FIND_THE_RIGHTJOB.
Technical Cyber Risk Assessment Manager
JOB_REQUIREMENTS
Hires in
Not specified
Employment Type
Not specified
Company Location
Not specified
Salary
Not specified
Technical Cyber Risk Assessment ManagerReference Code 1879
Country: United States (US)
US Locations: USA - Hermitage; USA - Nashville; USA - Tampa
Deloitte Global is the engine of the Deloitte network. Our professionals reach across disciplines and borders to develop and lead global initiatives. We deliver strategic programs and services that unite our organization.
Work you'll do
The Technical Cyber Risk Assessment Manager will be responsible for the following:
Develop an understanding of Deloitte's global line of business and its priorities, becoming an advocate for addressing cyber risk.
Demonstrate familiarity with the Three Lines of Defense (3LOD) model.
Possess knowledge of risk management practices and the ability to conduct technical risk assessments.
Work with the Global Technology Infrastructure team to integrate system cybersecurity assessments into their processes to ensure consistent implementation of security controls.
Work with the Cybersecurity Architecture team and apply reference architectures for security solutions design and implementation.
Work with the Cyber Defense group and the Security Operations Center to evaluate the effectiveness of the security controls and architectures in relationship to actual intrusions seen on the Deloitte network, reported threats at peer organizations, and overall cybersecurity threats in the internet ecosystem and you will notify leadership of potential or existing threats and assist in the development of risk mitigating strategies of these items.
Monitor security blogs, articles, and reports and remain current on related laws, regulations, and industry standards to keep up to date on the latest security risks, threats, and technology trends and, where relevant, notify leadership to incorporate information into processes, procedures, and audit preparedness activities.
Perform technology security risk assessments. Where appropriate, leverage security shared services (VRA, VM, Pen Testing) and provide oversight and assurance of cybersecurity controls in development and deployment all the way through the system go-live.
Hold great working relationships with the Security Architecture team, Shared Security Service teams, Global Business Services organizations, and Member Firm Services organizations.
Proven experience writing clear, accurate, and user-friendly technical documentation for diverse audiences and purposes, effectively conveying complex information.
Communicate detailed cybersecurity findings and analyses to leadership, subject matter experts (SMEs), and stakeholders, ensuring clarity and comprehensiveness in communication.
The team
Deloitte Technology works at the forefront of technology development and processes to support and protect Deloitte around the world. In this truly global environment, we operate not in what is but rather what can be to help Deloitte deliver and connect with its clients, its communities, and one another in ways not previously conceived.
Qualifications
Do you possess the following?:
5+ years of related experience in cybersecurity risk management in organizations of a similar scale.
Experience in the identification and evaluation of risk, as well as using GRC tools and guidance developed for Risk mitigation.
Practical knowledge of information security standards and risk assessment frameworks such as ISO 27001, SOC 2, NIST 800-32
Strong knowledge of cyber controls, policies, and procedures.
Experience of delivering metrics for senior level audiences.
Demonstrate analytical and problem-solving skills.
Ability to communicate risks associated with complicated security-related concepts to technical and non-technical audiences.
Proficient in the use of PowerBI or a similar dashboarding application.
Knowledge of security systems (including working with SIEM data).
SQL or database knowledge would be desirable.
Relevant certifications such as CISSP, CISM, or CRISC are preferred.
Proven experience in managing and delivering technical projects and teams.
Our culture
At Deloitte Global people are valued and respected for who they are - with opportunities to bring their unique perspectives, talents and passions to business challenges. Our global workspace creates room for individuality and collaboration. Ours is an inclusive, supportive, connected culture with a focus on development, flexibility, and well-being. This culture makes Deloitte Global one of the most rewarding places to work, and to transform your career.
Professional development
From entry-level employees to senior leaders, we believe in investing in you, helping you identify and hone your unique strengths at every step of your career. We offer opportunities to build new skills, take on leadership opportunities, and connect and grow through mentorship. From on-the-job learning experiences to formal development programs, our professionals have a variety of opportunities to continue to grow throughout their career.
Benefits
At Deloitte, we value our people and offer employees a broad range of benefits. Our Total Rewards program reflects our continued commitment to lead from the front in everything we do-that's why we take pride in offering a comprehensive variety of programs and resources to support your health and well-being.
Recruiting for this role ends on 02/01/2026.
Deloitte Global is required by local law to include a reasonable estimate of the compensation range for this role for individuals applying to work in our (Open Cities Requiring Pay Disclosure) locations. This compensation range takes into account the wide range of factors that are considered in making compensation decisions including but not limited to skill sets; experience and training; licensure and certifications; and delivery model. We would not anticipate that the individual hired into this role would land at or near the top end of the range, but such a decision will be dependent on the facts and circumstances of each case. A reasonable estimate of the range is - for individuals applying to work in these locations.
Country: United States (US)
US Locations: USA - Hermitage; USA - Nashville; USA - Tampa
Deloitte Global is the engine of the Deloitte network. Our professionals reach across disciplines and borders to develop and lead global initiatives. We deliver strategic programs and services that unite our organization.
Work you'll do
The Technical Cyber Risk Assessment Manager will be responsible for the following:
Develop an understanding of Deloitte's global line of business and its priorities, becoming an advocate for addressing cyber risk.
Demonstrate familiarity with the Three Lines of Defense (3LOD) model.
Possess knowledge of risk management practices and the ability to conduct technical risk assessments.
Work with the Global Technology Infrastructure team to integrate system cybersecurity assessments into their processes to ensure consistent implementation of security controls.
Work with the Cybersecurity Architecture team and apply reference architectures for security solutions design and implementation.
Work with the Cyber Defense group and the Security Operations Center to evaluate the effectiveness of the security controls and architectures in relationship to actual intrusions seen on the Deloitte network, reported threats at peer organizations, and overall cybersecurity threats in the internet ecosystem and you will notify leadership of potential or existing threats and assist in the development of risk mitigating strategies of these items.
Monitor security blogs, articles, and reports and remain current on related laws, regulations, and industry standards to keep up to date on the latest security risks, threats, and technology trends and, where relevant, notify leadership to incorporate information into processes, procedures, and audit preparedness activities.
Perform technology security risk assessments. Where appropriate, leverage security shared services (VRA, VM, Pen Testing) and provide oversight and assurance of cybersecurity controls in development and deployment all the way through the system go-live.
Hold great working relationships with the Security Architecture team, Shared Security Service teams, Global Business Services organizations, and Member Firm Services organizations.
Proven experience writing clear, accurate, and user-friendly technical documentation for diverse audiences and purposes, effectively conveying complex information.
Communicate detailed cybersecurity findings and analyses to leadership, subject matter experts (SMEs), and stakeholders, ensuring clarity and comprehensiveness in communication.
The team
Deloitte Technology works at the forefront of technology development and processes to support and protect Deloitte around the world. In this truly global environment, we operate not in what is but rather what can be to help Deloitte deliver and connect with its clients, its communities, and one another in ways not previously conceived.
Qualifications
Do you possess the following?:
5+ years of related experience in cybersecurity risk management in organizations of a similar scale.
Experience in the identification and evaluation of risk, as well as using GRC tools and guidance developed for Risk mitigation.
Practical knowledge of information security standards and risk assessment frameworks such as ISO 27001, SOC 2, NIST 800-32
Strong knowledge of cyber controls, policies, and procedures.
Experience of delivering metrics for senior level audiences.
Demonstrate analytical and problem-solving skills.
Ability to communicate risks associated with complicated security-related concepts to technical and non-technical audiences.
Proficient in the use of PowerBI or a similar dashboarding application.
Knowledge of security systems (including working with SIEM data).
SQL or database knowledge would be desirable.
Relevant certifications such as CISSP, CISM, or CRISC are preferred.
Proven experience in managing and delivering technical projects and teams.
Our culture
At Deloitte Global people are valued and respected for who they are - with opportunities to bring their unique perspectives, talents and passions to business challenges. Our global workspace creates room for individuality and collaboration. Ours is an inclusive, supportive, connected culture with a focus on development, flexibility, and well-being. This culture makes Deloitte Global one of the most rewarding places to work, and to transform your career.
Professional development
From entry-level employees to senior leaders, we believe in investing in you, helping you identify and hone your unique strengths at every step of your career. We offer opportunities to build new skills, take on leadership opportunities, and connect and grow through mentorship. From on-the-job learning experiences to formal development programs, our professionals have a variety of opportunities to continue to grow throughout their career.
Benefits
At Deloitte, we value our people and offer employees a broad range of benefits. Our Total Rewards program reflects our continued commitment to lead from the front in everything we do-that's why we take pride in offering a comprehensive variety of programs and resources to support your health and well-being.
Recruiting for this role ends on 02/01/2026.
Deloitte Global is required by local law to include a reasonable estimate of the compensation range for this role for individuals applying to work in our (Open Cities Requiring Pay Disclosure) locations. This compensation range takes into account the wide range of factors that are considered in making compensation decisions including but not limited to skill sets; experience and training; licensure and certifications; and delivery model. We would not anticipate that the individual hired into this role would land at or near the top end of the range, but such a decision will be dependent on the facts and circumstances of each case. A reasonable estimate of the range is - for individuals applying to work in these locations.
Similar jobs
Senior Third-Party Risk Intelligence Analyst, Supplier Governance
Amazon.com
Austin, United States
about 3 hours ago
Vulnerability & Cloud Security Manager
NinjaOne
Remote, United States
5 days ago
Senior Budget Analyst - Department of Homeland Security - Federal Protective Service
TLN Worldwide Enterprises Inc
San Diego, United States
5 days ago
Senior Analyst - Modernization Integration & Readiness (FDM)
SABG
Arlington, United States
5 days ago
Lead Cyber Assessment Analyst
NiSource
Columbus, United States
5 days ago
Full Spectrum Cyber Solutions Sr Director
Dhara Consulting Group
Herndon, United States
5 days ago
Chief Information Security Officer (0933 Manager V) - Department of Public Health
San Francisco Department of Public Health
San Francisco, United States
5 days ago
© 2025 Qureos. All rights reserved.