Deloitte Cyber Security Risk Assessment Manager in Hermitage, Tennessee

Deloitte is one of the leading professional services organizations in the United States, specializing in audit, tax, consulting and financial advisory services with clients in more than 20 industries. We provide powerful business solutions to some of the world s most well-known and respected companies, including more than 75 percent of the Fortune 100.At Deloitte, you can have a rewarding career on every level. In addition to challenging and meaningful work, you ll have the chance to give back to your community, make a positive impact on the environment, participate in a range of diversity and inclusion initiatives, and find the support, coaching, and training it takes to advance your career. Our commitment to individual choice lets you customize aspects of your career path, your educational opportunities and your benefits. And our culture of innovation means your ideas on how to improve our business and your clients will be heard.Deloitte Services LP includes internal support areas such as Marketing and Communications, Human Resources/Talent, Information Technology, Facilities Management, and Financial Support Services. This role is responsible for the assessment of information technology solutions to determine cyber security risks and that appropriate controls have been selected to mitigate risks. Also, this role is responsible for guiding project teams through risk evaluation and risk treatment processes. This role will use knowledge of cyber security risk management methodologies to determine other risk management activities that should be performed. This role will leverage the Security Architecture team as technical experts. Responsibilities:Review assessment questionnaires and conduct interviews with project teams clarify responsesIdentify, communicate, and coordinate other risk management activities that must be completed such as vulnerability scanning, confidentiality and privacy review, and vendor assessmentCoordinate with other subject matter experts to mitigate information security risks and to correct compliance exposures and gapsInvolve relevant team members including the Security Architecture to assess solution architectures and technical controlsCommunicate required and best practice improvements to reduce risk to an acceptable levelPrepare assessment reports for management to review and approveAssist with the development, implementation, and monitoring of risk management initiatives.Provide consultative assistance to the organization on an as-needed basis concerning information systems control and security issues Build collaborative relationships with project teams and other stakeholders to foster transparency and customer serviceQualificationsBachelor s degree in Computer Science or Business Administration, or relevant educational or professional experience1 years of experience performing cyber security or risk management assessments5 years of experience in cyber security related fieldProject management and cyber security experience desiredKnowledge of cyber security standards and frameworks such as ISO 27001 or NIST 800-32 desiredSecurity certifications such as Certified Information Systems Auditor (CISA), Certified Information Security Manager (CISM), or Certified Information Systems Security Professional (CISSP) desiredExcellent communication, report writing and presentation skillsAbility to work independently and also cross functionallyExcellent time management and related organizational skills, including appropriate sense of urgency, a proactive approach, and a suitable ability to anticipate and manage project lifecycle events, issues and obstaclesUp to 10% travel required

About Deloitte

As used in this document, Deloitte means Deloitte LLP and its subsidiaries. Please see for a detailed description of the legal structure of Deloitte LLP and its subsidiaries. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, age, disability or protected veteran status, or any other legally protected basis, in accordance with applicable law.

Disclaimer: If you are not reviewing this job posting on our Careers site ( or one of our approved job boards we cannot guarantee the validity of this posting. For a list of our current postings, please visit us at

Category: Information Technology