Deloitte is one of the leading professional services organizations in the United States, specializing in audit, tax, consulting and financial advisory services with clients in more than 20 industries. We provide powerful business solutions to some of the world s most well-known and respected companies, including more than 75 percent of the Fortune 100.
At Deloitte, you can have a rewarding career on every level. In addition to challenging and meaningful work, you ll have the chance to give back to your community, make a positive impact on the environment, participate in a range of diversity and inclusion initiatives, and find the support, coaching, and training it takes to advance your career. Our commitment to individual choice lets you customize aspects of your career path, your educational opportunities and your benefits. And our culture of innovation means your ideas on how to improve our business and your clients will be heard.
Deloitte & Touche LLPs ("Deloitte & Touches") Audit and Enterprise Risk Services business has a risk-based approach, experienced professionals, comprehensive methodologies, and technical resources. Deloitte & Touches services combine competency and experience in the areas of financial reporting, risk management, and compliance. Providing security across the enterprise - Deloitte & Touches Security and Privacy Services Business models today encourage, and even require, opening boundaries between customers, suppliers, and partners. Technology can enable that openness and is also seen as a means to help achieve compliance with corporate policy and regulation. However, behind this increased accessibility and reliance on technology exists real risks and challenges. Technology can support compliance efforts, act as a business enabler, and provide a foundation to achieving secure systems. Meanwhile complex network environments, global operations, and human beings often challenge an organizations security efforts. The increasing occurrence and complexity of security threats indicate that security has become a business imperative. Managing information risk at the enterprise level enables companies to achieve more efficient and effective security processes and programs. Issues such as stakeholder value, consumer confidence, brand and reputation protection, and legal and regulatory compliance can be addressed. Digital information security is a management issue with global business implications. To succeed in todays network economy requires more than simply a focus on IT issues - it also requires a focus on security strategy and management. Deloitte & Touches Security and Privacy Services practice provides services that address how to take advantage of this dynamic situation while managing risks and are based on an enterprise-wide approach that focuses on security through seven areas:
Application Integrity
Business Continuity Management
Identity & Access Management
Infrastructure & Operations Security
Privacy & Data Protection
Security Management
Vulnerability Management
Job Duties:
Design, development, implementation, and maintenance of enterprise privacy and data protection programs;
Evaluation and implementation of data protection and enabling technologies, such as content monitoring, data leakage prevention, encryption, data redaction, reduction, and obfuscation;
Assist CPOs and CISOs in efforts to become HIPAA, HITECH, PCI DSS, SOX compliant, and achieve continued sustainment over time;
Triage and analysis of and response to data protection incidents, such as privacy/security breach, and identity theft;
Development of metrics, measurements, and internal controls;
Mergers, acquisitions, and divestitures, including due diligence and assessment related to Personally Identifiable Information (PII).
Demonstrate advanced understanding of business processes, and facilitate business process design as it relates to managing data assets and cross-border data transfers
Understand current regulatory environment and related implications to identity management and privacy and data protection compliance
Understand complex business and information technology management processes
Execute advanced services and supervise staff in delivering basic services
Assist in the selection and tailoring of approaches, methods and tools to support service offering or industry projects
Understand clients business environment and basic risk management approaches
Demonstrate a general knowledge of market trends, competitor activities, Deloitte & Touche products and service lines
Actively participate in decision making with engagement management and seek to understand the broader impact of current decisions
Generate innovative ideas and challenge the status quo
Build and nurture positive working relationships with clients with the intention to exceed client expectations
Facilitate use of technology-based tools or methodologies to review, design and/or implement products and services
Identify opportunities to improve engagement profitability
Participate in and actively support mentoring relationships within practice
Relevant Skills:
Demonstrate knowledge in on or more of the following information security domains, including:
Security Governance and Management
Privacy and Data Protection
Policies and Procedures
Information Classification
Access Control
Incident Response
Risk Management
Experience with conducting privacy and data protection impact assessments around Safe Harbor, HIPAA, PCI DSS, SOX
Demonstrated a high level of knowledge associated with data protection and privacy laws, regulations, technologies, emerging trends, developments and best practices.
Familiarity with security industry standards (ISO 17799, NIST 800 series, etc.)
Experience with risk assessments, rationalizing privacy and regulatory requirements, business process mapping, analyzing data flow maps, identifying gaps and suggesting recommendations
Contribute to engagement planning and ensuring that products/deliverables meet contract/work plan specifications. Strong potential for growth and acceptance of additional responsibilities.
About Deloitte
As used in this document, Deloitte means Deloitte LLP and its subsidiaries.
Industry: Financial Services
Discipline: Corp Fin & Strat Planning
Compensation: Doe
Company: Deloitte