IT BIA Risk Analyst

About EY and the Role

At EY, we are committed to shaping your future with confidence and building a better working world. We foster a globally connected powerhouse of diverse teams, offering opportunities to advance your career wherever you choose to go. Join EY and help us achieve our mission.

Information Security at EY

In today’s data-driven world, protecting information systems is paramount. EY Information Security comprises a global team of nearly 900 professionals dedicated to safeguarding EY and client information assets. We enable secure business operations, deliver secure products and services, and swiftly respond to security events. Our collective efforts protect the EY brand and build client trust. Within Information Security, we integrate risk strategy, digital identity, cyber defense, application security, and technology solutions across the entire security lifecycle.

The Opportunity: IT BCM Risk Analyst

The IT BCM Risk Analyst is responsible for administering the creation, completion, and management signoff of IT Business Continuity Management (BCM) and general risk documents, adhering to established policies and procedures. This role involves managing the ongoing cycle of periodic refreshes and signoffs for existing documents, ensuring compliance with standards and policies. We offer opportunities for skill development and career progression, supported by colleagues worldwide, and the chance to collaborate with top industry talent.

Your Key Responsibilities

The TARP BCM function establishes and maintains the business continuity management framework, processes, tooling, and strategy. Our key objectives include fostering a risk-aware culture within EY Technology, reducing IT risk, defending against threats, and protecting client and EY data.

• Undertake new Business Impact Analyses (BIAs), collaborating with stakeholders to ensure timely completion in compliance with policies and procedures.
• Perform regular, “business as usual” tasks, including periodic BIAs refreshes.
• Engage with established contacts within IT services and the wider firm to ensure BIAs meet established standards.
• Respond to queries and questions regarding BIA completion and subsequent actions.
• Assist with education and awareness sessions, and individual training to empower stakeholders in completing BIAs effectively.
• Liaise with global team members to ensure seamless operation across different locations and time zones.
• Demonstrate skills in efficiently implementing agreed roadmaps and managing work streams.
• Work independently with required supervision.

Skills and Attributes For Success

• Flexibility to manage multiple work streams and adapt to change.
• Ability to collaborate effectively with colleagues at various levels and locations.
• Aptitude for understanding when to escalate potentially difficult situations.
• Capability to understand and adhere to established policies and procedures.
• A methodical and detailed approach to tasks.

Qualifications and Experience

• Understanding and exposure to risk management/BCM, preferably in a multinational environment.
• Flexibility to manage multiple work streams, shifting priorities, ambiguity, and rapid change.
• Ability to collaborate effectively with diverse, cross-cultural teams globally.
• Capacity to balance EY’s needs with business impact and benefit.
• Proven ability to multitask and prioritize in a fast-paced environment with a methodical and detailed approach.
• Strong English language skills, including excellent writing, presentation, interpersonal, and communication skills.
• 1+ years of relevant experience in information technology, Business Continuity, Disaster Recovery, IT Risk Management, or similar roles.
• An advanced degree in Computer Science, Information Security, or a related discipline, or equivalent work experience.

Preferred Experience

• Operational understanding of ISO 22301, ISO 27001, ISO 31000.
• Relevant certifications such as BCI Certified (AMBCI, MBCI), CRISC, CISSP, or CISM.
• Familiarity with local and regional regulatory requirements and their impact on IT policies.
• Appreciation for the business benefits of internal controls and good risk management.
• Working knowledge of cloud fundamentals (Azure, AWS, etc.).
• Proficiency in advanced reporting and data visualization tools, specifically Power BI.
• Experience with RSA Archer.

What We Look For

We seek a collaborative teammate with a global mindset, open to different regions and cultures, and possessing a creative approach. Critical thinking and problem-solving skills are essential, along with strong customer service and communication abilities.

What Working At EY Offers

This role offers a position within a highly coordinated, globally diverse team, equipped with the tools for career growth and development. You’ll combine global opportunities with flexible working. EY’s comprehensive benefits package focuses on your physical, emotional, financial, and social well-being. Specific benefits vary by country.

• Continuous learning: Develop the mindset and skills for future challenges.
• Success as defined by you: Utilize tools and flexibility to make a significant impact your way.
• Transformative leadership: Gain insights, coaching, and confidence to become a leader.
• Diverse and inclusive culture: Be accepted for who you are and empowered to use your voice.

About EY

EY is dedicated to building a better working world by creating value for clients, people, society, and the planet, while fostering trust in capital markets. Enabled by data, AI, and advanced technology, EY teams help clients confidently shape the future and address pressing issues. EY operates across assurance, consulting, tax, strategy, and transactions, serving clients in over 150 countries and territories.

Key skills/competency

• IT BCM Risk Analyst
• Risk Management
• Business Continuity Management
• Information Security
• IT Risk
• Disaster Recovery
• Compliance
• Policy and Procedures
• Stakeholder Management
• Cross-functional Collaboration