Deloitte is one of the leading professional services organizations in the United States, specializing in audit, tax, consulting and financial advisory services with clients in more than 20 industries. We provide powerful business solutions to some of the world s most well-known and respected companies, including more than 75 percent of the Fortune 100.
At Deloitte, you can have a rewarding career on every level. In addition to challenging and meaningful work, you ll have the chance to give back to your community, make a positive impact on the environment, participate in a range of diversity and inclusion initiatives, and find the support, coaching, and training it takes to advance your career. Our commitment to individual choice lets you customize aspects of your career path, your educational opportunities and your benefits. And our culture of innovation means your ideas on how to improve our business and your clients will be heard.
About Deloitte:Deloitte is one of the leading professional services organizations in the United States specializing inaudit,tax,consulting, andfinancial advisory serviceswith clients in more than 20 industries. We provide powerful business solutions to some of the world's most well-known and respected companies, including more than 75 percent of the Fortune 100.
At Deloitte, you can have a rewarding career on every level. In addition to challenging and meaningful work, you'll have the chance to give back to your community, make a positive impact on the environment, participate in a range of diversity and inclusion initiatives, and get the support, coaching, and training it takes to advance your career. Our commitment to individual choice lets you customize everything from your career path to your educational opportunities to your benefits. And our culture of innovation means your ideas on how to improve our business and your clients' will be heard.
Technology Risk
The Technology Risk ("TR") service area is comprised of professionals with a broad range of information technology and management consulting skills in the areas of Risk and Compliance, Security and Privacy, and Capital Markets. These professionals perform assessments, remediation, implementation and integration of end-to-end solutions in these three areas. They also deliver advisory services focused on risk and compliance to IT management and senior executives for both external audit and internal audit clients. TR professionals focus on information systems and technology that manage risk and/or drive operational, financial and regulatory compliance processes; as well as solutions that manage the risk associated with information technology itself.
Cyber Risk Services:Security, privacy, and operational resilience are critical issues facing both public and private organizations today. Cyber Risk Services help organizations in their management of information and technology risks by delivering end-to-end solutions, using proven methodologies and tools in a consistent manner. Our services help organizations address timely and pervasive issues such as identity theft, data security breaches, data leakage, cyber security, and system outages across organizations of various sizes and industries, with the goal of enabling ongoing, secure, and reliable operations across the enterprise.
Job Duties:
* Identify and evaluate business and technology risks, internal controls which mitigate risks, and related opportunities for internal control improvement
* Assist in the selection and tailoring of approaches, methods and tools to support service offering or industry projects
* Actively participate in decision making with engagement management and seek to understand the broader impact of current decisions
* Generate innovative ideas and challenge the status quo
* Facilitate use of technology-based tools or methodologies to review, design and/or implement products and services
* Play substantive/lead role in engagement planning, economics, and billing
* Play substantive role in the training and development of staff
* Evaluate, counsel, mentor and provide feedback on performance of others
* Play substantive/lead role in retention of professionals and in building staff complement, mix, and recruiting
* Play substantive role in enhancing relationships with Deloitte & Touche and Deloitte Tax LLP professionals
* Identify opportunities to cross-sell other services
* Demonstrate a general knowledge of market trends, competitor activities, Deloitte & Touche products and service lines
* Build and nurture positive working relationships with clients with the intention to exceed client expectations
* Understand clients' business environment and complex risk management approaches
* Participate in proposal development efforts
* Participate in "add-on" sales to client
* Proactive leadership of market development initiatives
* Proactive leadership of industry driven activities
* Membership and visibility in professional & civic organizations
* Play substantive/lead role in developing a strong relationship with internal resources
*
Health Care Plan and Providers
Many Healthcare Plan and Providers have felt the heavy impact of various government regulations and have experienced a period of decreasing margins and increasing emphasis on cost controls. Our healthcare professionals enable health care providers (from physicians to integrated delivery systems) to improve the cost effectiveness and quality of their care delivery capabilities
Job Duties:
*
* Demonstrate advanced understanding of business processes and cyber risk management in two or more areas such as:
*
*
* IT strategy
*
* IT program management
*
* Cyber security
*
* Service delivery and operations
*
* Third party management
*
* Data management
*
* Application management/SDLC
*
* Service continuity management
*
*
* Familiarity with security industry standards (ISO 17799/27002, NIST 800 series, GAPP, HITRUST, etc.)
*
* Experience with internal controls, risk assessments, business process and internal IT control testing or operational auditing.
*
* Ability to Identify and evaluate complex business and technology risks and remediation methods to mitigate risks
*
* Demonstrate problem solving, critical thinking and logical structuring skills
*
* CISSP, CISM, or CISA certification a plus
*
Essential functions of a Senior Manager at Deloitte Consulting:
Senior Managers are expected to contribute to the firm's growth and development in a variety of ways, including:
*
* Engagement Management: Lead engagement planning and budgeting; mobilize and manage engagement teams; define deliverable structure and content; facilitate buy-in of proposed solutions from top management levels at the client; direct on-time, quality delivery of work products; manage engagement economics; manage engagement risk.
*
* Client Management: Manage day to day interactions with executive clients and sponsors
*
* Business Development: Develop and maintain contact with top decision makers at key clients; organize and lead pursuit teams; participate and lead aspects of the proposal development process; contribute to the development of proposal pricing strategies
*
* Practice Development & Eminence: Develop practical solutions and methodologies; develop "thoughtware" and "point-of-view" documents; participate in public speaking events; get published in industry periodicals
*
* People Development: Perform role of counselor and coach; provide input and guidance into the staffing process; actively participate in staff recruitment and retention activities; provide leadership and support for delivery teams and staff in local offices
*
* A minimum of 8 years consulting and/or industry experience is required.
*
* A Bachelor's Degree is required.
*
In addition, successful Senior Managers will also have the following preferred skills:
*
* Ability to work independently, manage small engagements or parts of large engagements.
*
* Strong oral and written communication skills, including presentation skills (MS Visio, MS PowerPoint).
*
* Strong problem solving and troubleshooting skills with the ability to exercise mature judgment.
*
* Willingness to mentor junior staff.
*
* An advanced degree is preferred.
*
* A willingness to travel 80-100%25%20of the time.
*
Preferred:
*
* Experience advising client organizations to clinical system implementations and clinical processes to promote a degree of transformation. An understanding of meaningful use strategy and the development of clinical content within that strategy.
*
* Experience working on enterprise system implementation, including change management, project management and software implementation.
*
Required Skills:
* Conducting business and technology focused architecture assessment of client operations and technologies.
* Demonstrating hands-on experience architecting networks and supporting application infrastructure.
* Performing threat modeling and assessing risks and controls
* Developing policies and procedures
* Working independently in challenging environments;
* Planning and implementing technical security controls.
* Demonstrate hands-on experience or, at least a detailed understanding, of comprehensive security programs. This would include technologies and tools, architectures and network and application design, and policies / business aspects of risk.
* Construct and assess high-level and detailed security designs translating business needs and regulatory requirements into cost effective and risk appropriate controls.
* Understand components and application of risk assessment and management methodology.
* Leverage experience and technical knowledge to provide useful and reasonable recommendations to large and mature clients.
Preferred experience in the following:
* Infrastructure-related activities such as facilities, cabling, networking, PBX/telephony, servers, storage, security, databases, and applications.
* An understanding of data center and enterprise system management technologies.
* Demonstrate technical knowledge and ability to implement and configure various controls devices including Firewalls IDS/IPS, content filters and assessment tools.
* Demonstrate a mastery of leading of security frameworks and approaches.
* In addition, we expect this candidate to demonstrate (from prior experience) the following:
* Ability to understand client requirements, both business and technical, client strategic direction, and existing architectures.
* Demonstrate written and verbal communication skills and ability to apply them appropriately in gathering requirements and communicating solutions.
* Ability to develop a strong business relationship with team members, channel partners and clients.
* Ability to use sound judgment in formulating recommendations to internal and client senior management.
Qualifications:
* Minimum of 10+ years system security and controls experience
* Supervisory experience and demonstrated leadership capabilities required
* BA/BS in information technology or related field, MS preferred
* CISSP, CISA, CISM certification a plus.
* ITIL Security Management certification a plus
* ISO17799/27002 certification a plus
* Minimum of six to ten years system security and controls experience
* Prior Big 4 or consulting experience required.
* Prior business development experience
* Excellent verbal and written communication
* Willingness to travel
About Deloitte
As used in this document, Deloitte means Deloitte LLP and its subsidiaries. Please see www.deloitte.com/us/about for a detailed description of the legal structure of Deloitte LLP and its subsidiaries. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, or national origin, disability or protected veteran status, or any other legally protected basis, in accordance with applicable law.
Disclaimer: If you are not reviewing this job posting on our Careers site (careers.deloitte.com) or one of our approved job boards we cannot guarantee the validity of this posting. For a list of our current postings, please visit us at careers.deloitte.com.
Category: Information Technology