Deloitte & Touche LLP's ("Deloitte Advisory's") business has a risk-based approach, experienced professionals, comprehensive methodologies, and technical resources. Deloitte Advisory's services combine competency and experience in the areas of financial reporting, risk management, and compliance.
Want to work at the one of the fastest growing and industry leading security firms that will give you an enriching experience to build your career and brand? If yes then look no further, Deloitte's Cyber Risk Services is THE place for you.
Our Cyber Risk Services practice has almost 2,500 professionals focused on specific industries and sectors and we help our clients to focus on improving cyber risk detection and responding more rapidly and effectively to reduce the impact of cyber risks through our unique Secure. Vigilant. Resilient approach. Our capabilities across disciplines such as IT strategy, program management, cyber security, service delivery and operations, third party management, data management, application management, service continuity management, financial management and talent management allows us to define an approach that can efficiently and effectively manage cyber risks. Through our capabilities, we have been widely recognized and acknowledged as the leader in information security consulting by prominent analyst firms - including Forrester, Kennedy and Gartner.
As a leading professional services firm, we strive for you to have a rewarding career on every level. In addition to challenging and meaningful work, you'll have the chance to give back to your community, make a positive impact on the environment, participate in a range of diversity and inclusion initiatives, and find the support, coaching, and training it takes to advance your career. Our commitment to individual choice lets you customize aspects of your career path, your educational opportunities and your benefits. And our culture of innovation means your ideas on how to improve our business and your clients' will be heard.
Demonstrate advanced understanding and cyber risk management in at least two of the following areas:
Application security with experience in security tool integration into continuous integration/continuous delivery (CI/CD) pipelines
New product development (NPD) of connected products integrating security into the product development lifecycle
Embedded systems security
Internet of Things (IOT) architecture and security
Demonstrate advanced understanding of business processes and cyber risk management in two or more areas such as:
Product security strategy and risk management
Research and development
Security event and incident monitoring and response
Cross-industry regulatory landscape
Third party risk management
Familiarity with industry standards and regulatory requirements around product security and secure software development
Design and build product security organizations in alignment with industry leading practices and frameworks
Identify and evaluate cybersecurity weaknesses in product design and support product teams in remediation strategy
Oversee client projects and team members in the delivery of those projects, including project management, subject matter advisory, client relationship management, and financials monitoring
Design product security service methodologies to serve our clients across industry verticals
Demonstrate problem solving, critical thinking and logical structuring skills
Assist in the selection and tailoring of approaches, methods, and tools to support service offering or industry projects
Actively participate in decision making with engagement management and seek to understand the broader impact of current decisions
Facilitate use of technology-based tools or methodologies to review, design and/or implement products and services
Identify opportunities to improve engagement profitability and manage engagement economics
Demonstrate ability to identify and address client needs: building solid relationships with clients; developing an awareness of Firm services; communicating with the client in an organized and knowledgeable manner; delivering clear requests for information; demonstrating flexibility in prioritizing and completing tasks; and communicating potential conflicts to the manager
Demonstrate a general knowledge of market trends, competitor activities, Deloitte Advisory products and service lines
5+ years of product security experience in critical infrastructure sectors, including secure architecture design and vulnerability management
3+ years of research and development experience
2+ years of cloud security and infrastructure experience
BA/BS in cyber security, information security, engineering, computer science, information technology, information management, information sciences, business administration, or related field preferred
CISSP, CSSLP, CCSP, CIPP/US certifications a plus
Prior research and development experience desired
Prior Big 4 or other consulting experience desired
Excellent verbal and written communication
Willingness to travel - Up to 50%
Must be legally authorized to work in the United States without the need for employer sponsorship, now or at any time in the future
Internal Number: 17090601
At Deloitte, our professional development plan focuses on helping people at every level of their career to identify and use their strengths to do their best work every day. From entry-level employees to senior leaders, we believe there’s always room to learn. We offer opportunities to help sharpen skills in addition to hands-on experience in the global, fast-changing business world. From on-the-job learning experiences to formal development programs at Deloitte University, our professionals have a variety of opportunities to continue to grow throughout their career. At Deloitte, we know that great people make a great organization. We value our people and offer employees a broad range of benefits.Our positive and supportive culture encourages our people to do their best work every day. We celebrate individuals by recognizing their uniqueness and offering them the flexibility to make daily choices that can help them to be healthy, centered, confident, and aware. We offer well-being programs and are continuously looking for new ways to maintain a culture where our people excel and lead healthy, happy lives. Deloitte is led by a purpose: to make an impact that matters. This purpose... defines who we are and extends to relationships with our clients, our people and our communities. We believe that business has the power to inspire and transform. We focus on education, giving, skill-based volunteerism, and leadership to help drive positive social impact in our communities. We want job seekers exploring opportunities at Deloitte to feel prepared and confident. To help you with your interview, we suggest that you do your research: know some background about the organization and the business area you’re applying to.