Manager - Business Information Security Manager – Tax
Are you a self-starter who is passionate about technology and interested in joining a community of collaborative colleagues who respectfully and courageously seek to challenge the status quo? If so, read on to learn more about an exciting opportunity with Deloitte’s Information Technology Services (ITS). We are curious and life-long learners focused on technology and innovation.
Work you’ll do
The Tax Security Manager works closely with technical and non-technical stakeholders to support business transformation through the development of next-generation practitioner tools.
This role is responsible for the security posture of Deloitte’s Tax business applications by driving security best practices and adherence to security policies, Deloitte standards, and industry-accepted standards. Bridging the gap between technical and non-technical domains, the Security Manager serves as a trusted advisor regarding security risks and risk mitigation approaches.
The team
Information Technology Services (ITS) helps power Deloitte’s success. ITS drives Deloitte, which serves many of the world’s largest, most respected organizations. We develop and deploy cutting-edge internal and go-to-market solutions that help Deloitte operate effectively and lead in the market. Our reputation is built on a tradition of delivering with excellence.
The ~3,000 professionals in ITS deliver services including:
- Cyber Security
- Technology Support
- Technology & Infrastructure
- Application Security
- Relationship Management
- Strategy & Communications
- Project Management
- Risk and Compliance
Cyber Security
The Tax Cyber Security vigilantly protects Deloitte and client data. The team focuses on strategic cyber risk using situational awareness, threat intelligence, and establishment of a security culture across the organization, that enables the teams they serve to adapt to a rapidly changing threat landscape and protects the Deloitte brand.
Areas of focus include:
- Risk & Compliance
- Identity & Access Management
- Application Security
- Data Security
- Cyber Operations
- Cloud Security
Qualifications required:
· Bachelor’s degree required, or a minimum of 9+ years of experience in the cybersecurity field in one or more of the above areas of focus and includes:
· Knowledge of cloud-based designs and secure evaluation of solutions involving IaaS, PaaS and SaaS offerings
· Knowledge of Microsoft Azure and AWS security principles including container security
· Serve as a trusted advisor to solution architects, developers, technical risk analysts, and others on information security principles, standards, and best practices
· Experience reviewing architectural designs from a cyber security perspective
· Experience evaluating the likelihood and impact of application vulnerabilities
· Working knowledge of Application Security Testing tools to support static and dynamic testing, as well as open source security testing.
· Working knowledge of Mend or other open source scanning capabilities
· Experience with developing and communicating application security vision, strategy, and roadmap
· Experience identifying, communicating, and overseeing the completion of technical implementations of cyber security solutions required to meet compliance standards
· Experience providing regular and timely reporting on the status of cyber activities to include application security, cyber operations and governance risk and compliance
· Demonstrated ability to communicate with technology and business leaders clearly and effectively. Lead, coach and mentor project teams to incorporate cybersecurity principles into enterprise and client-facing applications.
· Knowledge of SAFe Frameworks, Agile practices, SCRUM, Kanban
· Experience with Secure DevOps including coding, development and operations
· Experience across multiple security domains such as identity and access management (IAM), public-key encryption, security information and event management (SIEM), incident response, threat & vulnerability management
· Working knowledge of information security standards and risk assessment frameworks such as ISO 27001, SOC 2, NIST 800-32, Cloud Control Matrix (CCM) desired
· CISSP or equivalent certification required. Cloud-specific certifications (e.g., Microsoft Azure, AWS) preferred.
Location – Hyderabad / Bengaluru / Gurgaon (preferred)
Shift Timings – 2:00 PM to 11:00 PM
How you’ll grow
At Deloitte, our professional development plan focuses on helping people at every level of their career to help them to identify and use their strengths to do their best work every day. From entry-level employees to senior leaders, we believe there’s always room to learn. We offer opportunities to help sharpen skills in addition to hands-on experience in the global, fast-changing business world. From on-the-job learning experiences to formal development programs, our professionals have a variety of opportunities to continue to grow throughout their career.
Benefits
At Deloitte, we know that great people make a great organization. We value our people and offer employees a broad range of benefits. Learn more about what working at Deloitte can mean for you.
Deloitte’s culture
Our positive and supportive culture encourages our people to do their best work every day. We celebrate individuals by recognizing their uniqueness and offering them the flexibility to make daily choices that can help them to be healthy, centered, confident, and aware. We offer well-being programs and are continuously looking for new ways to maintain a culture where our people excel and lead healthy, happy lives. Learn more about Life at Deloitte.
Corporate citizenship
Deloitte is led by a purpose: to make an impact that matters. This purpose defines who we are and extends to relationships with our clients, our people and our communities. We believe that business has the power to inspire and transform. We focus on education, giving, skill-based volunteerism, and leadership to help drive positive social impact in our communities. Learn more about Deloitte’s impact on the world.
Recruiter tips
We want job seekers exploring opportunities at Deloitte to feel prepared and confident. To help you with your interview, we suggest that you do your research: know some background about the organization and the business area you’re applying to. Check out recruiting tips from Deloitte professionals.