Please upgrade your web browser

These pages are built with modern web browsers in mind, and are not optimized for Internet Explorer 8 or below. Please try using another web browser, such as Internet Explorer 9, Internet Explorer 10, Internet Explorer 11, Google Chrome, Mozilla Firefox, or Apple Safari.

IT Cyber Security Risk Management Consultant

Posted on 26 June 2020

Arlington, VA  

Deloitte & Touche LLP’s dynamic Government and Public Services (GPS) Practice based in Washington D.C. and the surrounding Metropolitan area has opportunities for you to become part of their high-quality team that delivers innovative solutions to key GPS clients in forensic and dispute, audit and accounting, financial management, business process improvement, risk and compliance, security and privacy, IT governance and technology controls, finance and controls analysis and remediation, data quality services, and reporting services.

Our Cyber and Strategic Risk professionals focus on specific industries and sectors and help our clients to focus on improving Cyber Risk detection, and responding more rapidly and effectively to reduce the impact of Cyber Risks through our unique Secure.Vigilant.Resilient approach. Our practice has been widely recognized as the market leader in information security consulting by prominent analyst firms.

The job functions of the GPS IT Cyber Security Risk Management Consultant will include the following:

• Demonstrate strong understanding of large-scale information technology systems, business processes, security regulatory risk management, and security vulnerabilities
• Identify and evaluate complex business and technology risks, internal controls which mitigate risks, and related opportunities for internal control improvement
• Understand clients' business environment and basic IT risk management approaches
• Generate innovative ideas and challenge the status quo
• Lead efforts with clients and the system development teams to design and implement controls to appropriately secure the data at rest, in use, and in motion
• Lead positive working relationships with clients with the intention to exceed client expectations
• Facilitate use of technology-based tools or methodologies to review, design and/or implement products and services

• BA/BS degree in computer science or related field
• Experience in one or more of the following information security domains, including:
o Security Risk Management
o Regulations, Standards Policies, and Procedures
o Privacy and Data Protection
o Network Security Operations
o Security Architectures
o Disaster Recovery and Business Continuity
o Risk Management
o System Development Life Cycle (design and development experience)
• Applicants should be eligible to obtain and maintain an active U.S. Government Security Clearance
• Familiarity with leading security industry standards (NIST 800 series, etc.)
• Experience with internal controls, risk assessments, business process, and internal IT control testing or operational auditing
• Demonstrated ability to write business and technical reports and to participate in presentations
• Experience in capturing business requirements and converting business requirements into functional and technical specifications

In addition, an ideal candidate will also possess one or more of the following:
• Master’s degree preferred
• Strong presentation development and writing skills (e.g., proficient in Microsoft PowerPoint and Word)
• Ability to facilitate client meetings and workshops to define client processes and needs
• Ability to comfortably interact with senior level client personnel, including supporting the preparation of and participating in executive briefings
• Experience leading teams towards a common goal and deliverables
• Identify opportunities to improve engagement profitability
• Participate in, and actively support, mentoring relationships within practice
• Work well under pressure, meet tight deadlines, and committed to work as and when required to complete projects
• Consulting experience in support of systems development, technical administration, or design
• CISSP, CEH, or CISA certification a plus

To apply, please visit Careers at Deloitte via: and search by key word and/or location to view available positions.