Back to search results
Back to search results

Position Summary

Deloitte: Information Security, Risk, and Governance Senior Analyst

Do you have the drive to engage in cyber security risk & compliance to protect organizations from potential security exposures or threats? If your answer is yes, we have the right opportunity for you!

Work you’ll do

Cyber Security Senior Analyst would be part of Cyber Security team and would actively engage in implementing our vendor information security risk management program for achieving firm’s GRC objectives. As part of this team, you will be assisting in reviewing and assessing vendor’s information security program, processes and controls to identify weaknesses in their information system and discover potential threats to Deloitte and its assets. You would be reporting assessment results to necessary stakeholders, following up on remediation plan, ensuring timely remediation and providing appropriate recommendations to the vendor for ensuring adequate protection of Deloitte information assets. You would collaborate and coordinate with various key stakeholders, both onshore and offshore, such as vendors, internal business clients, internal teams, SMEs and Cyber Security management. 

You will also ensure optimal performance and tuning of Cyber Security program through continuous improvement. 

You will also be participating in defining, creating and implementing Information Security

Awareness program and other firm initiatives for promoting overall Cyber Security objectives.

Monitoring external policy compliance, specifically on Deloitte vendors.

Responsible for reviewing and assessing vendor security controls to protect Deloitte facilities, systems (assets and networks) and data.

Responsible for ensuring vendors working within the framework of Deloitte security policies that is being clearly laid out for them.

Maintaining regular communications with vendor risk management team on progress status

Followup with vendors and business teams to ensure timely remediation of assessment findings

Driving security awareness program across the organization and promoting cyber security firm initiatives.

Educational Qualification:

Bachelor’s Degree; 3 to 6 years of relevant experience

Work Experience

Good knowledge of information security principles, policies, processes and practices.

Good knowledge about security controls for cloud services.

Good to have information security program implementation and/or audit experience.

Good to have certifications such as ISO 27001, ISO 27002, ISO 22301, CEH, CISA

Required Skills

 Should be a team player and should be comfortable working in teams.

 Strong interpersonal and communications skills with the ability to communicate effectively at all levels.

The Team

The Cyber Security team works behind the scenes to protect Deloitte practitioners as well as information assets at Deloitte. We take this protective role very seriously, while simultaneously ensuring Deloitte meets client, legal, and regulatory requirements.
Recruiting tips

From developing a stand out resume to putting your best foot forward in the interview, we want you to feel prepared and confident as you explore opportunities at Deloitte. Check out recruiting tips from Deloitte recruiters.
Benefits

At Deloitte, we know that great people make a great organization. We value our people and offer employees a broad range of benefits. Learn more about what working at Deloitte can mean for you.
Our people and culture

Our inclusive culture empowers our people to be who they are, contribute their unique perspectives, and make a difference individually and collectively. It enables us to leverage different ideas and perspectives, and bring more creativity and innovation to help solve our clients' most complex challenges. This makes Deloitte one of the most rewarding places to work.
Our purpose

Deloitte’s purpose is to make an impact that matters for our people, clients, and communities. At Deloitte, purpose is synonymous with how we work every day. It defines who we are. Our purpose comes through in our work with clients that enables impact and value in their organizations, as well as through our own investments, commitments, and actions across areas that help drive positive outcomes for our communities. 
Professional development

From entry-level employees to senior leaders, we believe there’s always room to learn. We offer opportunities to build new skills, take on leadership opportunities and connect and grow through mentorship. From on-the-job learning experiences to formal development programs, our professionals have a variety of opportunities to continue to grow throughout their career.

Requisition code: 209785