Job Description
At EY, we’re all in to shape your future with confidence. We’ll help you succeed in a globally connected powerhouse of diverse teams and take your career wherever you want it to go. Join EY and help to build a better working world. The Opportunity As a Senior Manager in Cybersecurity Strategy, Risk & Compliance within EY’s Government & Public Sector (GPS) practice, you will serve as a Cybersecurity Lead for State and Local government clients, leading both business development and delivery across EY’s cybersecurity capabilities. This role blends executive‑level cybersecurity advisory, strategy and delivery leadership, and business development ownership across highly regulated public sector environments. As a State and Local focused Cybersecurity Strategy Senior Manager, you will act as the primary front door for cybersecurity with State and Local clients, engaging credibly with executive stakeholders across multiple cybersecurity functional areas. You will originate opportunities, shape integrated multi‑disciplinary solutions, and drive sustained revenue growth—while retaining accountability for delivery quality, outcomes, and client impact. Your Key Responsibilities Cybersecurity Leadership (State & Local) Serve as the Cybersecurity Lead for assigned State and Local government clients and pursuits, acting as the primary executive‑level interface across EY’s cybersecurity capabilities. Lead client conversations and solution shaping across cybersecurity competency areas, including: Cyber Risk, Compliance & Resilience Data Protection & Privacy Digital Identity & Privileged Access Management Cyber Architecture, OT & Engineering Cyber Threat Management, Detection & Response Shape integrated, end‑to‑end cybersecurity programs by orchestrating the right mix of strategy, risk, compliance, architecture, engineering, operations, and resilience capabilities. Act as a single point of accountability for cybersecurity strategy and delivery, engaging specialists as needed while retaining overall client and program ownership for assigned State and Local government clients. Cybersecurity Strategy & Executive Advisory Advise senior State and Local executives (CISO, CIO, CRO, agency leadership) on enterprise cybersecurity strategy, risk posture, governance, and investment prioritization. Lead the development of enterprise cybersecurity strategies, target operating models, and multi‑year roadmaps aligned to mission objectives, statutory and regulatory obligations, and funding realities. Provide executive‑level guidance that connects cybersecurity investments to operational resilience, service continuity, and public trust. Translate complex cyber risks into business‑ and mission‑level insights to support executive decision‑making and oversight. Cybersecurity Strategy & Delivery Lead the strategy, design, and delivery of cybersecurity programs across EY’s cybersecurity competency areas, based on client needs, risk posture, and mission priorities. Own end‑to‑end execution of cybersecurity initiatives spanning strategy, governance, risk, compliance, architecture, engineering, operations, identity, data protection, threat management, and resilience. Define enterprise‑level cybersecurity strategies, target operating models, and transformation roadmaps, and guide clients through execution across multiple functional domains. Serve as the integrating delivery leader, coordinating across specialized cybersecurity teams to deliver cohesive, outcome‑oriented solutions. Maintain accountability for delivery quality, outcomes, and realization of intended business and mission benefits, regardless of the specific cybersecurity domain in scope. Ensure adherence to EY risk management, independence, and quality standards across all engagements. Oversee development of governance artefacts, assessments, and documentation supporting audits, regulatory reviews, and client oversight. Support clients in sustaining compliance and resilience amid evolving cyber threats, technologies, and regulatory expectations. Business Development & Practice Growth (State & Local Focus) Lead business development efforts across for State and Local government clients. Originate opportunities by building trusted relationships with state agencies, counties, cities, and authorities, and by understanding jurisdiction‑specific cyber risks, regulatory drivers, and funding constraints. Own and lead end‑to‑end pursuits, including: Opportunity identification, shaping, and qualification Integrated solution design across multiple cybersecurit