Senior Manager - ER&I Cyber Strategy and Transformation

Job Requisition ID: 37068 

• Flexible work arrangements - work in a way that suits you best. 

• Rewards platform - your hard work won't go unnoticed at Deloitte.  

• Training and development - at Deloitte we believe in investing in our best assets, the people! You will have access to world class training and funding towards industry and other professional certifications. 

 

What will your typical day look like? 

As Australia’s leading cyber consultancy, the focus of the practice is helping organisations pragmatically reduce cyber risk or improve regulatory compliance, which can often take several years to do at scale. Our engagements often involve the integration of diverse cyber specialisms from across our practice to help clients execute substantive change. 

 

As a Manager in our Sydney team, your role will involve managing projects that propose, plan and execute on interventions such as business process change, cultural change, technical control implementation or adopting new security architectures. In the role you will continue to build your experience across a variety of iconic clients in key industries, with a focus on cyber security strategy, threat and risk assessments, business analysis, security program design and delivery. Whilst you will sometimes use common maturity frameworks such as NIST as tools in your analysis, the focus of the practice is on executing change rather than ‘measuring maturity’ or ‘studying the problem’. 

 

The Cyber Strategy & Transformation (CS&T) offering sits within a wider national Cyber practice of over 600 people, which includes a diverse range of capabilities including cyber strategy and governance, infrastructure security, assurance and 24x7 detect & respond. As a CS&T Manager you will routinely draw together teams from across the practice to help a client solve a more complex problem.   

 

Enough about us, let’s talk about you. 

 

You a motivated and ambitious professional with some prior experience of working in the cyber field for 4-7 years. You are looking for a change that will give you fresh experiences and rewarding challenges.  

 

You do not need to be a deep expert in every aspect of cyber security – we are seeking a rounded individual who is effective at communicating, effective listening, strategic thinking, building relationships, and providing leadership/motivation to others who are at the beginning of their career. These skills will enable you to engage at different levels in a client organisation, motivate/manage the work of others, and write coherent recommendations that tackle root causes.  

 

You will ideally have base experience of cyber risk assessments, frameworks and security architecture principles, and the implementation considerations of executing change (technical and non-technical) in large and medium sized organisations. When looking at an example case study, you can thoughtfully unpack the key issues and root causes, talk about options and the pros and cons of different risk mitigation approaches. 

 

Skills and knowledge desirable. 

 

• Cyber security standards and frameworks (eg some of ISO 27001, NIST, APRA CPS234, AESCSF) 

• Business analysis and root cause analysis 

• Broad knowledge of cyber security controls and architectural patterns 

• Security governance management systems and processes 

• Cyber security strategy and roadmap development 

• Cyber program and engagement management 

• Third party security risk analysis and management 

• Ability to manage multiple concurrent projects and engagements, small and large engagements. 

• Ability to coach others and lead small teams. 

• Strong interpersonal skills and communication skills, to engage with technical, business and executive stakeholders. 

• Industry experience - especially in financial services or energy & resources 

 

Key experience required. 

 

• 4-7 years of relevant experience in the areas above, ideally with some prior experience of consultancy/professional services 

• Australian citizenship  

 

Qualifications desirable. 

 

• Certifications relating to (or similar): CISSP, ISO27001, SABSA, CISM, ISA62443, CCSP 

 

Why Deloitte 

At Deloitte, we focus on interesting and impactful work. We’re always learning, innovating and setting the standard; making a positive difference to our clients and our society. We put coaching at the heart of what we do, helping our people grow their careers in any direction – whether it be up, moving into something new, or even moving across the world.  

We embrace diversity, equity and inclusion. We have a diverse collection of people from different backgrounds, with different experiences, gender identities, abilities and thinking styles. What binds us together is a shared commitment to value everyone’s perspective and to cultivate inclusion; so that our work environment is a safe space we can all belong.

We prioritise flexibility and choice. At Deloitte, you get trust on Day 1. We know our people get their best work done when they’re in control of where and how they work, designing their work week around their client, team, and personal commitments.

We help you live and work well. To support your personal and professional life, we offer a range of perks and benefits, including retail discounts, wellbeing leave, paid volunteering days, twelve flexible working options, market-leading parental leave and return to work support package.

 

Next Steps

Sound like the sort of role for you? Apply now, we’d love to hear from you!

 

 

 

 

 

By applying for this job, you’ll be assessed against the Deloitte Talent Standards. We’ve designed these standards so that you can grow in your career, and we can provide our clients with a consistent and exceptional Deloitte employee experience globally. The preferred candidate will be subject to background screening by Deloitte or by their external third-party provider.