Senior Consultant Security Assessor At EY, we’re all in to shape your future with confidence. We’ll help you succeed in a globally connected powerhouse of diverse teams and take your career wherever you want it to go. Join EY and help to build a better working world.
The opportunity The Senior Consultant Cyber Security Assessor delivers Essential Eight maturity assessments and contributes to broader assurance engagements across Federal Government, Defence and regulated industry clients. The role is responsible for executing end-to-end assessment activities for defined workstreams, including evidence collection, control validation and development of findings. This position requires a strong understanding of assurance principles, government security frameworks and technical control environments. The Senior Consultant operates with a high degree of autonomy while supporting engagement leads and mentoring junior team members. This is a hybrid position based in Canberra – Ngambri. Our roles can potentially be adjusted to work flexibly with reduced hours. Please speak with us about potential options.
Your Key Responsibilities
Deliver Essential Eight assessment activities for assigned workstreams from planning through to reporting
Conduct detailed document reviews and onsite validation of security controls
Assess design and operating effectiveness of controls against maturity requirements
Develop clear and defensible findings, evidence summaries and remediation recommendations
Engage directly with client stakeholders to validate control implementation
Contribute to development of assessment reports and executive level outputs
Provide guidance and oversight to Consultants, supporting quality and consistency
Support continuous improvement of assessment methodologies and delivery approaches
Project and Program Management
Manage assigned workstream activities including planning, scheduling and task coordination
Track delivery progress against milestones and elevate risks or issues where required
Support engagement leads in maintaining delivery governance and reporting
Contribute to coordination of assessment activities across multiple stakeholders
Essential Eight and Framework Experience
Strong working knowledge of the Essential Eight maturity model and assessment practices
Practical understanding of the ISM and Australian Government security requirements
Experience applying complementary frameworks such as NIST and ISO 27001
Ability to assess technical environments and align findings to multiple framework requirements
Experience and Qualifications
Four to seven years’ experience in cyber security, risk or assurance roles
Demonstrated experience contributing to or delivering security assessments
Experience working in government or regulated environments desirable
Background in audit, assurance or control testing highly regarded
Industry certifications such as CISA, CISSP, CISM or ISO 27001 Auditor desirable
Tertiary qualification in information security, IT or related discipline
Additional Skills and Attributes
Strong analytical capability with ability to assess control effectiveness
Ability to operate independently and manage defined deliverables
Confident engagement with both technical and business stakeholders
High level of professionalism, integrity and accountability
Structured and outcomes focused approach to delivery
What we offer you
Career development: At EY, your career is yours to shape! We’ll develop you with future-focused skills and equip you with world-class experiences ey.com/au/careerdevelopment
Flexible work arrangements: Our flexible work policies empower you to balance your professional and personal life, fostering a culture of trust and autonomy.
A comprehensive benefits package: From a yearly wellness incentive, to access to additional 8 weeks of flex leave per year, and family-friendly policies, including up to 26 weeks of gender-neutral paid parental leave, we cater to your diverse needs to help you thrive both personally and professionally www.ey.com/au/benefits
Salary: We offer a competitive salary which is open to negotiation pending on skills and experience.
Inclusiveness and Equal Opportunity Inclusiveness is core to who we are and how we work together, driving value for our people and for our business. We encourage applications from people of all ages, nationalities, abilities, cultures, sexual orientations, and gender identities and are committed to providing an equitable and barrier free recruitment experience for all. We encourage you to share any support and adjustments you need to be your best and participate equitably in our recruitment process. We understand sharing your needs with us can be daunting, so if you have questions before or during your application, we welcome you to get in touch at contactrecruitment@au.ey.com or +61 3 8650 7788 (option 2). Anything you tell us will be kept completely confidential.
Acknowledgement of Country EY acknowledges the Traditional Owners and Custodians of the lands on which EY offices are located around Australia. We pay our respects to their cultures, and to their Elders — past, present, and emerging. Find out more about our vision for reconciliation at ey.com/en_au/careers/indigenous
EY | Building a better working world
All rights reserved 2026 Ernst & Young Australia. A member firm of Ernst & Young Global Limited.
#J-18808-Ljbffr