Are you interested in cyber security, the threat landscape, and keeping pace with the speed of technology change? Do you have a naturally inquisitive mind? Do you enjoy working through complex and technical challenges?
If so, we are seeking an Assistant Manager to join our Cyber and Technology Risk team within Deloitte Business Security (DBS), who are part of the Deloitte Quality, Risk and Security (QRS) community.
Within QRS, we use our skills and experience across a variety of disciplines to support a risk intelligent culture at Deloitte — enabling our Partners and practitioners to deliver high-quality services to their clients, and acting as custodians of firm risk, security, ethics, and reputation.
Our Cyber Risk and Technology team forms part of the second line of cyber security defense for Deloitte itself. This is an internal, not a client-facing role. Our team purpose is to manage the complex cyber risks Deloitte faces daily. Working closely with colleagues across our first line of defense, IT, and Business, you’ll be able to make an impact that matters and drive positive security change and enhance the security posture of our firm.
You’ll be working alongside a supportive team in DBS who care about doing the right thing and protecting the confidentiality, privacy, and security of Deloitte’s people, buildings, assets, and data.
You will be supported to develop your technical and personal skillset through peer support, development plans, mentorship, coaching, and access to extensive training resources.
We understand the importance of personal well-being and offer flexible working arrangements to support your individual needs.
Connect to your career at Deloitte
Deloitte drives progress. Using our vast range of expertise, we help our clients become leaders wherever they choose to compete. To do this, we invest in outstanding people. We build teams of future thinkers, with diverse talents and backgrounds, and empower them all to reach for and achieve more.
What brings us all together at Deloitte? It’s how we approach the thousands of decisions we make every day — our behaviors, beliefs, and attitudes. In other words: our values. Whatever we do, wherever we are in the world, we lead the way, serve with integrity, take care of each other, foster inclusion, and collaborate for measurable impact. These five shared values lead every decision we make and action we take, guiding us to deliver impact where and how it matters most.
Connect to your opportunity
Our Cyber and Technology Risk team offers a range of second line security services, including consultancy on large firm-wide projects, governance, assurance, cyber risk management, information protection, cyber incident support, and third-party risk management. We are looking for an Assistant Manager to support and enhance the existing team, help us assess risks to the firm, deliver our second line assurance program, and support our management of third-party cyber risks. The cyber risk landscape is constantly evolving, and we support a large and diverse business. No two days are the same, and your role will grow and evolve over time. Your opportunities include:
* Learning – Gain knowledge of the 3 lines of defense model, our second line Cyber Risk services, and support awareness, consultancy, and delivery across the business. You’ll also focus on personal development and technological and risk learning, driving your career at Deloitte.
* Risk and Security – Contribute to delivering our multi-year control assurance plan to improve our security posture, and work across our service offerings as needed. Provide cyber risk consultancy to the business on cyber risk, technology risk, legal and regulatory requirements, and third-party risk, guiding secure practices across Deloitte.
* People – Build and maintain relationships within our department and across the firm, proactively managing key stakeholder relationships in IT, first and third lines of defense, and key business areas.
* Research – Keep abreast of the cyber threat landscape and emerging technologies, share knowledge with the team, and use this to identify and mitigate emerging cyber risks.
* Culture of inclusion – Join a diverse, collaborative, and supportive team where your contributions are valued.
Connect to your skills and professional experience
* You’re proactive, inquisitive, eager to learn about new technologies and security, questioning the status quo, and understanding the challenges faced by a large firm.
* You’re a problem solver, pragmatic, and able to empathize with others, with a risk-based approach to overcoming challenges and delivering secure services.
* You maintain a positive attitude, uphold high ethical standards, adapt to changing priorities, share knowledge, and manage your workload effectively.
* You have a passion for cyber risk, security assurance, and technology, with a desire for continuous learning and growth.
* You possess critical thinking skills, systematic research abilities, and experience in assurance to make evidence-based decisions.
* You have some technical background or experience in IT, project management, cyber security, or cyber risk, with knowledge of systems like Windows 11, MacOS, Office 365, or hybrid environments.
* You can communicate technical and business risks effectively to varied audiences and understand technology from both a business and technical perspective.
* Knowledge of frameworks like ISO27001 or Cyber Essentials, and understanding of the 3 lines of defense model, NIS2, DORA, data privacy, and cloud technologies is preferred.
* Additional experience in project management, third-party risk management, or government/public sector work is advantageous. Industry certifications such as ISC2 CC, CISM, CISA, CRISC, or ISO lead auditor are a plus.
Connect to your business - Enabling Functions
Collaboration across functions supports Deloitte’s operations. Your skills can make a significant impact, and you’ll be part of a team that values your contributions.
National Quality and Risk Management
We manage our business with integrity, ensuring compliance, managing risks, and safeguarding our people and assets.
Personal independence
Regulation and controls are standard in our industry. We adhere to strict independence constraints related to financial interests and employment relationships, with further details provided during the recruitment process.
Connect with your colleagues
"Deloitte’s a large, complex, and fast-paced organization, but it’s open to new ideas. Everyone is encouraged to show initiative and challenge the norm.”
-Lisa, Enabling Functions
Our hybrid working policy
You’ll be based in Cardiff with hybrid working arrangements, balancing in-office, virtual, and remote work to support your wellbeing and career development.
Our commitment to you
We foster an environment of purpose, support, and growth, encouraging you to bring your full self to work and develop your skills continuously.
Connect to your next step
A career at Deloitte offers diverse development opportunities. Join us to make an impact, grow your career, and contribute to a purpose-driven culture. Learn more at deloitte.co.uk/careers
#J-18808-Ljbffr