Cyber Security Risk Management - Director
Cyber Security Cyber Risk Posted: 31-Mar-2022
Atlanta, Georgia, United States
Cardiff, United Kingdom, United Kingdom
Charlotte, North Carolina, United States
Cincinnati, Ohio, United States
Cleveland, Ohio, United States
Columbus, Ohio, United States
Dallas, Texas, United States
Houston, Texas, United States
London, United Kingdom, United Kingdom
Miami, Florida, United States
Nashville, Tennessee, United States
San Antonio, Texas, United States
Tampa, Florida, United States
Work you'll do
- Defines and maintains the Cybersecurity Risk Management Framework aligned with the Deloitte Enterprise Risk Framework
- Defines and maintains executive and operational cybersecurity metric requirements for consolidated global reporting
- Oversees implementation and operation of cyber risk management processes across Deloitte Global and member firms in line with the Cybersecurity Risk Management Framework, and in close collaboration with Global Risk
- Contributes to, monitors, tests, reviews and constructively challenges IT operational teams and business units on their assessment of cybersecurity risks, including challenging on risk mitigation and management responses
- Creates and maintains a dashboard of security-specific KPIs and KRIs, and reports metrics to leadership
What you'll be part of - our Deloitte Global Culture:
Who you'll work with:
Deloitte Technology works at the forefront of technology development and processes to support and protect Deloitte around the world. In this truly global environment, we operate not in "what is" but rather "what can be" to help Deloitte deliver and connect with its clients, its communities, and one another in ways not previously conceived.
Qualifications:
- Bachelor’s degree or equivalent experience
- 10+ years experience in the Information Security / Cybersecurity domain with a focus on information / cyber risk management
- Minimum five years in a leadership role
- Sound knowledge of business management and an expert knowledge of Information / Cybersecurity Risk Management, metrics and reporting
- Professional certification(s) a plus (Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), Certified Information Systems Auditor (CISA))