ZipRecruiter

Log In

1

Ey Cybersecurity Jobs (NOW HIRING)

Vanta

Director, Global Systems Integrators

$275K - $330K/yr

Build and deepen executive relationships with cybersecurity, GRC, and managed services leaders at Accenture, Deloitte, PwC, EY, and other strategic GSIs to establish trusted, long-term partnerships.

Workstreet

Senior Manager, GRC Engineering

Experience working in a tech company with a focus on cybersecurity * Thrives in a fast-paced startup environment Nice to Have * Experience at a Big 4 firm (e.g., Deloitte, PwC, EY, KPMG) in an ...

Hp

Manager, Global Database Administration

Spring, TX

$262K/yr

Serve as primary liaison to EY external auditors for database-related matters - coordinating ... Collaborate with Cybersecurity on database account standards, vulnerability remediation, encryption ...

SmartIPlace

Senior Compliance Analyst

Irving, TX · Remote

$60 - $70/hr

... cyber security, or cloud governance. · Must have experience collecting and analyzing evidence for ... PwC, EY, KPMG) is a huge plus. Desired Characteristics: · Strong problem-solving and analytical ...

Insight Assurance

OR

$80K - $99K/yr

*CPA certification is required Insight Assurance is a global audit firm on a mission to transform how organizations achieve cybersecurity and compliance. Founded by former Big 4 (EY) professionals ...

Insight Assurance

SOC 2 Senior Manager (CPA) - US

Tampa, FL · On-site

$76K - $94K/yr

*CPA certification is required Insight Assurance is a global audit firm on a mission to transform how organizations achieve cybersecurity and compliance. Founded by former Big 4 (EY) professionals ...

Insight Assurance

SOC 2 Senior Manager (CPA) - US

*CPA certification is required Insight Assurance is a global audit firm on a mission to transform how organizations achieve cybersecurity and compliance. Founded by former Big 4 (EY) professionals ...

BOOZ, ALLEN & HAMILTON, INC.

... Cybersecurity Framework, author and mature System Security Plans, build evidence packages, and ... Experience at a Big 4 audit firm, including Deloitte, EY, KPMG, or PwC, with SOC reporting, ITGC ...

New

next page

Showing results 1-20

All JobsEy Cybersecurity Jobs

Ey Cybersecurity information

See salary details

$57K

$133K

$186K

How much do ey cybersecurity jobs pay per year?

As of Jun 14, 2026, the average yearly pay for ey cybersecurity in the United States is $132,962.00, according to ZipRecruiter salary data. Most workers in this role earn between $111,000.00 and $150,000.00 per year, depending on experience, location, and employer.

What are 5 careers in cyber security?

Five common careers in cybersecurity include Security Analyst, Penetration Tester, Security Engineer, Incident Responder, and Security Architect. These roles involve protecting systems, identifying vulnerabilities, and implementing security measures, often requiring certifications like CISSP or CEH and knowledge of security tools and protocols.

What is the salary of a cyber security analyst in EY?

The salary of a cybersecurity analyst at EY typically ranges from $70,000 to $110,000 annually, depending on experience, location, and certifications. Entry-level roles may start lower, while experienced analysts with certifications like CISSP or CISA can earn higher salaries.

What does an EY Cybersecurity professional do?

An EY Cybersecurity professional helps organizations protect their digital assets by identifying vulnerabilities, assessing risks, and implementing security measures. They provide services such as risk assessments, security architecture design, incident response, and compliance advisory. EY Cybersecurity professionals work with clients across various industries to develop strategies that defend against cyber threats and ensure regulatory compliance. Their goal is to help businesses safeguard sensitive information and maintain trust with stakeholders.

What are the key skills and qualifications needed to thrive as an EY Cybersecurity professional, and why are they important?

To thrive as an EY Cybersecurity professional, you need expertise in information security principles, risk assessment, and a relevant degree such as computer science or cybersecurity. Familiarity with security frameworks (like ISO 27001 or NIST), vulnerability assessment tools, and certifications such as CISSP or CISM are typically required. Strong analytical thinking, communication skills, and the ability to work collaboratively are crucial soft skills. These competencies ensure robust protection of client data, effective risk mitigation, and successful teamwork in complex environments.

What are some common challenges faced by EY Cybersecurity professionals when working with clients?

EY Cybersecurity professionals often encounter challenges such as adapting to diverse client environments, managing complex regulatory requirements, and addressing evolving cyber threats. Collaborating with clients from various industries requires strong communication skills to translate technical concepts into actionable recommendations. Additionally, balancing multiple projects and staying current with industry best practices are key aspects of the role, making time management and continuous learning essential for success.

How much does a cybersecurity consultant make at EY?

Cybersecurity consultants at EY typically earn an average salary ranging from $70,000 to $120,000 annually, depending on experience, location, and certifications such as CISSP or CISA. Entry-level positions may start lower, while experienced consultants or those with specialized skills can earn higher salaries.

Who pays more, EY or Accenture?

For cybersecurity roles at EY and Accenture, salary levels vary based on experience, location, and specific job responsibilities. Generally, both firms offer competitive compensation, but Accenture is often reported to have slightly higher average salaries for cybersecurity consultants and specialists. Factors such as certifications, skills, and project scope can influence pay differences between the two companies.
More about Ey Cybersecurity jobs
What are the most commonly searched types of Ey Cybersecurity jobs? The most popular types of Ey Cybersecurity jobs are:
What states have the most Ey Cybersecurity jobs? States with the most job openings for Ey Cybersecurity jobs include:
What job categories do people searching Ey Cybersecurity jobs look for? The top searched job categories for Ey Cybersecurity jobs are:
Ey Cybersecurity jobs near you
Infographic showing various Ey Cybersecurity job openings in the United States as of June 2026, with employment types broken down into 100% Full Time. Highlights an 83% Physical, 6% Hybrid, and 11% Remote job distribution, with an average salary of $132,962 per year, or $63.9 per hour.

Principal Consultant, Cyber Security

STIGroup, Ltd.

Remote

Full-time

Posted 10 days ago

Job description

About STIGroup
STIGroup (Secure Technology Integration Group) is a SOC 2 Type II certified MSSP and cyber advisory firm headquartered in Mahwah, NJ. Founded in 2000, we serve clients nationally, with a concentration in Metro NY/NJ, across managed security, GRC, and advisory services. Our work spans regulated industries including financial services, healthcare, life sciences, and critical infrastructure, and we operate as an embedded extension of our clients' teams.
Role summary
STIGroup is hiring a Principal Consultant who can operate credibly across hands-on technical assessment and framework-aligned GRC advisory. You will own engagements end to end across managed security, GRC, and advisory, working with CISOs and operators to mature their programs. In addition, this Principal Consultant will be expected to help expand existing client relationships by identifying follow-on opportunities, contributing to account growth, and serving as a trusted primary point of contact throughout the engagement lifecycle. This is a senior individual contributor role, not a people-management position.
What you will do
  • Serve as the primary trusted advisor for assigned accounts, building senior client relationships, shaping ongoing security strategy, and translating emerging needs into scoped follow-on work.
  • Maintain executive-level client relationships across the engagement lifecycle, align stakeholders on priorities, and proactively identify opportunities for additional advisory, GRC, and managed security support.
  • Lead end-to-end delivery of cyber security and GRC engagements: security assessments, control design, architecture review, gap analyses, roadmaps, and remediation plans.
  • Do the hands-on technical work: review client environments, read logs and packet captures, validate controls through active testing, and design across endpoint, network, identity, cloud, and perimeter security.
  • Run framework-aligned assessments against SOC 2, NIST CSF, NIST 800-53, ISO 27001, HIPAA, and CMMC as applicable, and turn findings into prioritized remediation plans.
  • Author policies, standards, and procedures, build risk registers and control libraries, and support third-party risk and audit-readiness work.
  • Advise on managed security operations (SIEM/MDR coverage, log sources, detection gaps, vulnerability management, IR readiness) and support active incident response when needed.
  • Brief executive and board audiences when the engagement calls for it, in language that connects technical findings to business impact.
  • Own account growth through trusted advisory work: spot follow-on consulting, GRC, and managed-service opportunities, partner with leadership to scope and close them, and treat expansion as a measure of engagement quality.
  • Produce clear client-facing deliverables (assessment reports, executive readouts, status updates) without heavy editorial oversight.

What you bring (required)
  • 10+ years of progressive cyber security experience, including 5+ in client-facing consulting or MSSP delivery with end-to-end engagement ownership.
  • Executive stakeholder management and consultative communication skills, with the ability to build credibility quickly with CISOs, IT leadership, and business stakeholders.
  • Experience identifying client needs, shaping solution scopes, and contributing to follow-on consulting or managed security opportunities in a way that aligns to client outcomes.
  • Strong commercial judgment, including the ability to balance delivery quality, client trust, and account growth.
  • Workshop facilitation and discovery skills, including leading client interviews, surfacing priorities, and translating ambiguous requirements into actionable plans.
  • Technical depth across several of: vulnerability management, SIEM/MDR/SOC operations, incident response, IAM/MFA/PAM, endpoint and network, cloud (AWS, Azure, M365), and security architecture.
  • Hands-on experience applying NIST CSF and NIST 800-53 to client assessments; working fluency with ISO 27001, SOC 2, HIPAA, and CIS Controls; you sequence remediation, not just identify gaps.
  • Track record owning multiple concurrent engagements as the primary delivery lead from scoping through closure.
  • Direct experience in at least one regulated vertical: healthcare, financial services, or critical infrastructure (transportation, utilities, energy).
  • Strong written and verbal communication; able to move between a technical SOC conversation and a board readout without losing either audience.
  • Autonomy: you manage your own engagement portfolio and exercise sound judgment under pressure.
  • Based in or commutable to the Metro New York area, with on-site client work across the region as needed.

Nice to have
  • Big 4 or tier-1 advisory experience (Deloitte, PwC, EY, KPMG) and/or boutique MSSP or cyber consulting experience.
  • CISSP, CISM, CISA, CRISC, or ISO 27001 Lead Auditor / Lead Implementer certifications.
  • Multi-year vCISO, fractional CISO, or executive-sponsor program advisory (board reporting, roadmap ownership) for regulated clients.
  • Hands-on familiarity with CrowdStrike, Microsoft Defender / Sentinel, Splunk, Qualys / Tenable, Palo Alto, Fortinet, Okta, ServiceNow / Jira.
  • Direct experience supporting transit or transportation clients (e.g., agencies the size of NJ Transit) is a strong plus.

Compensation and logistics
  • Employment type: W2, full time.
  • Location: Metro New York area; hybrid (remote with on-site client work). Travel up to 25%.
  • Compensation: $185,000 to $215,000 base, plus performance bonus, commensurate with experience and regulated-industry depth.
  • Reporting line: CISO

Apply