Graduate Analyst Program - Cyber Strategy and Transformation - Feb'25 - SG / ID

Are you ready to unleash your potential?

At Deloitte, our purpose is to make an impact that matters for our clients, our people, and the communities we serve. 

We believe we have a responsibility to be a force for good, and WorldImpact is our portfolio of initiatives focused on making a tangible impact on society’s biggest challenges and creating a better future. We strive to advise clients on how to deliver purpose-led growth and embed more equitable, inclusive as well as sustainable business practices. 

Hence, we seek talented individuals driven to excel and innovate, working together to achieve our shared goals. 

We are committed to creating positive work experiences that foster a culture of respect and inclusion, where diverse perspectives are celebrated and everyone is recognized for their contributions.

Ready to unleash your potential with us? Join the winning team now!

Work you will do

You will be part of our structured Deloitte SEA Graduate Analyst Program and be given a personal coach, the opportunity to undergo a 3-weeks intensive bootcamp training aimed at equipping you with the skillsets necessary to excel, and opportunities to gain regional exposure by travelling across SEA as part of project assignments, and other professional development opportunities.

This program will allow you to develop core consulting skills and business acumen whilst gaining access to a wide scope of training and development activities. In addition, you will have an opportunity to work with like-minded people and gain exposure to a variety of projects within the chosen business area. You will be at the center of it all, performing research, data analysis and modelling to tackle complex business problems. In addition, you will contribute directly to the development of proposals, presentations, and publications.

• Support the engagement delivery and work with clients' stakeholders to understand their business objectives and cybersecurity needs.
• Build and maintain strong relationships with clients, serving as a trusted advisor on cybersecurity matters.
• Cybersecurity Assessment: Support evaluating the existing client’s cybersecurity capabilities against standards/frameworks (people, process, technology), identify gaps, and provide actionable recommendations for improvement.
• Regulatory/ Standard Compliance: Support evaluating the client’s security controls to ensure compliance with relevant cybersecurity regulations, standards (e.g., NIST, ISO), and industry best practices.
• Cyber Strategy Development: Support developing the client’s cybersecurity strategy, security plan, and roadmap to improve the client's cyber security posture.
• Cyber Architecture Review: Support assessing the client’s network, enterprise, and security architecture.
• Cyber Risk Management: Support the development of a cybersecurity risk management framework, policy, and procedures, including the roles, responsibilities, operation model, risk register, cyber risk formula, and risk evaluation criteria.
• Cyber Risk Assessments: Support the assessment of cybersecurity risk and develop mitigation plans to address potential security threats, including developing a cyber security KPI/ KRI, cyber risk threshold, and cyber risk report for the management.
• Cyber Operating Model: Support assessing clients' cybersecurity organizations, personnel, roles, responsibilities, competencies, and performance evaluation of cybersecurity personnel.
• Cyber Training Awareness: Support the preparation of cyber security training and awareness for the client’s various stakeholders.
• Cyber Maturity Improvement/ Remediation: Assist clients with implementing cyber security recommendations, programs, and initiatives. This includes assisting the implementation of cyber security technologies/ solutions, designing and developing control designs, frameworks, policies, procedures, and guidelines, and supporting the implementation of cyber security controls.

Your role as a leader

At Deloitte, we believe in the importance of empowering our people to be leaders at all levels. We connect our purpose and shared values to identify issues as well as to make an impact that matters to our clients, people, and communities. Additionally, Analyst across our Firm are expected to:

• Demonstrate a strong commitment to personal learning and development.
• Understand how our daily work contributes to the team's priorities and business.
• Understand the set expectations and demonstrate accountability in keeping personal performance on track.
• Actively develop effective communication and relationship-building skills with stakeholders, clients, and team.
• Seek opportunities to challenge yourself, collaborate with others to deliver, and take accountability for results.
• Demonstrate integrity and an awareness of strengths, differences, and personal impact.
• Develop your understanding of Deloitte and offer a fresh perspective.
• Develop yourself by actively seeking growth opportunities, sharing knowledge and experiences with others, and acting as a strong brand ambassador.
• Work effectively in diverse teams within a highly inclusive team culture where everyone is supported, respected, and recognized for contribution.

What we are looking for

If you are someone with:

• Available to commence work in February 2025.
• Graduating or graduated with a degree in Information Security, Information Systems Management, Computer Science, Engineering, or other related discipline.
• Ability to work both independently and as part of a team with professionals at all levels.
• Outstanding problem-solving skills, including the ability to analyze complex issues, develop hypotheses, and recommend solutions.
• Demonstrate clear, articulate, and confident written and verbal communication in English.
• Team player with excellent interpersonal and communication skills.
• Exposure to international standards (e.g., NIST, CIS 20, ISO27001, PCI - DSS, and data privacy) and strong knowledge of cybersecurity concepts (e.g., Identity and Access Management, Asset Security, Network Security, Security Operations, Cloud Security, and Software Development Security).
• Experience in the following areas will be an advantage: cybersecurity assessments, cloud security, security architecture review, cyber risk assessments, DevSecOps, cybersecurity governance, cybersecurity/ IT audit.
• Certification in CISSP, CISM, CISA, CRISC, CEH, ECIH, CHFI, CTIA, Security+, Network+, CySA+, CCSK, OSCP, CRTP, ISO 27001 lead auditor or implementor is highly advantageous.

Due to volume of applications, we regret that only shortlisted candidates will be notified.

Please note that Deloitte will never reach out to you directly via messaging platforms to offer you employment opportunities or request for money or your personal information. Kindly apply for roles that you are interested in via this official Deloitte website.

#LI-DA