In this role as a Manager Cloud in the Risk Consulting Digital Risk team at EY, you will be leading engagements to assess, test, and validate cloud security and risk controls across AWS, Azure, and Google Cloud Platform environments. Your responsibilities will include assisting clients in identifying, assessing, and monitoring cloud-related security and technology risks, executing cloud security and risk assessments, collaborating with engagement teams, performing cloud architecture and configuration reviews, assessing cloud governance and security controls, and preparing high-quality deliverables aligned with US work product quality standards. **Key Responsibilities:**
Operate as a fieldwork leader to assist clients in identifying, assessing, and monitoring cloud-related security and technology risks. - Lead and execute cloud security and risk assessments across AWS, Azure, and GCP. - Collaborate with engagement teams to plan engagements, develop work programs, timelines, risk assessments, and testing procedures. - Perform cloud architecture and configuration reviews covering various aspects such as identity models, network segmentation, encryption, key management, logging and monitoring, backup, and disaster recovery. - Assess cloud governance and security controls aligned with shared responsibility models and industry frameworks. - Prepare high-quality deliverables, reports, and recommendations following US work product quality standards. **Qualifications Required:**
Bachelors or Masters degree with 7-12 years of total experience, including 3-5 years in cloud security or cloud risk roles. - Cloud security certifications such as CCSP, CCSK, AWS Security Specialty, Azure Security Engineer, or equivalent. - Demonstrated experience in cloud security audits, risk assessments, architecture reviews, and control testing. - Experience designing and assessing controls across identity and access management, network security, encryption, key management, logging and monitoring, backup and disaster recovery, and data protection. - Familiarity with regulatory frameworks and compliance standards such as ISO 27001, NIST CSF, SOC 2, PCI DSS, and privacy expectations. - Client-facing experience working with engineering, security, and risk stakeholders. In addition to the above qualifications, exposure to container security, Kubernetes, Zero Trust concepts, SASE/SSE, CASB, or cloud-native security tooling is preferred. Experience supporting regulated industries or large-scale cloud transformations or migrations is an added advantage. At EY, we are committed to building a better working world by creating new value for clients, people, society, and the planet while building trust in capital markets. Our teams work across a full spectrum of services in assurance, consulting, tax, strategy, and transactions, leveraging data, AI, and advanced technology to shape the future with confidence and address the most pressing issues of today and tomorrow. In this role as a Manager Cloud in the Risk Consulting Digital Risk team at EY, you will be leading engagements to assess, test, and validate cloud security and risk controls across AWS, Azure, and Google Cloud Platform environments. Your responsibilities will include assisting clients in identifying, assessing, and monitoring cloud-related security and technology risks, executing cloud security and risk assessments, collaborating with engagement teams, performing cloud architecture and configuration reviews, assessing cloud governance and security controls, and preparing high-quality deliverables aligned with US work product quality standards. **Key Responsibilities:**
Operate as a fieldwork leader to assist clients in identifying, assessing, and monitoring cloud-related security and technology risks. - Lead and execute cloud security and risk assessments across AWS, Azure, and GCP. - Collaborate with engagement teams to plan engagements, develop work programs, timelines, risk assessments, and testing procedures. - Perform cloud architecture and configuration reviews covering various aspects such as identity models, network segmentation, encryption, key management, logging and monitoring, backup, and disaster recovery. - Assess cloud governance and security controls aligned with shared responsibility models and industry frameworks. - Prepare high-quality deliverables, reports, and recommendations following US work product quality standards. **Qualifications Required:**
Bachelors or Masters degree with 7-12 years of total experience, including 3-5 years in cloud security or cloud risk roles. - Cloud security certifications such as CCSP, CCSK, AWS Security Specialty, Azure Security Engineer, or equivalent. - Demonstrated experience in cloud security audits, risk assessments, architecture reviews, and control testing. - Experience designing and assessing controls across identity and access management, network security, encryption, key management, logging and monitoring, bac