Analyst/Senior Analyst – IT Security Deloitte Support Services
Description: The candidate would be responsible for identifying compliance gaps in IT systems, developing remediation plans, onboarding new compliance requirements, monitoring compliance posture, providing technical SME support, and ensuring the integration of secure software development lifecycle (SSDLC) practices into development processes.
SSDLC Reviews:
- Conduct comprehensive reviews of the Secure Software Development Lifecycle (SSDLC) processes to ensure that security is integrated at every stage of software development.
- Collaborate with development teams to identify security requirements, perform threat modeling, and ensure secure coding practices.
- Perform static and dynamic code analysis to identify vulnerabilities and provide remediation guidance.
- Develop and maintain security testing plans, including penetration testing, vulnerability assessments, and code reviews.
- Provide training and support to development teams on secure coding practices and SSDLC best practices.
Vulnerability Management:
- Identify, assess, and prioritize vulnerabilities in the organization's IT systems and applications.
- Coordinate with IT and development teams to ensure timely remediation of identified vulnerabilities.
- Develop and maintain vulnerability management policies, procedures, and standards.
- Utilize vulnerability management tools and platforms to conduct regular scans and assessments.
- Track and report on the status of vulnerability remediation efforts and provide regular updates to management.
- Monitor and track the overall vulnerability posture of the firm, identifying trends and areas for improvement.
- Develop metrics and dashboards to communicate the organization's vulnerability posture to stakeholders.
- Work closely with respective teams for remediation efforts, providing technical expertise and support.
Compliance Management:
- Ensure that the organization's IT systems and processes comply with firm standards and relevant industry standards and regulations, such as ISO 27001.
- Conduct regular compliance assessments and audits to identify gaps and areas for improvement.
- Develop and maintain compliance documentation, including policies, procedures, and audit reports.
- Track and monitor the overall firm compliance posture, creating a single pane of glass/visibility for all compliance monitoring.
- Develop metrics and dashboards to communicate the organization's compliance posture to stakeholders.
Other GRC Responsibilities:
- Monitor and respond to security incidents and alerts, conducting thorough investigations and implementing corrective actions.
- Participate in risk assessments and audits to identify and mitigate security risks.
- Collaborate with other IT and business units to ensure security is integrated into all aspects of the organization's operations.
- Act as a technical subject matter expert (SME) for remediation efforts, providing guidance and support to teams.
- Collaborate with development and IT teams to integrate security requirements into their processes.
- Participate in technical discussions and decision-making processes to ensure security considerations are addressed.
Location: Hyderabad
Shift Timing: 11 am to 8 pm
How you’ll grow
At Deloitte, we’ve invested a great deal to create a rich environment in which our professionals can grow. We want all our people to develop in their own way, playing to their own strengths as they hone their leadership skills. And, as a part of our efforts, we provide our professionals with a variety of learning and networking opportunities—including exposure to leaders, sponsors, coaches, and challenging assignments—to help accelerate their careers along the way. No two people learn in exactly the same way. So, we provide a range of resources including live classrooms, team-based learning, and eLearning. DU: The Leadership Center in India, our state-of-the-art, world-class learning Center in the Hyderabad offices is an extension of the Deloitte University (DU) in Westlake, Texas, and represents a tangible symbol of our commitment to our people’s growth and development. Explore DU: The Leadership Center in India
Benefits
At Deloitte, we know that great people make a great organization. We value our people and offer employees a broad range of benefits. Learn more about what working at Deloitte can mean for you.
Deloitte’s culture
Our positive and supportive culture encourages our people to do their best work every day. We celebrate individuals by recognizing their uniqueness and offering them the flexibility to make daily choices that can help them to be healthy, centered, confident, and aware. We offer well-being programs and are continuously looking for new ways to maintain a culture that is inclusive, invites authenticity, leverages our diversity, and where our people excel and lead healthy, happy lives. Learn more about Life at Deloitte.
Corporate citizenship
Deloitte is led by a purpose: to make an impact that matters. This purpose defines who we are and extends to relationships with our clients, our people and our communities. We believe that business has the power to inspire and transform. We focus on education, giving, skill-based volunteerism, and leadership to help drive positive social impact in our communities. Learn more about Deloitte’s impact on the world.