Vacancy expired!
The main purpose of the job is to support the Director in the delivery of services on delegated client engagement/ projects.Focus on the management and delivery of client engagements, as well as sales and practice development.Develop high-performing people and teams, leading and supporting them to make an impact that matters, and setting the direction to deliver exceptional client service. Specialised Technical Capabilities:Plans and Manages Cyber Solutions:·       Ability to guide teams through the design and implementation of cyber solutions in chosen Cyber sub-offering/s that reduce vulnerability, strengthen cyber security posture / controls and optimize organizational efficiencyo    Combines industry knowledge and domain experience to help client identify, assess, and manage Cyber risko    Oversees teams in design, implementation, transformation and resilience of identity and access management solutions.o    Proactively tailor’s implementation strategies to help ensure client’s environments are receptive to the impending changeo    Assess, Lead, define, design and implement end to-end modern on-premises and cloud based Cyber Solutionso    Keeps in mind relevant frameworks, industry standards and the overall client’s business strategy when planning cyber assessmentso    Designs cyber solutions (e.g., ICS, Cloud Security, Strategy, vulnerability management, identity and access management) that strengthen controls on key assets, enable compliance, while increasing operational efficiency and reducing costo    Helps client adopt a long-term view of cyber risk management by advising on leading practices to align cyber risk with risk appetite, key industry issues, and strategic business prioritieso    Owns end-to-end delivery of cyber strategy programs across large accountso    Leverages a strong industry knowledge to advise clients on current and potential changes in regulations, cyber threats, and other key trendsSales and Business Development:·       Ability to apply profitability management and sales fundamentals to support projects and pursuitso    Understands the fundamentals of engagement profitability management and uses Deloitte sales tools, such as pricing and revenue management systems, on all engagementso    Contributes to the development of Statements of Work (SOW), engagement budgeting, and pricing model development and develops budget, scope and staffing recommendations based on understanding of the client’s budget and project economicso    Identifies opportunities to sell Deloitte services on current and proposed engagements where appropriateTechnical competencies:·       Bring deep technical (SME) and industry experience in selected Cyber sub-offering (domain) to engage with clients and key stakeholders pragmatically to solve their problems through security design and architecture.·       Understanding and experience with developing architecture artefacts using modelling methods such as ArchiMate, UML, BPMN and/or others and the toolsets to enable this·       Experience with developing Threat Models and identifying cyber, information and privacy risks·       Understands technical complexity at Network, Application, Database, Infrastructure and Cloud level.·       Understand and interpret complex security-related business challenges and ability to respond by conceiving innovative information security/cyber solutions for clients.·       Knowledge and appreciation of the wider Cyber Security issues and opportunities beyond the specific domain specialisation·       Able to scope Cyber engagements effectively and assign and manage an appropriate team to deliver against the engagement requirements·       Display an awareness of Security architecture·       Strong knowledge of Third-Party management·       Technical skills such as Java, JavaScript, Unix / Windows system administration and scripting are preferred.·       An understanding of at least one of the leading IAM products (Sailpoint, CyberArk, Forgerock or others)·       Well acquainted with LDAP, PKI, SSL, JNDI,·       Apply solutions and products in the following IT security areas:  Data·       Data Leak Prevention      ·       Endpoint and network security·       Data encryption including endpoint, email and databases·       Cryptography, PKI and centralized key management·       Database, networking, messaging, web proxy technologies  ·       Good working knowledge of networks and network architecture and integrations·       Understanding of information security principles and best practice (e.g., ISO27001 and ISF Standards of Good Practice for Information Security)  Good technical capability and technical certifications in the following areas:·       Software / solution architecture, design and development·       Secure architecture and engineering principles·       Development and open source technology experience·       Understands the integration points of Cyber sub offering with broader Digital Risk, Cyber Risk and enterprise consulting offerings in line with market demand.·       Apply deep knowledge of disruptive trends and competitor activity to drive continuous improvement.·       Certified Information Security Manager (CISM)·       Certified Information Systems Security Professional (CISSP) [ISC2]·       SABSA (Sherwood Applied Business Security Architecture)·       CISSP-ISSAP (Certified Information Systems Security Professional-Information Systems Security Architecture Professional) [ISC2]·       Cloud Security:o    Certified Cloud Security Professional [ISC2]o    AWS Securityo    Azure Security Engineero    Google Cloud and Apigee Securityo    SalesForce, Mulesoft and other SaaS solution specific security learning·       SalesForce, Mulesoft and other SaaS solution specific security learning·       Information and Cyber Security Frameworks: ISO/IEC 27001/2; NIST SP800-53; NIST CSF; CYBOK·       ISO 27001 Lead Implementer/Auditor·       SWIFT CSP (Cyber Security Programme)·       IoT: internet of things security·       CCISO (Certified Chief Information Security Officer) [EC Council]·       Ability to identify patterns, and analyse and improve processes (business analysis)·       Software development and engineering including DevSecOps: fundamentals and experience·       IT System and networks design, build and administration·       Project Management including Agile Project Management (SAFE Agile, etc.)·       Microservices, containerisation, DevOps toolsets (CI/CD pipeline)·       Software Programming/Coding in variety of languages·       Related Technical fundamentals at that point in time and what the market is procuringBehavioural Competencies:·       Excellent communication skills, both written and verbal·       Effective engagement management·       Curiosity and drive to continually learn·       Able to deliver engagements on time and within budget·       Proven ability to make decisions and the right judgement calls·       Ability to provide leadership and guidance/coaching to junior member of the team·       Ability to inspire and enthuse others to commitment and involvement taking accountability for larger engagements·       Manages large engagement / multiple engagement deadlines holistically, identifying risks and escalating. ·       Able to work under pressure·       Ownership of deliverables driving team quality and risk management.
