Cyber
Deloitte Cyber understands the unique challenges and opportunities businesses face in cybersecurity. Join our team to deliver powerful insights to help our clients navigate the ever-changing threat design and technology as we partner with clients to transform finance.
Cyber Strategy & Transformation
Cyber Strategy & Transformation teams develop and transform cyber programs in line with a client's strategic objectives, regulatory requirements, and risk appetite. They keep the enterprise a step ahead of the evolving threat landscape and give stakeholders confidence in the organization's cyber posture. Services include the design of cyber organization, governance, and risk assessments. Services also encompass Cybersecurity Assessments and Frameworks, Cyber Transformation Management, Technology Software and Asset Compliance Management, Third Party Risk Management, Cyber Risk and Compliance, Solution Design and Implementation, and Cyber Risk Analytics and Quantification Reporting.
Work you’ll do:
· Advise clients on enterprise risk and compliance strategies leveraging market leading GRC platforms and capabilities, especially ServiceNow IRM, TPRM, BCM, and SecOps.
· Lead complex GRC transformations, including current-state assessments, platform roadmap design, future-state operating model definition, and user adoption/ change management.
· Architect and oversee the delivery of ServiceNow-based GRC implementations aligned to risk frameworks (e.g., ISO 27001, NIST, SOX, GDPR) and/ or client-specific use cases.
· Drive pre-sales efforts, including RFP responses, solution development, and client presentations.
· Collaborate across functions (cyber, regulatory, internal audit, cloud risk) to deliver integrated, cross-domain risk solutions.
· Mentor and grow a team supporting their career development and project success.
· Contribute to/ Lead global practice development through thought leadership, solution accelerators, and capability building.
· Maintain client relationships by developing a reputation as an independent professional who delivers exceptional results.
· Create executable strategies to initiate, grow and sustain profitable relationships with clients.
· Serve as a subject matter specialist/ architect on ServiceNow GRC for senior business and technology stakeholders.
· Ensure that the ServiceNow GRC practice of the future has the right skills and training and push towards growing the overall team in the coming years.
Qualifications:
Required
- Over ten years of overall experience in risk, compliance, or cybersecurity consulting
- Proven experience delivering multiple end-to-end ServiceNow GRC implementations
- Excellent client-facing skills with the ability to influence stakeholders at all levels
- Experience working in a matrixed, global delivery environment
- Practice development, and capability/ solution building, eminence building skills
- Strategic thinking and problem-solving skills
- Strong project and people management capabilities
- Ability to translate risk and compliance requirements into scalable solutions
- Effective communication and executive presence
Preferred:
- ServiceNow Certified Technical Architect (CTA) or Certified Master Architect (CMA)
- ServiceNow Certified Implementation Specialist in one or more GRC modules (Risk & Compliance, VRM, or BCM)
- Exposure to Archer, MetricStream, or other GRC tools
- Experience integrating AI/ ML or analytics into risk and compliance programs
- Prior consulting experience in Big 4 or global system integrator
Education:
- Bachelor’s degree + MBA (Preferred)
- CISSP / CISM (or equivalent)