality client deliverables, including assessment reports, executive summaries, workshop materials, and remediation plans that support action.
\nTranslate technical cyber issues into clear business risk insights for technical and non‑technical stakeholders.
\n3–5 years of practical experience in cyber security, technology risk, cyber resilience, IT audit, security advisory, or a related discipline.
\nWorking knowledge of cyber frameworks and standards such as NIST CSF, NZISM, ISO 27001, CIS Controls, ISO 22301:2019 (business continuity) ISO,IEC 27035 (Information Security Incident Management or similar.
\nExperience in cyber assessments, risk reviews, control testing, resilience reviews, or security improvement programmes.
\nStrong written and verbal communication skills, including the ability to prepare clear reports, presentations, and client‑ready deliverables.
\nConfidence engaging with stakeholders across technology, cyber security, risk, compliance, operations, and business teams.
\nA proactive, curious, and outcome‑focused mindset, with a commitment to quality and continuous improvement.
\nAbility to work effectively in a project‑based environment, both independently and as part of a collaborative team.
\nProficiency in Microsoft Word, Excel, and PowerPoint.
\nRelevant certifications or qualifications are beneficial, such as CISA, CISM, CRISC, CISSP, ISO 27001, CompTIA Security+, or equivalent, but are not mandatory.
\nKo Taku Rourou | What we offer you
\nAt EY, we’ll fuel you and your extraordinary talents in a diverse and inclusive culture of globally connected teams.
\n- \n
- Career development: At EY, your career is yours to shape! We’ll develop you with future‑focused skills and equip you with world‑class experiences www.ey.com/nz/careerdevelopment \n
- Flexible work arrangements: Our flexible work policies empower you to balance your professional and personal life, fostering a culture of trust and autonomy. \n
- A comprehensive benefits package : From a yearly wellness incentive,to access to additional 8 weeks of flex leave per year, and family‑friendly policies, including up to 26 weeks of gender‑neutral paid parental leave, we cater to your diverse needs to help you thrive both personally and professionally www.ey.com/nz/benefits \n
Inclusiveness is core to who we are and how we work together, driving value for our people and for our business. We encourage applications from people of all ages, nationalities, abilities, cultures, sexual orientations, and gender identities and are committed to providing an equitable and barrier‑free recruitment experience for all. We encourage you to share any support and adjustments you need to be your best and participate equitably in our recruitment process. We understand sharing your needs with us can be daunting, so if you have questions before or during your application, we welcome you to get in touch at [email protected] or +64 9 300 7044 (option 2). Anything you tell us will be kept completely confidential.
\nAre you ready to shape your future with confidence? Apply today
\n#LI-Hybrid
\nEY | Building a better working world
\nOur preferred applicant will be required to undertake employment screening by EY or our external third‑party provider.