Job Details

Click here to become a registered jobseeker.

Cyber Risk Analyst, Quality, Risk and Security, Regional offices

Cardiff, South Glamorgan, United Kingdom, £ £ - Annual Annual, Permanent


Your opportunity

This is a fantastic opportunity for a result driven individual, who enjoys variety and challenge in their working day. You will be joining the second line of defence Cyber Risk team within Deloitte Business Security (DBS) at an Assistant Manager level to help protect the firm, drive positive change and your own professional development in an ever changing, digitising and evolving cyber world.

We encourage consideration of flexible ways of working, both formal and informal arrangements that allow for the best outcomes for our people and our clients. If this opportunity is of interest to you with some flexibility, please do discuss with us.

Your role
The role requires an in-depth understanding of information, technology and business security and risk. Successful candidates will be expected to demonstrate relevant experience working in a dynamic environment dealing with complex challenges, and communicating to all levels of the business. The role is within the Cyber Risk team, which is an internal facing team and a part of the wider Deloitte Business Security team.

• Understand the second line Cyber Risk services and support awareness, consultancy and delivery of the services across the business.

• Build and maintain relationships, provide Cyber Risk subject matter expertise to the wider DBS & Quality & Risk community, identifying and proactively improving key relationships with stakeholders in that community

• Define and implement a process to perform sampled reviews of security incidents and threats to validate that they have been correctly handled and/or action taken and lessons learned according to risk they bring to the firm

• Support the team's Information Protection services, assisting with documenting and maturing capabilities and services as required

• Coordination and building relationships with the Quality Risk & Management teams in the different Deloitte service lines, and support with building and maintaining a risk profile for each service line

• Perform assurance activities relating to specific cyber security capabilities/control domains in line with areas of subject expertise across firm systems and processes to report on maturity and effectiveness

• Maintain the current list of security technology/tools in use at the firm and understand their remit and scope. Support providing Cyber Risk input into general enquiries and client questionnaires that the team receives, seeking out answers amongst the cyber risk and information security teams as needed and refining the process and knowledge repository

• Engage with internal clients and stakeholders to drive understanding of the value of cyber risk assurance and consolidated risk positions and how these activities help enable the business

• Work effectively in diverse teams within an inclusive team culture where people are recognised for their contribution

Your work, your choice
At Deloitte we believe the best impact is the value we add, not the hours we sit at our desk. We carefully consider agile ways of working, both formal and informal, that allow for the best impact for our people and our clients. Please speak to your recruiter about the working pattern that works best for you.

Location: You will have a regional office aligned based on your location, but with the option to work remotely from home and flexibly too.

Work pattern: This is a permanent full-time role. Our team members are able to work a variety of agile working patterns. Tell us what arrangement works for you and we'll try to accommodate.

Your professional experience

• Information security experience within a relevant business sector

• Ability to demonstrate a good understanding of a range of information technology systems and of any inherent security risks associated with these technologies

• Ability to demonstrate understanding of information security principles, accreditations and best practice (e.g., ISO27001 and ISF Standards of Good Practice for Information Security)

• Ability to effectively communicate business and technical risk to all potential audiences, strong stakeholder management skills, and to understand technology systems and applications from both a technical and business function perspective

• Self-motivated and able to manage multiple concurrent deliverables, good communication skills and ability to provide a positive influence within a team

• One or more respected industry qualifications (e.g. CISSP, CISM, CISA, CRISC, SABSA) preferred but not essential

Your service line: Quality, Risk and Security

The Quality, Risk and Security (QRS) community is an overarching identity for all of the professionals who manage quality and risk for Deloitte. It comprises:
Deloitte Business Security (DBS), National Quality and Risk Management (NQRM), Quality & Risk Operations (QR Ops), and Service Line Quality and Risk Management teams (including Switzerland), and is led by a dedicated partner who sits on the firm's Executive. Within QRS, we use our skills and experience across a variety of disciplines to support a risk intelligent culture at Deloitte; enabling our partners and practitioners to deliver high quality services to their clients, minimising the administrative burden on our people, and acting as custodians of firm risk, security, ethics and reputation.

Personal independence
Regulation and controls are standard practice in our industry and Deloitte is no exception. These controls provide important legal protection for both you and the firm. We are subject to a number of audit regulations, one of which requires that certain colleagues abide by specific personal independence constraints. This can mean that you and your "Immediate Family Members" are not permitted to hold certain financial interests (shares, funds, bonds etc.) with audit clients of the firm.
The recruitment team will provide further detail as you progress through the recruitment process.

For a full job description please visit our online Deloitte Careers portal.

Job Details

Not Specified
Cardiff, South Glamorgan, United Kingdom
£ £ - Annual Annual