Cybersecurity Technology Hardening Senior Manager

Cyber Security Information Technology Posted: 18-Feb-2022

Same job available in 52 locations

Atlanta, Georgia, United States

Austin, Texas, United States

Birmingham, United Kingdom, United Kingdom

Boca Raton, Florida, United States

Boise, Idaho, United States

Buffalo, New York, United States

Camp Hill, Pennsylvania, United States

Cedar Rapids, Iowa, United States

Charlotte, North Carolina, United States

Cincinnati, Ohio, United States

Columbus, Ohio, United States

Dallas, Texas, United States

Dayton, Ohio, United States

Des Moines, Iowa, United States

Detroit, Michigan, United States

Greensboro, North Carolina, United States

Harrisburg, Pennsylvania, United States

Hermitage, Tennessee, United States

Houston, Texas, United States

Indianapolis, Indiana, United States

Jacksonville, Florida, United States

Kansas City, Missouri, United States

Las Vegas, Nevada, United States

London, United Kingdom, United Kingdom

Memphis, Tennessee, United States

Miami, Florida, United States

Montreal, Quebec, Canada

Nashville, Tennessee, United States

New Orleans, Louisiana, United States

Omaha, Nebraska, United States

Orlando, Florida, United States

Ottawa, Ontario, Canada

Phoenix, Arizona, United States

Pittsburgh, Pennsylvania, United States

Portland, Oregon, United States

Prince Albert, Saskatchewan, Canada

Quebec City, Quebec, Canada

Raleigh, North Carolina, United States

Regina, Saskatchewan, Canada

Richmond, Virginia, United States

Rochester, New York, United States

Salt Lake City, Utah, United States

San Antonio, Texas, United States

Saskatoon, Saskatchewan, Canada

St. Louis, Missouri, United States

Tallahassee, Florida, United States

Toronto, Ontario, Canada

Tulsa, Oklahoma, United States

Vancouver, British Columbia, Canada

Victoria, British Columbia, Canada

Windsor, Ontario, Canada

Winnipeg, Manitoba, Canada

Position summary:

Do you thrive on developing creative and innovative insights to solve complex challenges? Want to work on next-generation, cutting-edge products and services that deliver outstanding value and that are global in vision and scope? Work with other experts in your field? Work for a world-class organization that provides an exceptional career experience with an inclusive and collaborative culture? 

Want to make an impact that matters? Consider Deloitte Global.

Work you'll do

This role is responsible for day to day leadership of the Global Cybersecurity Technology Hardening Practices program where you will lead, develop, and maintain the program strategy as well as a prioritised leadership approved roadmap of documented infrastructure and end user technology hardening practices. From a Strategic perspective this role requires:
  • Monitoring of security blogs, articles, and reports and remain current on related laws, regulations, and industry standards to keep up to date on the latest security risks, threats, and technology trends.  
  • Providing leadership, mentorship, and career development support to all members of the Global Cybersecurity Technology Hardening Practices team
  • Creating, developing and maintaining strong relationships with key leaders across multiple technical and non-technical DTTL networks, understanding system administrator and end user needs, including potential impact hardening practices may have on their day-to-day roles and Deloitte’s ability to serve clients.
From a Tactical perspective this role requires Leadership in the following areas:
  • Translation of global information security policy requirements and standards 
  • In-depth vulnerability management analysis to identify required hardening practices as well as testing and validation of proposed hardening practices, factoring in system and practitioner impact and cost across Deloitte
  • Oversight and assurance of cybersecurity hardening practices in development and deployment through to system/project go-live
  • Input and subject matter expert (SME) review of new and updated Cybersecurity policies and standards
  • Governance materials preparation and support for hardening practice documents through the global governance process
  • Working with the Cyber Defense group and the Security Operations Center to lead the evaluation of the effectiveness of the hardening practices in relation to actual intrusions seen on the Deloitte network, reported threats at peer organizations and overall cybersecurity threats in the Internet ecosystem
  • Collaborating with the Global Cybersecurity Strategy and Governance team (who oversee the creation of cyber standards and policies), Shared Security Services Team (who run security services) and Security Architecture Manager to ensure hardening practices align with approved security policies, standards, and architecture patterns

What you'll be part of - our Deloitte Global Culture:

At Deloitte, we expect results. Incredible—tangible—results. And Deloitte Global professionals play a unique role in delivering those results. We reach across disciplines and borders to serve our global organization. We are the engine of Deloitte. We develop and implement global strategies and provide programs and services that unite our network.

In Deloitte Global, everyone has opportunities. We see the importance of your perspective and your ability to create value. We want you to fit in—with an inclusive culture, focus on work-life fit and well-being, and a supportive, connected environment; but we also want you to stand out—with opportunities to have a strategic impact, innovate, and take the risks necessary to make your mark.

Who you'll work with:

Deloitte Technology works at the forefront of technology development and processes to support and protect Deloitte around the world. In this truly global environment, we operate not in "what is" but rather "what can be" to help Deloitte deliver and connect with its clients, its communities, and one another in ways not previously conceived.

Qualifications:

Education and Work Experience
  • Bachelor’s degree in computer science, cybersecurity, other technology-related fields, or equivalent education-related experience.
  • Minimum of 7-10 years of combined experience in cybersecurity and / or solution design in an information security context.
  • Minimum 4 years holding a leadership or management role in a highly complex and global organization focused on:
    • Driving information / cybersecurity strategy /  implementation of a tailored governance framework
    • Developing and driving security requirements across a broad spectrum of infrastructure and end user computing technologies
Skills 
  • Excellent interpersonal and collaborative skills, with ability to communicate strategic information security topics, policies, and standards as well as risk-related concepts to technical and nontechnical audiences at various hierarchical levels
  • Thorough knowledge of business management and an expert knowledge of information / cybersecurity engineering and solution design and the ability to translate those into clearly documented security hardening practices
  • Ability to work effectively to manage a global team in a matrix environment and meet tight deadlines in a fast-paced environment and reprioritize work while providing a world-class customer experience
  • Knowledge of the following:
    • Risk management processes (e.g., methods for assessing and mitigating risk) and cybersecurity (relevant to confidentiality, integrity, availability, authentication, non-repudiation)
    • Systems testing, evaluation methods, and countermeasures for identified security risks
    • Network security architecture concepts including topology, protocols, components, and principles (e.g., application of defense-indepth)
    • Network protocols, GWAN and WAN technologies and fundamental networking skills (TCP, IP, IDS/IPS, virtualization, etc.)
    • Common information security management frameworks, such as ISO/IEC 27001, COBIT, and NIST, including 800-53 and the NIST Cybersecurity Framework
  • Skills in designing and validating security controls based on cybersecurity objectives, discerning the protection needs (i.e., security controls) of information systems and networks and conducting audits or reviews of technical systems.
Certifications
  • Professional security management certifications strongly desirable, such as (CISSP), (CISM), or other similar credentials
  • Member of IISP or have the qualification, skills, and experience to become a member
  • Relevant technical certification preferred (CISSP-ISSEP, CEH, CCNP Security, GSEC)
Other Qualifications:
  • Master’s degree preferred

How you'll grow:

Deloitte Global inspires leaders at every level. We believe in investing in you, helping you embrace leadership opportunities at every step of your career, and helping you identify and hone your unique strengths. We encourage you to grow by providing formal and informal development programs, coaching and mentoring, and on-the-job challenges. We want you to ask questions, take chances, and explore the possible.

Benefits you'll receive:

Deloitte’s Total Rewards program reflects our continued commitment to lead from the front in everything we do—that’s why we take pride in offering a comprehensive variety of programs and resources to support your health and well-being needs. We provide the benefits, competitive compensation, and recognition to help sustain your efforts in making an impact that matters.

Corporate citizenship:

Deloitte is led by a purpose: to make an impact that matters. This purpose defines who we are and extends to relationships with our clients, our people, and our communities. We believe that business has the power to inspire and transform. We focus on education, giving, skill-based volunteerism, and leadership to help drive positive social impact in our communities.