Starsza Konsultantka lub Starszy Konsultant, Risk, Business Consulting

at  EY

THE OPPORTUNITY:

As a Senior Consultant / Assistant Manager in our Technology Risk Team at EY in Warsaw, Poland, you will play a crucial role in advising companies across a spectrum of industries. Your expertise will help clients maintain confidence and capitalize on opportunities in a dynamic global landscape. You will be at the forefront of supporting our clients in key areas such as “Digital Risk Management”, “Bank Risk Management”, “Compliance Risk Management”, “Third-Party Risk Management”, and “Operational Risk Management”.
Your role involves delivering strategic insights and actionable solutions that assist our clients in effectively managing risks, complying with regulations, and strengthening their risk frameworks.
Furthermore, you will be instrumental in conducting “Internal Audits” and related tasks, pivotal for establishing and maintaining rigorous risk management practices and control mechanisms.

EXPERIENCE:

• > 3 years of professional experience in the area of Risk Management, particularly in the digital and banking risk management domain, Risk Analytics, Third-Party Risk Management, Internal Audit, Internal Controls or other relevant areas.
• Experience with Governance, Risk & Compliance (GRC) technology platforms like SAP GRC, ServiceNow or similar.
• Knowledge of industry frameworks and standards such as NIST and ISO/IEC 27001.
• Knowledge of DORA standards and DFSA regulations.
• Experience with new technologies and digitalization.
• Familiarity with operational resilience planning and ICT disruption recovery strategies.
• Experience in participating in or leading Cyber Stress Tests and related initiatives.

SKILLS:

• Bachelor’s or master’s degree in Business Administration, Economics, Computer Science, Information Systems or other relevant programs.
• Strong interest in new technologies and digital transformation.
• Proven ability to apply NIST and ISO/IEC 27001 standards to enhance technology risk management and information security practices.
• Problem-solving abilities for comprehensive risk identification and assessment.
• Excellent communication and interpersonal skills to interact with clients and team members.
• Analytical skills and willingness to perform analytical tasks handling large amounts of data
• Proficiency in using technology and software tools for data analysis and reporting.
• Ability to interpret and apply complex regulations and laws to real-world situations.
• Attention to detail and a meticulous approach to documentation and reporting.
• A proactive mindset with the ability to anticipate issues and develop strategic solutions.
• Willingness to travel (up to 40%) in Europe and across the Globe.
• Strong communication skills in English is a must. Any additional language spoken is considered as a plus.

OTHER REQUIREMENTS:

• Experience of managing and delivering complex projects in the area of technology risk.
• Familiarity with industry-standard risk assessment methodologies and frameworks.
• Experience with data privacy regulations such as GDPR.
• Capacity to work collaboratively with IT and business units to align technology risk management with business objectives.
• Strong project management skills, with the ability to lead cross-functional teams and drive results.
• Commitment to continuous professional development and staying abreast of emerging technology risks and trends.
• Excellent organizational skills, with the capability to prioritize tasks and manage time efficiently.
• Willingness to travel as required to meet client needs and project requirements.
• Advanced degree in a related field (IT, Cybersecurity, Business Administration) is preferred.

• Work with a team to deliver comprehensive risk management insights and solutions specifically tailored for banking clients.
• Develop and enhance risk management frameworks that encompass digital risk, operational risk, third-party risk, and other banking-specific risks.
• Support the execution and improvement of internal audit processes within banks, identifying compliance gaps and areas for improvement.
• Build strong relationships within EY and with banking clients, promoting a culture of collaboration and trust.
• Contribute to the development and implementation of strategies for responding to and recovering from significant ICT disruptions, in alignment with DORA standards and DFSA expectations.
• Participate in the Cyber Stress Test (CST) Initiative by engaging in workstream projects focused on Governance, Business Management, Disaster Recovery, Crisis Management, and Management of Reputation.
• Assist in the creation of a comprehensive operational resilience plan that addresses ICT disruption response and recovery capabilities.
• Collaborate with cross-functional teams to ensure compliance with regulatory standards and enhance the firm’s operational resilience.
• Provide support in delivering technology, process, and third-party risk assessments, ensuring alignment with M&G standards and DORA requirements.
• Assist with updating M&G processes and templates to address any gaps identified in the gap analysis against DORA text and Regulatory Technical Standards (RTS).
• EY.AI - in this role, your capabilities are augmented by artificial intelligence. With AI-powered solutions your analyses, insights and innovative ideas will reach a higher level. Starting with a series of training sessions, you will then use EYQ - your virtual assistant, along with other unique tools often available exclusively at EY. We continuously invest in innovation to provide you with a work environment where you can focus on the most interesting aspects of your job and create the best solutions for clients