Consulting: Manager - IT GRC

At EY, we’re all in to shape your future with confidence.

We’ll help you succeed in a globally connected powerhouse of diverse teams and take your career wherever you want it to go.​

Join EY and help to build a better working world.

The opportunity

We are looking for a highly skilled IT GRC (Governance, Risk, and Compliance) Manager to join our Tech Consulting – Cyber and Digital Risk Services team. This role is ideal for a dynamic professional with a strong background in IT risk management and a passion for delivering high-impact consulting services to clients in the Financial Services sector. This role combines technical expertise with client-facing consulting, including leading diverse teams, providing coaching, building long-term client relationships, managing delivery risks, and supporting business development.

Your key responsibilities

• Develop strong client relationships and identify new business opportunities, while assisting in further development of our technology risk competencies around Digitak Risk and/or Operational Resilience
• Assist in developing “Go To Market” strategies
• Provide guidance, share knowledge and manage team members while participating in solving our client’s most complex questions related to IT Risk Management, both from a strategic and operational point of view.
• Engage with clients to assess and improve their IT GRC frameworks, policies, and procedures.
• Lead risk assessments, compliance audits, and gap analyses for clients across various industries.
• Design and implement IT GRC solutions that align with client business objectives and regulatory requirements.
• Provide expert advice on IT governance, risk management, compliance strategies, and preferably Third-Party Risk Management
• Manage operationally multiple client engagements simultaneously, ensuring high-quality deliverables and adherence to timelines.
• Stay abreast of industry trends, regulatory changes, and advancements in technology that may impact clients' GRC strategies.

Skills and attributes for success

• Bachelor's or master’s degree in information technology, Cybersecurity, Risk Management, or a related field.
• Professional certification such as ISO27001, ISO 22301, ISO 31000, CRISC, CGEIT, CISM, or CISSP is preferred (not mandatory).
• Minimum of 5 years of experience in IT GRC, with a focus on consulting or advisory services.
• Expertise in at least one of the following areas:
  • IT Risk Management/Transformation
  • IT Governance
  • Operational Resilience
  • Third-Party Risk Management
  • GRC Tooling
  • Data risk
• Knowledge and experience with GRC tools such as ServiceNow, AuditBoard, etc are a plus
• Proven track record of delivering high-quality consulting services to clients.
• Strong understanding of IT governance frameworks (e.g., COBIT, ITIL) and risk management methodologies.
• Familiarity with compliance standards and regulations such as ISO 27001, GDPR, DORA, CSSF Circulars, etc.
• Exceptional analytical, problem-solving, and project management skills.
• Excellent communication, presentation, and interpersonal skills, with the ability to engage effectively with clients at all levels.
• Native French or Luxembourgish speaker, with an excellent knowledge of business English.

What we offer you

At EY, we’ll develop you with future-focused skills and equip you with world-class experiences. We’ll empower you in a flexible environment, and fuel you and your extraordinary talents in a diverse and inclusive culture of globally connected teams. Learn more.

Are you ready to shape your future with confidence? Apply today.

To help create the best experience during the recruitment process, please describe any disability-related adjustments or accommodations you may need.

EY  |  Building a better working world

EY is building a better working world by creating new value for clients, people, society and the planet, while building trust in capital markets.

Enabled by data, AI and advanced technology, EY teams help clients shape the future with confidence and develop answers for the most pressing issues of today and tomorrow.

EY teams work across a full spectrum of services in assurance, consulting, tax, strategy and transactions. Fueled by sector insights, a globally connected, multi-disciplinary network and diverse ecosystem partners, EY teams can provide services in more than 150 countries and territories.

Our offer of employment is contingent upon the successful completion of a background check and pre-screening requirements. The candidate acknowledges that all information provided must be accurate.