Senior Consultant, Cyber, Cloud, FS

Company: EY

Location: Bristol

Posted: April 28th, 2026

Based at our Canary Wharf office in London or Edinburgh office, requiring onsite presence three times per week.

Support high-quality cyber engagements in Financial Services, acting as a trusted advisor, contributing to delivery and business development.

Support delivery of Cyber Security engagements, contributing to cloud and multi‑cloud security solution design across AWS, Azure, and/or GCP.
Assist with configuration and integration of CNAPP/CSPM tools to establish secure baselines, continuous visibility, misconfiguration prevention, and vulnerability/exposure management.
Participate in technical discovery and threat modelling for cloud‑native architectures (containers, Kubernetes, serverless). Translate findings into prioritised remediation actions and user stories.
Contribute to the development of Statements of Work (SOWs), delivery plans, and effort estimates; support pre‑sales activities including RFP responses, demos, and solution architecture workshops.
Produce high‑quality deliverables, review security configurations and policies, and ensure work is completed on time and to EY quality standards.
Create accelerators such as reference architectures, templates, runbooks, and security blueprints to improve consistency and speed across engagements.
Collaborate with alliance partners and product vendors to build familiarity with cloud security tooling and emerging capabilities.
Build strong relationships with clients and internal EY stakeholders across Consulting and other service lines.

Support the development of junior team members through coaching and knowledge sharing.
Provide input into performance feedback and engagement reviews.
Contribute to people initiatives such as recruitment, onboarding, and internal training for Cyber professionals.

Experience supporting or advising Financial Services organisations on cyber security best practice and cloud security risks.
Awareness of UK Financial Services security standards and regulatory expectations.
Hands‑on experience contributing to cloud security architecture and delivery initiatives.
Solid architectural understanding across core cloud services (networking, IAM/workload identity, compute, containers, and data services) on at least one major cloud platform (ideally two).
Practical exposure to CNAPP/CSPM platforms (e.g., Wiz, Prisma Cloud, Microsoft Defender).
Foundational knowledge of Kubernetes security, including RBAC, workload identity, and container image security.
Understanding of secrets management and machine identity.
Strong written and verbal communication skills, with experience producing client‑facing documentation and participating in technical discussions with both engineers and non‑technical stakeholders.
Experience working in consulting or complex, regulated environments.

Exposure to Data Security Posture Management (DSPM).
Experience with Infrastructure as Code and Policy as Code.
Relevant certifications in cloud platforms or security (e.g., AWS/Azure/GCP, CISSP, CCSP, Kubernetes).

Competitive remuneration package based on individual and team performance.
Comprehensive Total Rewards package supporting flexible working and career development.
Continuous learning opportunities.
Leadership development and coaching.
Diverse and inclusive culture.

If you can demonstrate that you meet the criteria above, please contact us as soon as possible.

Apply now.

#J-18808-Ljbffr