Post A Job

Business Information Security Manager, Deloitte Global Technology

Deloitte

https://www2.deloitte.com/

Job title:

Enterprise Info Safety Supervisor, Deloitte World Expertise

Firm

Deloitte

Job description

Job Sort: Everlasting
Reference code: 125470
Major Location: Toronto, ON
All Out there Places: Toronto, ON; Ottawa, ON

Our Goal

At Deloitte, we’re pushed to encourage and assist our folks, group, communities, and nation to thrive. Our Goal is to construct a greater future by accelerating and increasing entry to data. Goal defines who we’re and offers us purpose to exist as a corporation.

By residing our Goal, we’ll make an impression that issues.

  • Be taught from deep subject material specialists by mentoring and on the job teaching
  • Be inspired to deepen your technical expertise…no matter these could also be.
  • Get pleasure from versatile, proactive, and sensible advantages that foster a tradition of well-being and connectedness.

World Expertise Providers works on the forefront of know-how growth and processes to assist and defend Deloitte all over the world. On this actually world surroundings, we function not in “what’s” however quite “what will be” to assist Deloitte ship and join with its shoppers, its communities, and each other in methods not beforehand conceived.

What’s going to your typical day seem like?

As a Supervisor throughout the Enterprise Info Safety space, you will work carefully with each technical and non-technical stakeholders inside an assigned line of enterprise or know-how enablement space offering the very best assist throughout a spread of cybersecurity, danger, and danger mitigation disciplines. Together with having data of industry-accepted greatest practices, the Supervisor is predicted to make sure that all purposes and programs aligned to their line of enterprise adhere to inside cybersecurity insurance policies, requirements, escalating any non-compliance as much as the related Enterprise Info Safety Officer (BISO). Profitable candidates ought to showcase the potential to successfully affect and domesticate sturdy relationships with numerous stakeholders.

This position is answerable for overseeing the safety posture of all their assigned enterprise/know-how space’s purposes and programs by making certain safety in embedded from the beginning and that every one related growth processes have safety necessities outlined and applied by way of the completion of acceptable safety evaluations and testing. Duties will span from managing software code vulnerabilities (e.g., penetration testing, code scanning, and so on.), patch/configuration vulnerabilities (e.g., infrastructure/server stage – excellent safety updates, finish of life software program, TLS configurations, and so on.), and controls compliance (e.g., service account compliance, firewall rule base compliance, key and certificates administration, safety agent well being, and so on.).

Duties embrace:

  • Function a trusted advisor to resolution architects, builders, technical danger analysts and others on info safety rules, requirements, and greatest practices.
  • Perceive the assigned world line of enterprise, acquire familiarity with priorities and develop into an advocate for the road of enterprise inside cybersecurity.
  • Drive organizational change and work with a number of enterprise models of a big group to impact change
  • Oversee and assist drive design and implementation of software safety controls in assist of compliance necessities utilizing safe design and growth methodologies.
  • Assist the Safe Programs Growth Lifecycle (SSDLC), together with practical and non-functional cybersecurity necessities.
  • Try for course of enchancment and automation; assist growth and operations group construct automation for repeatable Cyber associated vulnerability administration actions.
  • Keep consciousness of evolving software safety threats and inform growth, enterprise, and danger stakeholders.
  • Present application-specific safety subject material experience to assigned clients.
  • Consider the chance and impression of software vulnerabilities; develop and drive mitigation approaches.
  • Lead, coach, and mentor challenge groups to include safety into enterprise and client-facing purposes.

Concerning the group

World Expertise Providers works on the forefront of know-how growth and processes to assist and defend Deloitte all over the world. On this actually world surroundings, we function not in “what’s” however quite “what will be” to assist Deloitte ship and join with its shoppers, its communities, and each other in methods not beforehand conceived.

Sufficient about us, let’s discuss you

Required:

  • 7+ years of expertise in cybersecurity and/or danger administration with stable capabilities throughout a number of safety domains comparable to id and entry administration (IAM), public-key encryption, safety info and occasion administration (SIEM), incident response, menace & vulnerability administration
  • Data of Azure, AWS, and GCP applied sciences
  • Data of Risk modeling and MITRE assault framework, Server platforms (Linux, UNIX, Home windows, and so on.), Related networking expertise (e.g., TCP/IP stack, DNS)
  • Data of frequent info safety administration frameworks, comparable to ISO/IEC 27001, COBIT, and NIST
  • Keep consciousness of safety vendor merchandise and evolving applied sciences
  • Expertise evaluating the chance and impression of software vulnerabilities
  • Expertise with cloud safety rules and features
  • Expertise creating and speaking software safety imaginative and prescient, technique and roadmap
  • Sensible data of knowledge safety requirements and danger evaluation frameworks comparable to ISO 27001, SOC 2, NIST 800-32, Cloud Management Matrix (CCM) desired
  • Capacity to rapidly and succinctly architect and create technical resolution documentation
  • Consulting expertise (shopper service orientation, battle decision, evaluation/synthesis of knowledge, negotiation, challenge administration, and so on.)
  • Minimal 2 years of management / group administration expertise

Most well-liked:

  • Familiarity with SOC 2 rules; expertise in software safety to fulfill SOC 2 necessities
  • Expertise with Visible Studio Workforce Providers (VSTS), Fortify, Veracode and different safety testing instruments
  • CISSP or equal, or in a position to receive inside 1 12 months
  • Expertise conducting or managing software penetrating testing
  • Minimal 3 years of expertise in software program growth, safety structure, and/or software safety
  • Expertise with Agile practices, SCRUM, Microsoft SDL, and STRIDE

Our promise to our folks: Deloitte is the place potential involves life.

Be your self, and extra.

We’re a gaggle of proficient individuals who need to study, acquire expertise, and develop expertise. Wherever you’re in your profession, we would like you to advance.

You form how we make impression.

Various views and life experiences make us higher. Whoever you’re and wherever you are from, we would like you to really feel such as you belong right here. We offer versatile working choices to assist you and how one can contribute. Be the chief you need to be.

Be the chief you need to be

Some information groups, some change tradition, some construct important experience. We provide alternatives and experiences that assist your persevering with progress as a pacesetter.

Have as many careers as you need.

We’re uniquely in a position to give you new challenges and roles – and put together you for them. We carry collectively folks with distinctive experiences and abilities, and we’re the place to develop an enduring community of mates, friends, and mentors. Our TVP is about relationships – between leaders and their folks, the agency and its folks, friends, and inside in our communities.

The subsequent step is yours

At Deloitte, we’re all about doing enterprise inclusively – that begins with having numerous colleagues of all talents. Deloitte encourages purposes from all certified candidates who characterize the total variety of communities throughout Canada. This contains, however shouldn’t be restricted to, folks with disabilities, candidates from Indigenous communities, and candidates from the Black group in assist of residing our values, making a tradition of Variety Fairness and Inclusion and our dedication to our , and the .

We encourage you to attach with us at should you require an lodging for the recruitment course of (together with alternate codecs of supplies, accessible assembly rooms or different lodging) or for any questions regarding careers for Indigenous peoples at Deloitte (First Nations, Inuit, Métis).

By making use of to this job you’ll be assessed towards the Deloitte World Expertise Requirements. We have designed these requirements to offer our shoppers with a constant and distinctive Deloitte expertise globally.
Deloitte Canada has 30 workplaces with illustration throughout many of the nation. We acknowledge our workplaces reside on conventional, treaty and unceded territories as a part of Turtle Island and continues to be dwelling to many First Nations, Métis, and Inuit peoples. We’re all Treaty folks.

Anticipated wage

Location

Toronto, ON

Job date

Solar, 17 Dec 2023 03:13:21 GMT

To assist us monitor our recruitment effort, please point out in your e mail/cowl letter the place (globalvacancies.org) you noticed this job posting.

Related Jobs

Showing 1 - 4 of 129660 jobs

To apply for this job please visit jobviewtrack.com.

Job Location