Share this Job

Cyber Analyst -Global

Date:  14-May-2022
Location: 

Sydney, NSW, AU Melbourne, VIC, AU Brisbane, QLD, AU Adelaide - Fullarton, SA, AU

Department:  Internal Client Services
Description: 

Job Requisition ID: 21685 

•    Work in a highly innovative and transformative business
•    Work/life balance with access to flexible work arrangements
•    Salary packaging – to suit your personal and financial circumstances

Do you thrive on developing creative and innovative insights to solve complex challenges? Want to work on next-generation, cutting[1]edge products and services that deliver outstanding value and that are global in vision and scope? Work with other experts in your field? Work for a world-class organization that provides an exceptional career experience with an inclusive and collaborative culture?

 

What will your typical day look like?
The SSDLC Optimization Analyst reports to the SSDLC Optimization Manager. The role focuses on the design, build, adoption, and ongoing improvement of a single, consistent Secure Systems Development Lifecyle (SSDLC) across all Deloitte member firms (MFs) and DevHubs. The purpose of the SSDLC is to ensure secure information system design and development across all stages of a product’s lifecycle, and to protect Deloitte assets and Deloitte and client data.

Strategic :

  • Support the design, build, socialization, and maintenance of a single, consistent SSDLC process to be used in all Deloitte MFs and DevHubs, in alignment with Global Cybersecurity Policies and Standards. The SSDLC process will leverage both waterfall and agile methodologies to deliver secure implementations of commercial off-the-shelf (COTS) software, network infrastructure and custom-developed system/solutions in both on-prem and cloud-based environments.

  • Support the design, build and operation of an SSDLC certification program that member firms and DevHubs must comply with to operate the SSDLC

  • Test and validate proposed SSDLC processes, factoring in implementation and operation impact and cost

  • Leverage automation technologies such as robotic process automation (RPA) to reduce cost and increase efficiency of SSDLC operations

  • Create, develop, and maintain strong relationships with SSDLC analysts in MFs and DevHubs to support the implementation and operation of a consistent SSDLC process

Tactical:

  • Provide day to day implementation and integration support to MFs and DevHubs as they adopt a consistent SSDLC

  • Assess the effectiveness of cybersecurity requirements and controls utilized by system/solutions

  • Provide risk analysis and remediation guidance to project teams upon receipt of security test results

  • Document SSDLC and supporting processes. Update as necessary

  • Operate metrics reporting and monitoring capabilities

  • As required, operate SSDLC, including support for architectural security reviews, identification of security gaps in architecture, and ensuring system/solutions incorporate necessary security requirements

 

Let’s talk about you. 
You are someone with:

  • Bachelor’s degree in computer science, cybersecurity, other technology-related fields, or equivalent education-related experience

  • Minimum of 2 years of combined experience in engineering, solution design and risk assessment in a cybersecurity context

  • Experience building, operating and/or supporting SSDLC in technology environments

  • Strong interpersonal and collaborative skills, with ability to communicate security topics, policies, and standards as well as risk[1]related concepts to technical and nontechnical peers

  • Work effectively to meet tight deadlines in a fast-paced environment and reprioritize work while providing a world-class customer experience

  • Excellent written and verbal English language communication skills

  • Ability to collaborate effectively with others and function in a collaborative environment, seeking continuous consultation with other analysts and experts to leverage analytical and technical expertise

  • Ability to multi-task, prioritize work and work independently

  • Knowledge of risk management processes (e.g., methods for assessing and mitigating risk), and cybersecurity (relevant to confidentiality, integrity, availability, authentication, non-repudiation)

  • Knowledge of systems testing, evaluation methods, and countermeasures for identified security risks

  • Knowledge of network security architecture concepts including topology, protocols, components, and principles (e.g., application of defense-in-depth)

  • Knowledge of network protocols, GWAN and WAN technologies and fundamental networking skills (TCP, IP, IDS/IPS, virtualization, etc.)

  • Knowledge of software development models (e.g., Waterfall Model, Agile)

  • Knowledge of common information security management frameworks, such as ISO/IEC 27001, COBIT, and NIST, including 800- 53 and the NIST Cybersecurity Framework

  • Skill in discerning the protection needs (i.e., security controls) of information systems and networks

  • Skill in conducting audits or reviews of technical systems

 

Why Deloitte? 
At Deloitte, we create positively differentiated work experiences that enable our people to feel valued and achieve their full potential. Deloitte Australia opens the door to a career that can cross borders virtually and physically across Asia Pacific to gain experience and access projects beyond Australia’s borders. We value difference, and embrace people with diverse backgrounds, experiences, gender identities, abilities and thinking styles. Knowing that people work best in a variety of ways, we are happy to discuss alternative arrangements if the working pattern you are looking for is not specifically indicated. 

We’re committed to continually building a safe and respectful workplace, where all our people feel appreciated and accepted. Through the creation of endorsed employee-led diversity networks which promote cultural, disability, LGBTI+, Aboriginal and Torres Strait Islander people and gender equality, we’re leading the way to shape an environment where everybody can thrive. 

We are proud to have been recognised for our efforts in inspiring change and accelerating progress – check out our careers site for recent recognition in this space
 
Next Steps 
Sound like the sort of role for you? Apply now using the link provided.

By applying to this job, you will be assessed against the Deloitte Global Talent Standards. We’ve designed these standards to provide our clients with a consistent and exceptional Deloitte employee experience globally.

 

At Deloitte, we know we’re at our best when we look out for one another; prioritise respect, fairness, development and wellbeing; foster an inclusive culture and embrace diversity in all forms. All qualified applicants will receive consideration for employment regardless of their background, experience, identity, ability or thinking style, and if you need assistance or an accommodation during the application process for accessibility reasons this is available upon request. 

 

The preferred candidate will be subject to background screening by Deloitte or by their external third-party provider.