Cyber Security Lead – Global Employer Services Technology Center (GESTC) - Business Information Security Office
Deloitte Tax Services India Private Limited (“Deloitte Tax in India”) commenced operations in June 2004. Since then, nearly all of the Deloitte Tax LLP (“Deloitte Tax”) U.S. service lines and regions have obtained support services through Deloitte Tax in India.
We provide support through the tax transformation taking place in the marketplace. We offer a broad range of fully integrated tax services by combining technology and tax technical resources to uncover insights and smarter solutions for navigating an increasingly complex global environment.
We provide opportunities to transform tax operations using contemporary technologies in the market. Individuals work to transform their current state of tax to the next generation of tax functions. Are you ready to take the next step in your career to find new methods and processes to assist clients in improving their tax operations using new technologies? If the answer is “Yes,” come join Global Employer Services Technology Center (GESTC)
Job purpose:
This is an experienced security compliance position in the Global Advantage Business Information Security Office (GA BISO) reporting to GA BISO team Senior leaders.
Professionals on this team play a critical role in ensuring that all security, regulatory and firm mandated protocols are adhered to for our products. The team oversees external auditor SOC 2 compliance, internal security audits, CISO/Tax BISO security and data protection initiatives, responds to security requests for client proposals/verifications for RFP's/on-site visits etc. The team also independently verify adherence with both firm and client development, security and regulatory standards.
You will build a high-level knowledge of the GES suite of web-based tools (Global Advantage) and lead a portfolio of projects managed by the GA BISO team.
This is an opportunity to progress your security career within a varied and challenging environment covering global standards in data privacy, legislation, IT security, and software development.
Key job responsibilities:
· Manage assigned work in GA BISO team across multiple streams including both routine monthly/quarterly activities along with strategic projects.
· Oversee our change control management processes (including monitoring/training development, QA, and business teams to ensure compliance with established best practices and signoff evidence).
· Assist with SOC 2 Type 2 auditor requests that demonstrate the effectiveness of our various internal controls.
· Assist with escalations/RCA/remediation plans for potential privacy/security incidents.
· Monitor compliance with a wide variety of existing entitlement reviews, security controls and processes including SOC 2-Type 2 and ISO 27001.
· Lead projects and GA-BISO/GESTC staff to deliver on our roadmap commitments.
· Ensure issues are identified, tracked, and resolved in a timely manner.
· Design and implementation of new security controls as warranted.
· Consistently meet internal and external client expectations and project deadlines.
· Train GESTC professionals to ensure that they understand their compliance responsibilities.
Education/Background:
College coursework: BE/B Tech
Key skills desired:
Must Have:
· Minimum 5+ years of technology related work experience.
· Experience working in Cyber Security, Quality & Risk management, and/or Production Support.
· Ability to multi-task on simultaneous projects in the rapidly evolving BISO security landscape.
· Ability to proactively identify risks, root causes and gain proficiency in proposing solutions to remediate these risks.
· Ability to work in a virtual environment (with core team located in India, UK and US).
· High attention to detail and ability to learn new skills.
· Strong written and verbal communication skills.
Good to Have:
· Experience with Budgeting (especially AWS Cloud).
· Experience with entitlement reviews/automation (such as with VBA).
#CA-GSD
#CA-HPN