Deloitte & Touche LLP seeks a Advisory Senior Consultant in New York, NY.
Work You'll Do
Advisory Senior Consultant in Cyber Risk to identify and evaluate complex business and technology risks, internal controls that mitigate risks, and related opportunities for internal control improvement. Assist in the selection and tailoring of approaches, methods, and tools to support service offerings or industry projects. Use technology-based tools or methodologies to review, design, and/or implement products and services. Construct and assess high-level and detailed security programs translating business needs and regulatory requirements into cost effective and risk appropriate controls. Identify opportunities to improve engagement profitability. Understand clients' business environment and basic risk management approaches. Develop information security strategies and plans based upon generally accepted security standards. Utilize knowledge of business processes, internal control risk management, IT controls, business and information technology management processes, and market trends on client engagements. Generate innovative ideas and participate in decision making with engagement management. Build and nurture strong client relationships.
Bachelor's (or higher) degree in Computer Science, Information Systems, Computer Engineering, Math, or related field (willing to accept foreign education equivalent).
Eighteen months of cyber risk experience, including cyber simulation exercises, cyber incident response gap analyses, and cyber risk assessments.
Experience must include eighteen months of:
Conceptualizing, designing, and supporting delivery of highly sophisticated cyber simulation exercises (also called war games or tabletop exercises);
Customizing cyber-attack scenarios to meet clients' specific business objectives using knowledge of cyber-threat actors, attack methods, exploits, malware, and the tactics, techniques, and procedures (TTPs) used by cyber threat actors;
Evaluating clients' crisis response preparedness, including cyber incident response, and identifying gaps in incident response documentation, response governance structures, and crisis communication capabilities;
Assessing clients' cyber risk strategies, processes, and security controls; and identifying gaps in relation to leading security frameworks and standards, including NIST (National Institute of Standards and Technology), ITIL (Information Technology Infrastructure Library), and COBIT (Control Objectives for Information and Related Technologies);
Conducting cybersecurity maturity assessments against NIST and ISO to identify gaps and vulnerabilities in clients' current-state cybersecurity programs;
Coordinating cross-functional teams, both on-shore and off-shore; and
Mentoring and coaching junior team members.
- Position requires approximately 80% travel.
At Deloitte, we know that great people make a great organization. We value our people and offer employees a broad range of benefits. Learn more about what working at Deloitte can mean for you.
Our positive and supportive culture encourages our people to do their best work every day. We celebrate individuals by recognizing their uniqueness and offering them the flexibility to make daily choices that can help them to be healthy, centered, confident, and aware. We offer well-being programs and are continuously looking for new ways to maintain a culture where our people excel and lead healthy, happy lives. Learn more about Life at Deloitte.
Deloitte is led by a purpose: to make an impact that matters. This purpose defines who we are and extends to relationships with our clients, our people and our communities. We believe that business has the power to inspire and transform. We focus on education, giving, skill-based volunteerism, and leadership to help drive positive social impact in our communities. Learn more about Deloitte's impact on the world.
We want job seekers exploring opportunities at Deloitte to feel prepared and confident. To help you with your interview, we suggest that you do your research: know some background about the organization and the business area you're applying to. We also suggest that you brush up on your behavioral and case interviewing skills and practice discussing your experience and job history with a family member, friend, or mentor. Check out recruiting tips from Deloitte professionals.
As used in this posting, “Deloitte Advisory” means Deloitte & Touche LLP, which provides audit and enterprise risk services; Deloitte Financial Advisory Services LLP, which provides forensic, dispute, and other consulting services; and its affiliate, Deloitte Transactions and Business Analytics LLP, which provides a wide range of advisory and analytics services. Deloitte Transactions and Business Analytics LLP is not a certified public accounting firm. Please see www.deloitte.com/us/about for a detailed description of the legal structure of Deloitte LLP and its subsidiaries. These entities are separate subsidiaries of Deloitte LLP.
All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, age, disability or protected veteran status, or any other legally protected basis, in accordance with applicable law.
Requisition code: XSFH20FA1119NYC1
Apply on company website