Deloitte is a leading global provider of audit and assurance, consulting, financial advisory, risk advisory, tax and related services. Our global network of member firms and related entities in more than 150 countries and territories (collectively, the “Deloitte organization”) serves four out of five Fortune Global 500® companies. Learn how Deloitte’s approximately 312,000 people make an impact that matters at www.deloitte.com

About the Division 

The value that Deloitte Risk Advisory Africa creates for organisations is synonymous with operational excellence. Our five business areas work in unison to provide integrated solutions unique to the organisational requirements of any business.

In a world that is constantly changing, organisations need to adapt quickly to respond to new risks and take advantage of new opportunities. Deloitte's Risk Advisory practice advises organisations on how to effectively mitigate risk and make informed and intelligent risk decisions around business processes, technology and operations.

Click here to read more about our Risk Advisory practice.

What impact will you make?

Every day, your work will make an impact that matters, while you thrive in a dynamic culture of inclusion, collaboration and high performance. As the undisputed leader in professional services, Deloitte is where you’ll find unrivalled opportunities to succeed and realize your full potential.

Manager: Talent Standards 

Living Our Purpose: Acts as a role model, embracing and living our purpose and values, and recognizing others for the impact they make

Talent Development: Develops high-performing people and teams through challenging and meaningful opportunities

Performance Drive: Delivers exceptional client service; maximizes results and drives high performance from people while fostering collaboration across businesses and borders

Influence: Influences clients, teams, and individuals positively, leading by example and establishing confident relationships with increasingly senior people

Strategic Direction: Understands key objectives for clients and Deloitte, aligns people to objectives and sets priorities and direction

Main Purpose of Job

Supports Senior Manager or Directors in delivery of services to / at client premises on delegated engagement / project.  Focus on the management and delivery of client engagements, as well as sales and practice development.

Key Performance Areas:

1. Strategic Impact

2. Budgets/Profitability

3. Differentiator

Core Professional & Technical

4. Risk Assessment and Mitigation

5. Delivery Excellence

6. Reporting and Presentation

7. Knows the Business and the Industry

8.  Executive Presence

9.  Sales and Business Development

10. Global Mindset

Specialised Technical capabilities

Input: 

Plans and Manages Cyber Solutions: Ability to guide teams through the design and implementation of cyber solutions in chosen Cyber sub-offering/s that reduce vulnerability, strengthen cyber security posture / controls and optimize organizational efficiency.

Measurables: 

· Combines industry knowledge and domain experience to help client identify, assess, and manage Cyber risk

· Oversees teams in assessing complex technical assessments of client’s Cloud infrastructures to identify / evaluate vulnerabilities, including considering the digital, physical, and social elements of the client, and reflecting relevant cyber threats to the client’s industry and profile

· Leverages an in-depth knowledge of market-specific products and solutions to enhance impact of recommended solutions

· Proactively tailors implementation strategies to help ensure client’s environments are receptive to the impending change

· Assess, Lead, define, design and implement end to-end modern on-premises and cloud based Cyber Solutions

· Helps client define a holistic future state cyber posture to address gaps with relevant domain (sub-offering) standards and frameworks

· Keeps in mind relevant frameworks, industry standards and the overall client’s business strategy when planning cyber assessments

· Designs cyber  solutions (e.g., Cloud Security, Strategy, vulnerability management, identity and access management) that strengthen controls on key assets, enable compliance, while increasing operational efficiency and reducing cost

· Helps client adopt a long-term view of cyber risk management by advising on leading practices to align cyber risk with risk appetite, key industry issues, and strategic business priorities

· Owns end-to-end delivery of cyber strategy programs across medium and large accounts

· Leverages a strong industry knowledge to advise clients on current and potential changes in regulations, cyber threats, and other key trends

· Stays current on market trends and regulations, and anticipates risk / opportunities; advises client accordingly

Minimum Qualifications

Relevant Degree, honours or post graduate diploma, professional qualifications e.g. B.Sc.,BCom, or B.Ing/Eng or M.Sc.

Desired Qualifications

Advanced certifications, diplomas, professional certifications, advanced degrees in  Cyber or information security - examples include:

· CISM (Certified Information Security Manager)

· CISSP (Certified Information Systems Security Professional)

·  ISMP (Information Security Management Principles)

·  Cloud engineering Cloud Security

·  CCSP (Certified Cloud Security Professional) for  AWS + Azure + GCP

· Working knowledge in Palo Alto, Prisma., Netskope

· Amazon and/or Microsoft certified Solutions Architect.

Minimum Experience

8 years working experience

Desired Experience

5 years in a client facing role; 3 of these in a management role

7-8 years of progressive experience with 1 or more years of Cloud specific experience, with role(s) in a professional, consulting services (including Boutique Security Firm), public and/or private sector organizations is required.

· Experience in translating clients' risk, security, and compliance requirements into specific Cloud security solutions and design patterns;

· Applying Cloud Security Reference Architecture to deliver consistent, standardized solutions;

· Delivering solutions for integration between Cloud and on-premises security solutions;

· Experience delivering complex security solutions,

· Collaborating and coordinating solution design work with other Cyber sub Solution Architects in Infrastructure, IT Strategy, Service Delivery, etc.;

· Managing/operating public, private and hybrid cloud solutions;

· Utilising and applying knowledge of Cloud solutions across IaaS, PaaS & SaaS into projects, such as AWS, Azure, OpenStack, Cloud Foundry, Salesforce, Microsoft Office 365, Box etc.;

· Utilizing and applying knowledge of enterprise security and Cloud security specific solutions into projects such as: IAM/IDaaS, CASB, Identity Governance, Cloud SOC/SIEM, Key Management & Encryption;

· Solutions Architect experience; and

· Experience designing and/or delivering complex security solutions, such as Identity & Access Management, Data Protection and DLP, SIEM, and IDS/IPS.

Competencies:

Technical:

· Proven winning business, staff development, exceptional delivery, business development, continuous improvement.

· Bring deep technical (SME) and industry experience in the Cyber Cloud sub offering (domain) to engage with clients and key stakeholders pragmatically.

· Understands technical complexity at Network, Application, Database, Infrastructure and Cloud level.

· Understand and interpret complex security-related business challenges and ability to respond by conceiving innovative information security/cyber solutions for clients.

· Knowledge and appreciation of the wider Cyber Security issues and opportunities beyond the specific domain specialisation.

· Able to scope Cyber engagements effectively and assign and manage an appropriate team to deliver against the engagement requirements.

· Applying Cloud Security Reference Architecture to deliver consistent, standardized solutions for Identity & Access Management, Data Protection, Secure DevOps, Security Operations, and other security domains.

· Delivering solutions for integration between Cloud and on-premises security solutions.

· Solutions Architect experience.

· Demonstrated ability to manage engagements that encompass the wider RA services and collaborating and coordinating solution design work with other Cyber sub Solution Architects in Infrastructure, IT Strategy, Service Delivery, etc.

· Utilizing and applying knowledge of Cloud solutions across IaaS, PaaS & SaaS into projects, such as AWS, Azure, OpenStack, Cloud Foundry, Salesforce, Microsoft Office 365, Box etc.

· Utilizing and applying knowledge of enterprise security and Cloud security specific solutions into projects such as: IAM/IDaaS, CASB, Identity Governance, Cloud SOC/SIEM, Key Management & Encryption.

· Laws and regulations related to Information Security, Cyber Security, Data Protection and/or Privacy especially where relevant to the Cloud.

Good technical capability and technical certifications in the following areas: 

· Certified Information Security Manager (CISM)

· Certified Information Systems Security Professional (CISSP) [ISC2]

· SABSA (Sherwood Applied Business Security Architecture)

· CISSP-ISSAP (Certified Information Systems Security Professional-Information Systems Security Architecture Professional) [ISC2]

· ISMP (Information Security Management Principles)

· Cloud Security engineering/design/operations:

• CCSP - Certified Cloud Security Professional [ISC2]
• AWS Security
• Azure Security Engineer
• Google Cloud and Apigee Security
• SalesForce, Mulesoft and other SaaS solutions specific security topics

· Working knowledge in Palo Alto, Prisma, Netskope

· Amazon and/or Microsoft certified Solutions Architect.

· Ability to identify patterns, and analyse and improve processes (business analysis)

· Software development and engineering including DevSecOps: fundamentals and experience

· IT System and networks design, build and administration

· Project Management including Agile Project Management (SAFE Agile, etc.) and corresponding DevSecOps capabilities

· Microservices, containerisation, server-less computing/FaaS

· Software defined networking (e.g., SDN, SD-WAN and SDP)

· Software Programming/Coding in variety of languages

· Related Technical fundamentals at that point in time and what the market is procuring

 Behavioural

· Exceptional communication skills, both written and verbal

· Able deliver multiple engagements on time and within budget

· Proven ability to make decisions and the right judgement calls in complex projects and situations

· Creates a culture of trust, ownership and accountability across teams and projects

· On the job coaching for managers and professional staff and taking accountability for multiple large engagements

· Manages large engagement / multiple engagement deadlines holistically, identifying risks and escalating

· Drives continuous improvement

· Custodian of the business, shaping offerings that we need to proactively take to the market

*Please note that this job advertisement provides a summary of the capabilities required and all candidates shortlisted will receive a full list of capabilities.