Deloitte Advisory Specialist Master (Cyber Risk) in Atlanta, Georgia
Deloitte & Touche LLP seeks a Advisory Specialist Master (Cyber Risk) in Atlanta, GA. Work You ll DoPlay lead role in engagement planning, economics, and billing and participate in proposal development efforts. Demonstrate a general knowledge of market trends and competitor activities and assist in retention of professionals. Identify and evaluate complex business and technology risks, internal controls that mitigate risks, and related opportunities for internal control improvement. Serve as subject matter expert for configuring and integrating application and mobile security testing tools with development and build technology platforms. Assist in the selection and tailoring of approaches, methods, and tools to support service offerings or industry projects. Use technology-based tools or methodologies to review, design, and/or implement products and services. Construct and assess high-level and detailed security programs translating business needs and regulatory requirements into cost effective and risk appropriate controls. Identify opportunities to improve engagement profitability. Understand clients' business environment and basic risk management approaches. Develop information security strategies and plans based upon generally accepted security standards. Utilize knowledge of business processes, internal control risk management, IT controls, business and information technology management processes, and market trends on client engagements. Build and nurture strong client relationships. #LI-DNI RequirementsBachelor's (or higher) degree in Computer Science, Electronic Engineering, Information Systems, Mathematics, Decision Sciences, Risk Management, or related field (willing to accept foreign education equivalent).Five years of experience implementing application security and business process controls.Experience must include five years of:Managing information technology and business environment risk, including designing approaches to develop risk management and information security strategies and plans based upon generally accepted security standards, including ISO, ITIL, and NIST;Leading strategic application security management projects, including threat modeling, security architecture review, application security testing and web application firewall implementation, for clients;Configuring and integrating application and mobile security testing tools as a Subject Matter Expert, including Whitehat Sentinel and Fortify on Demand, with development and build technology platforms, including Microsoft Visual Studio, Team Foundation Server, Eclipse, Maven, Bamboo and Jenkins;Collaborating with client's development team to create threat models based on the product design to identify objectives and vulnerabilities, and defining countermeasures to prevent or mitigate the effects of threats to the system;Performing secure code audit and review on client applications (Web, Mobile and Cloud) developed in one or more programming languages, including C , C#, ASP.NET, Java, Python, PHP or Java Script, using Fortify Static Code Analyzer, Checkmarx Static Code Analyzer, and Veracode;Conducting application security testing on web applications, application programming interfaces (APIs) and webservice using Checkmarx Static Testing, IBM Appscan, Acunetix, Webinspect, Fortify Static Code Analyzer, and Burpsuite;Performing system set-up and configuration for implementation of web application firewall (WAF), including F5 Application Security Manager, Imperva and Custom Web application firewall and vulnerability management solutions, including Nexpose and Qualys;Auditing and reviewing security controls specific to web and application servers, including Internet Information Services, Apache, WebLogic, WebSphere and JBoss;Developing reports and key performance indicators (KPIs), and participating in the creation of enterprise information security and risk management documents (policies, standards, baselines, guidelines, and procedures); andLiaising with executive-level personnel and facilitating client-facing meetings, and leading teams along multiple work streams through the full life cycle of an engagement.Position requires approximately 80% travel. BenefitsAt Deloitte, we know that great people make a great organization. We value our people and offer employees a broad range of benefits.Learn more about what working at Deloitte can mean for you. Deloitte s cultureOur positive and supportive culture encourages our people to do their best work every day. We celebrate individuals by recognizing their uniqueness and offering them the flexibility to make daily choices that can help them to be healthy, centered, confident, and aware. We offer well-being programs and are continuously looking for new ways to maintain a culture where our people excel and lead healthy, happy lives. Learn more about Life at Deloitte. Corporate citizenshipDeloitte is led by a purpose: to make an impact that matters. This purpose defines who we are and extends to relationships with our clients, our people and our communities. We believe that business has the power to inspire and transform. We focus on education, giving, skill-based volunteerism, and leadership to help drive positive social impact in our communities. Learn more about Deloitte s impact on the world. Recruiter tipsWe want job seekers exploring opportunities at Deloitte to feel prepared and confident. To help you with your interview, we suggest that you do your research: know some background about the organization and the business area you re applying to. We also suggest that you brush up on your behavioral and case interviewing skills and practice discussing your experience and job history with a family member, friend, or mentor.Check out recruiting tips from Deloitte professionals.
Category: Accounting & Auditing