We are proud of the impact we have with our range of Defence and Security clients, from the strength of our relationships to the variety of our skills and expertise that we bring to help these clients deliver on their mission.
We're growing our teams across all of Technology and Transformation. Using our vast range of expertise, we help our clients' become leaders wherever they choose to compete. We build teams of future thinkers, with diverse talents and backgrounds, and empower them all to reach for and achieve more.
Whatever we do, wherever we are in the world, we lead the way, serve with integrity, take care of each other, foster inclusion, and collaborate for measurable impact. We recognise the importance of bringing together diverse experience and perspectives to innovatively solve some of our clients most complex problems and as a Cyber Security Manager, you will become a trusted advisor to those clients, helping them to navigate the complex world of cyber security, building robust security postures and supporting complex cyber transformations. You will leverage your expertise and that of our technical SMEs to assess their current state, identify vulnerabilities and design and implement tailored solutions that align with their business objectives and risk appetite.
As a senior member of the team, you must develop relationships with key stakeholders, understand a client's security policy framework and control sets, and design solutions that will meet our unique requirements.
Our projects vary greatly and your responsibility as a cyber security manager will differ based on the focus of the engagement and your skillset, but could include and may require you to:
Lead client engagements, building strong relationships and understanding their business objectives, risk tolerance, and security challenges.
Conduct effective workshops and presentations, clearly communicating complex security concepts to both technical and non-technical stakeholders.
Perform comprehensive cyber security assessments, including: vulnerability assessments; security architecture reviews; and risk analysis to identify potential security threats and vulnerabilities.
NIST, ISO 27001, CIS, CAF) to evaluate and benchmark client security posture.
Develop pragmatic and cost-effective security solutions tailored to client needs, encompassing people, process, and technology aspects.
Provide guidance on security technologies, architectures, and best practices for implementing secure solutions.
Assist clients in developing and refining their cyber security strategy, aligning it with their business goals and risk appetite.
Create actionable roadmaps for implementing security initiatives, prioritising activities based on risk and business impact.
Support clients in developing and testing incident response plans and business continuity strategies.
Stay abreast of emerging threats, vulnerabilities, security trends and industry best practices.
Provide specialist technical advice, recommended approaches, recommended security controls and identify solutions that meet client business objectives.
Stay up to date with emerging security threats, technologies, and industry best practices, and provide recommendations for improvement.
All applicants must be willing and eligible to apply for and obtain UK security clearance to Security Check (SC) or Developed Vetting (DV) level, if not already holding an existing clearance.
Information Security qualification (or equivalent) e.g. In-depth knowledge of security frameworks, standards, and best practices (e.g., Experience of working in Cyber/Information security within the Defence / Security environment with a focus on one of more of the domains (Land, Air, Maritime, Space, Cyberspace).
Experience of working within Defensive Cyber Operations with an in-depth knowledge of at least one specialisation (security monitoring, network operations, Incident Response/Management, Threat Intelligence, Vulnerability Management or Cyber Operations).
Experience working in or with Government organisations, including the handling of assets subject to the Government Security Classification Policy.
Experience of threat and risk modelling.
Strong understanding of network security, encryption, authentication, and access control mechanisms.
Experience with security technologies such as firewalls, intrusion detection/prevention systems, security information and event management (SIEM) systems, and vulnerability assessment tools, and their configuration options.
Familiarity with cloud security principles and best practices, including securing cloud-based infrastructure and services (AWS, Azure or Google).
A strong working knowledge of Government cyber requirements related to Defence and Security e.g. JSP440, JSP441, JSP453, JSP490, JSP503, JSP628, JSP892, Security Risk Management, Information Security, Secure by Design, Supply Chain Security.
Connect to your business - Technology and Transformation
If you want to help solve some of the biggest tech and transformational challenges around, join us. We help clients to operate with resilience and grow with confidence to secure success and minimise risk.
These controls provide important legal protection for both you and the firm. in relation to any financial interests and employment relationships). This can mean that you and your "Immediate Family Members" are not permitted to hold certain financial interests (shares, funds, bonds etc.) Innovation is at the heart of everything we do, so we're using the latest technologies to constantly improve how we deliver our projects and bring insights to our clients. Our hybrid working policy
You'll be based in London with hybrid working.
At Deloitte we understand the importance of balancing your career alongside your home life. That's why we'll support you to work flexibly through our hybrid working policy. Depending on the requirements of your role, you'll have the opportunity to work in your local office, virtual collaboration spaces, client sites and remotely. So we're nurturing a culture where everyone belongs, feels supported and heard, and is empowered to make a valuable, personal contribution.