Cyber Risk - Cloud - Manager

  • Full-time
  • Service Line: Risk Advisory

Company Description

Deloitte is a leading global provider of audit and assurance, consulting, financial advisory, risk advisory, tax, and related services. Our global network of member firms and related entities in more than 150 countries and territories (collectively, the “Deloitte organisation”) serves four out of five Fortune Global 500® companies. Learn how Deloitte makes an impact that matters at www.deloitte.com.

About the Division

The value that Deloitte Risk Advisory Africa creates for organisations is synonymous with operational excellence. Our five business areas work in unison to provide integrated solutions unique to the organisational requirements of any business.

In a world that is constantly changing, organisations need to adapt quickly to respond to new risks and take advantage of new opportunities. Deloitte's Risk Advisory practice advises organisations on how to effectively mitigate risk and make informed and intelligent risk decisions around business processes, technology, and operations. Click here to read more about our Risk Advisory practice.

Click here to learn more about what our Cyber Cloud team does

What impact will you make?

Every day, your work will make an impact that matters, while you thrive in a dynamic culture of inclusion, collaboration and high performance. As the undisputed leader in professional services, Deloitte is where you’ll find unrivalled opportunities to succeed and realise your full potential.

Job Description

The main purpose of the job is to deliver cyber cloud services to clients through their engagements.

As the ideal candidate you will be responsible for the below services with specific focus on cloud technologies and consideration of the hybrid and on-prem solutions deployed at clients. Further, legacy systems within the clients’ environments may need to be integrated into new technologies and solutions.

  • Understand client risks and gaps through a maturity assessment using industry frameworks and standards
  • Assess cyber security policies and procedures to analyse compliance with regulatory requirements and evaluate overall operational efficiency, thereafter, provides clients with mitigating solutions
  • Develop and execute strategies, architectures, and roadmaps to provide client with need-based, value-adding, and cost-effective Cyber risk solutions
  • Support the Development and Implementation on of Cyber Risk Solutions
    • Technical expertise with advisory at the core
    • Identity and access management
    • Cloud Data Protection
    • Application Security
    • Threat Management
    • Cloud Resilience
    • Network and Infrastructure Security
  • Keep in mind the client’s business needs and overall IT strategy when developing assessment frameworks to ensure effective, targeted, and actionable analyses
  • Apply multiple security testing methodologies and techniques to assess client’s security infrastructures and identify / evaluate vulnerabilities
  • Work with multiple domain-specific cyber security technology solutions and is able to effectively integrate them into the clients’ cyber strategy and architecture
  • Understand and apply cyber threat intelligence and profiling to the design and assessment of client systems
  • Test the effectiveness of client’s cyber security technologies to identify and articulate opportunities for improvement across the digital, physical, and social elements of the client
  • Understand the interaction of business and technology processes / risks and can explain it in business terms to both technical and non-technical audiences
  • Apply Cloud Security Reference Architecture to deliver consistent, standardized solutions for Identity & Access Management, Data Protection, Secure DevOps, Security Operations, and other security domains
  • Deliver solutions for integration between Cloud and on-premises security solutions

Qualifications

Below are the qualification and experience requirements for this role

Desired qualifications:

  • Relevant Degree, Honours or post graduate diploma, professional qualifications e.g. B.Sc, BCom, or B.Ing/Eng or M.Sc.
  • Advanced certifications, diplomas, professional certifications, advanced degrees in Cyber or information security - examples include:
    • Cloud engineering Cloud Security
    • CCSP (Certified Cloud Security Professional) for AWS + Azure + GCP
    • CISM (Certified Information Security Manager)
    • CISSP (Certified Information Systems Security Professional)
    • ISMP (Information Security Management Principles)
    • Working knowledge in Palo Alto, Prisma., Netskope
    • Amazon and/or Microsoft certified Solutions Architect.

Experience:

The successful candidate will have in-depth technical cyber cloud experience

Required experience:

  • Minimum of 8-10 years of overall experience in IT
  • 3 – 5 years’ experience in Cloud and Cyber is essential
  • At least 4 years’ experience in managing a team
  • Cyber & IT Sec components across the hyperscalers (AWS; GCP; Azure)
  • Experience in translating clients' risk, security, and compliance requirements into specific Cloud security solutions and design patterns
  • Applying Cloud Security Reference Architecture to deliver consistent, standardized solutions
  • Delivering solutions for integration between Cloud and on-premises security solutions is ideal
  • Ideally experience delivering complex security solutions
  • Collaborating and coordinating solution design work with other Cyber sub Solution Architects in Infrastructure, IT Strategy, Service Delivery, etc.
  • Managing/operating public, private and hybrid cloud solutions
  • Utilizing and applying knowledge of Cloud solutions across IaaS, PaaS & SaaS into projects, such as AWS, Azure, OpenStack, Cloud Foundry, Salesforce, Microsoft Office 365, Box etc.
  • Utilizing and applying knowledge of enterprise security and Cloud security specific solutions into projects such as: IAM/IDaaS, CASB, Identity Governance, Cloud SOC/SIEM, Key Management & Encryption
  • Experience designing and/or delivering complex security solutions, such as Identity & Access Management, Data Protection and DLP, SIEM, and IDS/IPS

Technical competencies:

    • Experience in drafting and presenting to clients
    • Good report writing skills – Technical & Advisory
    • Work on continuous improvement and reporting together with data interpretation
    • Ability to function across multiple business lines in a multicultural environment 
    • Able to scope Cyber engagements effectively and assign and manage an appropriate team to deliver against the engagement requirements.
    • Technical expert in one or more specific Cyber sub-offering area
    • Demonstrated project management skill
    • Consulting skills
    • The ability to construct effective pricing models
    • Business acumen
    • Bring technical and industry experience in the Cyber Cloud domain to engage with clients and key stakeholders pragmatically
    • Understands technical complexity at Network, Application, Database, Infrastructure and Cloud level
    • Knowledge and appreciation of the wider Cyber Security issues and opportunities beyond the specific domain specialisation.
    • Solutions Architect experience.
    • Demonstrated ability to manage engagements that encompass the wider RA services and collaborating and coordinating solution design work with other Cyber sub Solution Architects in Infrastructure, IT Strategy, Service Delivery, etc.
    • Utilizing and applying knowledge of Cloud solutions across IaaS, PaaS & SaaS into projects, such as AWS, Azure, OpenStack, Cloud Foundry, Salesforce, Microsoft Office 365, Box etc.
    • Utilizing and applying knowledge of enterprise security and Cloud security specific solutions into projects such as: IAM/IDaaS, CASB, Identity Governance, Cloud SOC/SIEM, Key Management & Encryption.
    • Laws and regulations related to Information Security, Cyber Security, Data Protection and/or Privacy especially where relevant to the Cloud.

Behavioural Competencies:

    • Excellent communication skills, both written and verbal
    • Ability to work in an agile environment
    • Effective engagement management
    • Complex problem solving
    • Influencing others
    • Able to deliver engagements on time and within budget
    • Proven ability to make decisions and the right judgement calls
    • Ability to provide leadership and guidance/coaching to junior member of the team
    • Ability to inspire and enthuse others to commitment and involvement taking accountability for larger engagements
    • Manages large engagement / multiple engagement deadlines holistically, identifying risks and escalating. 
    • Able to work under pressure
    • Ownership of deliverables driving team quality and risk management.

 

 

Additional Information

Additional information

*Please note that this job advertisement provides a summary of the capabilities required and all candidates shortlisted will receive a full list of capabilities.

At Deloitte, we want everyone to feel they can be themselves and to thrive at work—in every country, in everything we do, every day. We aim to create a workplace where everyone is treated fairly and with respect, including reasonable accommodation for persons with disabilities. We seek to create and leverage our diverse workforce to build an inclusive environment across the African continent.

At Deloitte, we want everyone to feel they can be themselves and to thrive at work—in every country, in everything we do, every day. We aim to create a workplace where everyone is treated fairly and with respect, including reasonable accommodation for persons with disabilities. We seek to create and leverage our diverse workforce to build an inclusive environment across the African continent.

Privacy Policy