At EY, we're all in to shape your future with confidence.
We'll help you succeed in a globally connected powerhouse of diverse teams and take your career wherever you want it to go. Join EY and help to build a better working world.
Protecting the EY services on which our clients rely is fundamental to EY's ability to deliver value, meet client commitments, and preserve trust. As part of EY Information Security, this role is focused on ensuring that EY's client-facing services, platforms, applications, and technology capabilities remain resilient, dependable, and aligned to client expectations for continuity and recovery.
You will be part of a global Information Security organization of nearly 900 professionals who collaborate to ensure EY services are secure, resilient, and available. Our teams enable the secure and uninterrupted delivery of EY services, proactively manage risk, and respond rapidly to incidents to minimize disruption to client engagements and the business. Together, we help protect the EY brand and reinforce the confidence clients place in EY to support their most critical business needs.
Across Information Security, we integrate risk strategy, digital identity, cyber defense, application security, business continuity, and technology solutions to protect services throughout their lifecycle. Our work enables EY to deliver services with confidence-balancing resilience, speed to market, and long-term client value.
The Opportunity
The Technology Assurance, Risk & Policy (TARP) function establishes and maintains EY Technologies' risk management framework, processes, tooling, and strategy. Within TARP, the Business Continuity and Crisis Management (BCCM) team plays a critical role in ensuring EY services meet our internal and client expectations for continuity, recoverability, and operational resilience.
As client expectations continue to evolve, this role directly supports EY's commitment to delivering reliable, resilient services by partnering with client-serving teams to assess, design, and maintain business continuity and disaster recovery capabilities that align with both EY standards and client-defined requirements.
Your Key Responsibilities
As a Client Engagements Business Continuity Leader, you will work closely with client service account teams, EY Technology, and risk stakeholders to ensure EY services supporting client engagements meet agreed continuity and recovery expectations.
Key responsibilities include:
Directing and partnering with client service account teams and EY Technology teams to develop, maintain, and validate business continuity and disaster recovery programs for EY services on which clients depend.
Understanding client-defined business continuity and disaster recovery requirements and translating those requirements into clearly defined execution expectations by assessing EY's current recovery capabilities against those expectations.
Identifying gaps, risks, or limitations that could impact client confidence or service delivery and leading cross-team efforts to define remediation strategies.
Supporting and overseeing development of client-specific Business Continuity Plans (BCPs), Disaster Recovery Plans (DRPs), and testing strategies that align with client requirements and EY's BCCM policies and standards.
Consulting with and providing authoritative guidance to technology, risk, and operational teams to ensure continuity controls are implemented consistently and effectively across client-supporting applications and services.
Managing and tracking remediation activities related to business continuity and resilience risks impacting client services, holding contributing teams accountable for delivery against agreed commitments.
Driving delivery of agreed roadmaps and workstreams with a strong focus on execution, accountability, measurable outcomes, and deadlines in a fast-paced, client-driven environment.
Leadership & Stakeholder Governance
While this role does not include direct people management responsibilities, it carries significant indirect supervisory accountability across engagement teams, service lines, technology, and risk functions. In a dotted-line capacity, the Client Engagements Business Continuity Leader is expected to:
Set and communicate clear expectations for business continuity and disaster recovery outcomes by defining scope, timelines, quality standards, success criteria, and required deliverables across engagement teams and supporting functions.
Coordinate and align activities across multiple teams to ensure integrated, end-to-end delivery of client-specific continuity and resilience outcomes.
Serve as the single point of accountability for execution of agreed continuity remediation plans, regardless of where work is performed.
Oversee execution by monitoring progress, identifying delivery risks or delays, intervening to course-correct where necessary, and escalating blockers or competing priorities to ensure commitments are met.
Provide ongoing guidance, coaching, and subject-matter direction to teams performing BC/DR activities to ensure alignment with leading practices, EY standards, and client requirements.
Enable sustainable capability by transferring knowledge, frameworks, tools, and best practices, reinforcing expectations through targeted education, structured feedback, and continuous engagement.
Influence prioritization decisions across service lines and technology teams when continuity risks present material client, regulatory, or reputational exposure.
Escalate execution issues, resource constraints, and risk acceptance decisions to senior leaders when outcomes are at risk, and objectively represent execution status, risks, dependencies, and required decisions to stakeholders.
Operate effectively within a matrixed environment by balancing influence, collaboration, and constructive challenge to achieve outcomes without formal authority.
Model inclusive, respectful leadership while maintaining firmness on risk, compliance, accountability, and delivery expectations, serving as a role model for transparency and disciplined execution across dotted-line relationships.
Lead strategic conversations with senior business and technology stakeholders by structuring ambiguous resilience issues, communicating risks and tradeoffs clearly, negotiating practical paths forward, and driving alignment with established BC/DR policies and procedures.
Service Quality:
Ensure the high-quality delivery of services to senior business stakeholders, reinforcing execution discipline and accountability for continuity outcomes, emphasizing risk management leading practices.
Maintain Client-focused mindset with the ability to assess risk through the lens of service reliability, engagement impact, and client confidence.
Strategic Relationship Management:
Foster relationships with senior executive stakeholders by establishing trust as a business advisor, while guiding teams to align mitigation strategies to client contractual requirements. Work closely with different Service Lines to tailor risk mitigation strategies to their unique needs as determined by client contractual requirements. This requires understanding their business and technological needs, dependencies, and the potential threats they face.
Risk Management:
Coordinate with BCCM and technology teams to assess potential technology risks facing the client service team's capabilities by leveraging the TARP methodology in alignment with the Service Line risk and business priorities, directing execution of agreed assessment and remediation activities. Seek opportunities for improvement or mitigation of business interruption and other risks caused by business, regulatory, or industry-specific change initiatives.
Identify opportunities to reduce business interruption risk arising from regulatory, industry, technology, or operational change, ensuring
