Assistant Manager - Risk Consulting - Digital Risk

Assistant Manager, Digital Risk, Operational Technology

EY is looking for an experienced and passionate Digital Risk professional specializing in Operational Technology (OT), Industrial Control Systems (ICS), and IoT/IIoT. This role is part of a globally connected Digital Risk practice focused on helping organizations manage and mitigate risks across their industrial and mission-critical environments.

You will be supporting national critical infrastructure clients in managing digital risks that go beyond traditional IT—ensuring operational resilience, regulatory compliance, and strategic risk visibility. The ideal candidate brings strong technical and risk experience in OT/ICS environments and a passion for helping organizations transform securely.

As an Assistant Manager in EY’s Digital Risk team, you will play an active role in the successful delivery of client engagements, contribute trusted advice, and support continuous improvement of risk and resilience postures. You’ll draw on your skills and experience to deliver actionable insights, tailor risk practices to complex environments, and deepen your knowledge across emerging digital risk domains.

You will be part of a high-performing and fast-growing team, building your capability as a trusted advisor. A proactive mindset, team spirit, and the ability to influence others are key to succeeding in this role.

You will also be expected to invest in continuous learning and contribute to thought leadership by participating in events, panels, and knowledge publications under the guidance of the leadership team.

The opportunity

At EY, we are investing significantly in improving our Digital Risk practice across MENA. As clients navigate AI, OT transformation, and digital convergence, the need for strong, forward-looking risk capabilities has never been higher.

We are expanding our Digital Operational Risk services in the region and looking for an Assistant Manager – OT Risk to join our Risk Consulting team in Riyadh. While the role is based in Saudi Arabia, you’ll be expected to travel across the GCC and wider MENA region, with occasional international engagements (up to 50–80%).

Your Key Responsibilities

The majority of your time will be spent delivering Digital Risk engagements. You’ll participate in client delivery with support from senior team members, and contribute to proposals, presentations, and go-to-market initiatives.

You will be responsible for:

• Supporting and executing OT risk assessments, control design, and gap analysis
• Delivering maturity assessments and developing OT risk remediation strategies
• Evaluating digital risks to SCADA, DCS, Smart Grids, DMS, and ECS system architecture
• Helping clients define and implement OT risk governance frameworks aligned with ISA/IEC 62443, NIST 800-82, and industry best practices.
• Identifying and mitigating risks linked to convergence between IT, OT, and IoT systems.
• Supporting clients in designing OT risk dashboards, metrics, and reporting for governance committees
• Ensuring high-quality and timely delivery across your assigned workstreams.
  
  

To qualify for the role, you must have.

• 5+ years of experience in OT/ICS environments and/or industrial digital risk, preferably within Oil & Gas, Power, Utilities, or Transportation
• Solid understanding of OT/ICS security, controls, and architecture
• Knowledge of products and technologies from Honeywell, GE, Siemens, ABB, Schneider, etc.
• Familiarity with ICS protocols and plant environments (SCADA, DCS, PLC, RTU, HMI)
• Understanding of OT-related risk domains: safety, process integrity, downtime risk, regulatory exposure
• Experience in evaluating and implementing OT controls (e.g., segmentation, firewalls, remote access protection)
• Exposure to OT/IIoT risk regulations and frameworks: ISA/IEC 62443, NIST 800-82, ISO 27019, NERC-CIP
• Awareness of digital risk issues related to operational disruptions, third-party risks, and legacy system exposure.
• Technical certifications (GICSP, ISA99/IEC 62443, ISO 27001, or equivalent)
• Arabic and English fluency (written and spoken)
  
  

Skills And Attributes For Success

• A passion for OT environments, digital risk, and resilience
• Solid technical foundation in ICS/OT technologies and communication protocols
• Ability to simplify complex concepts and communicate risk in business language.
• Positive energy, high accountability, and a collaborative mindset
• Strong writing, documentation, and presentation skills
• Consulting experience or client-facing delivery is preferred.
  
  

Qualifications

• Bachelor’s degree in Electronics Engineering, Electrical, Mechatronics, Industrial Automation, or related field
• Willingness to pursue or hold professional certifications:
• ISA/IEC 62443
• GICSP
• ISO 27001
• CISSP, CISM, CRISC (optional but valuable)
  
  

What We Look For

We’re looking for professionals who want to build a career in Digital Risk—who understand the business-critical nature of OT environments and want to make a real impact by helping clients manage their most operationally sensitive risks.

You should be confident engaging both engineers and executives, and passionate about helping clients embed risk-aware decision-making in their operations.

What We Offer

We offer a competitive compensation package where you’ll be recognized for your performance and the value you bring. In addition, you’ll benefit from:

• Continuous learning: Build future-focused skills through the EY Tech MBA (fully sponsored)
• Academic excellence: Access to world-class learning platforms and certifications
• Success as defined by you: A career that adapts to your goals and ambitions.
• Transformative leadership: Insightful mentorship to help you grow faster.
• Diverse and inclusive culture: Be your authentic self, make your voice heard.
  
  

If you can demonstrate that you meet the criteria above, we encourage you to submit your application.

The Exceptional EY Experience. It’s Yours To Build.

EY | Building a better working world.

EY exists to build a better working world, helping to create long-term value for clients, people and society and build trust in the capital markets.

Enabled by data and technology, diverse EY teams in over 150 countries provide trust through assurance and help clients grow, transform, and operate.

Working across assurance, consulting, law, strategy, tax and transactions, EY teams ask better questions to find new answers for the complex issues facing our world today.