Senior Manager - Cyber (Energy, Resources & Industrials)

Job Requisition ID: 37412 

• Flexible work arrangements - work in a way that suits you best. 

• Rewards platform - your hard work won't go unnoticed at Deloitte.  

• Training and development - at Deloitte we believe in investing in our best assets, the people! You will have access to world class training and funding towards industry and other professional certifications. 

 

What will your typical day look like? 

As Australia’s leading cyber consultancy, the focus of the practice is helping organisations improve their cyber posture, reduce cyber risk or improve regulatory compliance. We recognise that most organisations are inherently complex systems of people, processes, technology, suppliers (and stakeholder opinions) and so our work has a strong emphasis on pragmatism, targeting of interventions, achieving consensus and sustained change, rather than dogmatically following a maturity framework.  

 

About the role

As a Senior Manager in our Sydney team, your role will involve predominately working with clients in critical infrastructure and capital-intensive industries such as energy, resources, industrials and real estate.  

You will help manage client relationships, scope/propose new work and lead projects. The work will include cyber security strategy, threat and risk assessments, SOCI, business analysis, security program design and delivery. Whilst you will sometimes use common frameworks such as NIST or AESCSF as tools in your analysis, the focus of the practice is on executing change rather than ‘measuring maturity’ or ‘studying the problem’.  

Our engagements often involve helping clients solve complex problems and this role sits in Cyber Strategy & Transformation, which is part of our national Cyber practice of 600 people in Australia that has scale around implementation and 24x7 operation of cyber controls. This role will involve the integration of diverse cyber specialisms from across our practice to help clients execute substantive change to reduce risk. 

 

Enough about us, let’s talk about you. 

You a motivated and ambitious professional with prior experience of working in the cyber field for 6-10 years. You are looking for a change that will give you fresh experiences and rewarding challenges.  

You do not need to be a deep expert in every aspect of cyber security – we are seeking a rounded individual who is effective at communicating, facilitation, strategic & analytical thinking, building relationships, and providing leadership/motivation to others who are at the beginning of their career. These skills will enable you to engage at different levels in a client organisation, motivate/manage the work of others, and write coherent recommendations that tackle root causes.  

This role is focused on sectors with industrial processes and control systems (operational technology), which have particular nuances (24x7 running, high aversion to configuration change, diversity of service providers) and so it’s beneficial if you have some prior experience of the considerations of managing and reducing risk to these processes. 

Emotional intelligence is important – you need to be able to listen and enquire effectively, and give stakeholders an opportunity to express opinions, rather than being the “smartest person in the room”.  

You will ideally have experience of cyber risk assessments, frameworks and security architecture principles, and the implementation considerations of executing change (technical and non-technical) in large and medium sized organisations. When looking at an example case study, you can thoughtfully unpack the key issues and root causes, talk about options and the pros and cons of different risk mitigation approaches. 

Skills and knowledge desirable. 

 

• Cyber security standards and frameworks (eg some of AESCSF, SOCI, ISO 27001, NIST, ISA 62443) 

• Business analysis and root cause analysis 

• Broad knowledge of cyber security controls and architectural patterns 

• Understanding of operational technology, common risk mitigation approaches and how to execute change 

• Security governance management systems and processes 

• Threat & risk assessments 

• Cyber security strategy and roadmap development 

• Cyber program and engagement management 

• Third party security risk analysis and management 

• Ability to manage multiple concurrent projects and engagements, small and large engagements. 

• Ability to coach others and lead small teams. 

• Strong interpersonal skills and communication skills, to engage with technical, business and executive stakeholders. 

 

Key experience required. 

 

• 4-7 years of relevant experience in the areas above, ideally with some prior experience of consultancy/professional services 

• Australian citizenship  

 

Qualifications desirable. 

 

• Certifications relating to (or similar): CISSP, ISO27001, SABSA, CISM, ISA62443, CCSP 

 

Why Deloitte 

At Deloitte, we focus on interesting and impactful work. We’re always learning, innovating and setting the standard; making a positive difference to our clients and our society. We put coaching at the heart of what we do, helping our people grow their careers in any direction – whether it be up, moving into something new, or even moving across the world.  

We embrace diversity, equity and inclusion. We have a diverse collection of people from different backgrounds, with different experiences, gender identities, abilities and thinking styles. What binds us together is a shared commitment to value everyone’s perspective and to cultivate inclusion; so that our work environment is a safe space we can all belong.

We prioritise flexibility and choice. At Deloitte, you get trust on Day 1. We know our people get their best work done when they’re in control of where and how they work, designing their work week around their client, team, and personal commitments.

We help you live and work well. To support your personal and professional life, we offer a range of perks and benefits, including retail discounts, wellbeing leave, paid volunteering days, twelve flexible working options, market-leading parental leave and return to work support package.

 

Next Steps

Sound like the sort of role for you? Apply now, we’d love to hear from you!

 

 

 

By applying for this job, you’ll be assessed against the Deloitte Talent Standards. We’ve designed these standards so that you can grow in your career, and we can provide our clients with a consistent and exceptional Deloitte employee experience globally. The preferred candidate will be subject to background screening by Deloitte or by their external third-party provider.