NFS Third Party Risk Management Senior Consultant
EYTaguig, Philippines
Posted January 20, 2026
Full Time
About the Company
EY exists to build a better working world, helping to create long-term value for clients, people and society and build trust in the capital markets.
Job Description
Join EY's NFS TPRM team as a Senior Consultant to lead Third-Party Risk Management engagements, design and implement TPRM operating models, and assist in the selection and tailoring of approaches, methods, and tools to support service offering or industry projects.
Requirements
- 4 to 8 years of demonstrated experience with Risk Management across the Third-Party engagement lifecycle (pre-contracting, contracting, and post contracting)
- Strong understanding of the TPRM framework, Risk Management, Information Security practices
- Demonstrated knowledge of standards such as ISO 27001/2, ISO 22301, ISO 27018, PCI – DSS, HITRUST, etc.
- Good knowledge of privacy regulations such as GDPR, CCPA, etc.
- Good knowledge of regulations such as FISMA, HIPAA, Reg SCI, MAS, etc.
- Good knowledge of TCP/IP, concepts of OSI layer and protocols, networking and security concepts, Physical & Environmental Security, Asset Security and Identity & Access Management.
- Good knowledge of OS (Windows / Linux) security, Database security, IT infrastructure (switches, routers, firewalls, IDS, IPS, etc.), Security architecture design, and review.
- Good familiarity with OWASP, and Secure SDLC standards/frameworks, anti-virus solutions (e.g., Symantec, McAfee, etc.).
- Good experience in LAN/WAN architectures and reviews.
- Good knowledge of incident management, disaster recovery, and business continuity management, cryptography.
- Experience in IT Risk and Compliance
Benefits
- Support, coaching, and feedback from colleagues
- Opportunities to develop new skills and progress your career
- The freedom and flexibility to handle your role in a way that’s right for you