Deloitte Cyber Risk IOT, Senior Consultant in New York, New York
Deloitte & Touche LLP's ("Deloitte Advisory's") business has a risk-based approach, experienced professionals, comprehensive methodologies, and technical resources. Deloitte Advisory's services combine competency and experience in the areas of financial reporting, risk management, and compliance.
Want to work at the one of the fastest growing and industry leading security firms that will give you an enriching experience to build your career and brand? If yes then look no further, Deloitte's Cyber Risk Services is THE place for you.
Our Cyber Risk Services practice has almost 2,500 professionals focused on specific industries and sectors and we help our clients to focus on improving cyber risk detection, and responding more rapidly and effectively to reduce the impact of cyber risks through our unique Secure. Vigilant. Resilient approach. Our capabilities across disciplines such as IT strategy, program management, cyber security, service delivery and operations, third party management, data management, application management, service continuity management, financial management and talent management allows us to define an approach that can efficiently and effectively manage cyber risks. Through our capabilities, we have been widely recognized and acknowledged as the leader in information security consulting by prominent analyst firms - including Forrester, Kennedy and Gartner.
As a leading professional services firm, we strive for you to have a rewarding career on every level. In addition to challenging and meaningful work, you'll have the chance to give back to your community, make a positive impact on the environment, participate in a range of diversity and inclusion initiatives, and find the support, coaching, and training it takes to advance your career. Our commitment to individual choice lets you customize aspects of your career path, your educational opportunities and your benefits. And our culture of innovation means your ideas on how to improve our business and your clients' will be heard.
Demonstrate advanced understanding and cyber risk management in at least two of the following areas:
SCADA with experience in securing ICS (Industrial Control Systems) security
Internet of Things (IOT) architecture and security
Connected vehicle security related to infotainment and content, t elematics, v ehicle communications or autonomous operations
Embedded systems security
Demonstrate advanced understanding of business processes and cyber risk management in two or more areas such as:
IT program management
Service delivery and operations
Third party management
Service continuity management
Familiarity with industry standards and regulatory requirements around cyber risk management (e.g., ISO 27001)
Identify and evaluate complex business and technology risks and remediation methods to mitigate risks
Demonstrate problem solving, critical thinking and logical structuring skills
Assist in the selection and tailoring of approaches, methods and tools to support service offering or industry projects
Actively participate in decision making with engagement management and seek to understand the broader impact of current decisions
Facilitate use of technology-based tools or methodologies to review, design and/or implement products and services
Identify opportunities to improve engagement profitability and manage engagement economics
Demonstrate ability to with identify and address client needs: building solid relationships with clients; developing an awareness of Firm services; communicating with the client in an organized and knowledgeable manner; delivering clear requests for information; demonstrating flexibility in prioritizing and completing tasks; and communicating potential conflicts to the manager
Demonstrate a general knowledge of market trends, competitor activities, Deloitte Advisory products and service lines
3+ years of cyber security or cyber risk management experience
Minimum of 1 years working in emerging information security disciplines (e.g. mobile security, cloud security, IOT security, SCADA / industrial control systems security, etc.)
Minimum 2 years designing security for infrastructure, network and application architectures
Demonstrated experience working with cloud platforms (AWS, Azure)
Demonstrated experience working with security solutions for SCADA and industrial control systems
3+ years implementing security solutions
BA/BS in cyber security, information security, engineering, computer science, information technology, information management, information sciences, business administration, or related field preferred
CISSP, CISM, or CISA certification a plus
Prior Big 4 or other consulting experience desired
Excellent verbal and written communication
Ability to travel up to 50% (While up to 50% travel is a requirement of the role, due to COVID-19, non-essential travel has been suspended until further notice)
Limited visa sponsorship may be available
All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, age, disability or protected veteran status, or any other legally protected basis, in accordance with applicable law.