Senior Manager - Cyber Strategy

Company Description

Deloitte is a leading global provider of audit and assurance, consulting, financial advisory, risk advisory, tax, and related services. Our global network of member firms and related entities in more than 150 countries and territories (collectively, the “Deloitte organisation”) serves four out of five Fortune Global 500® companies. Learn how Deloitte makes an impact that matters at www.deloitte.com.

About the Division

The value that Deloitte Risk Advisory Africa creates for organisations is synonymous with operational excellence. Our five business areas work in unison to provide integrated solutions unique to the organisational requirements of any business.

In a world that is constantly changing, organisations need to adapt quickly to respond to new risks and take advantage of new opportunities. Deloitte's Risk Advisory practice advises organisations on how to effectively mitigate risk and make informed and intelligent risk decisions around business processes, technology, and operations. Click here to read more about our Risk Advisory practice.

Click here to see more about what our Cyber Risk team does.

Job Description

What impact will you make?

Every day, your work will make an impact that matters, while you thrive in a dynamic culture of inclusion, collaboration and high performance. As the undisputed leader in professional services, Deloitte is where you’ll find unrivalled opportunities to succeed and realise your full potential.

As Sub-offering leader, the Senior Manager is responsible for the definition and implementation of a market focused service offering strategy. This role is expected to set and drive the goals, implementation and execution of the marketing, networking, team capacity building, team skills development, and tools expansion.

Responsibilities:

• Support the implementation of the Service Line strategy/ business area in relation to specific expertise
• Grow market network with key players and build long-term relationships, whilst participating in sales presentations and client negotiation terms for new or retained business
• Drive Cyber offerings into top clients, while contributing in leading sales and delivery to Mega Cyber clients in one of more of the following industries; telecommunications, Media & Technology, FSI, Energy, Resources & Industrial Products, Consumer, Life Sciences and Health Care and/or Government & public services
• Lead clients through end-to-end design and delivery of targeted, holistic and sustainable cyber strategy programs
• Engage with technical, senior and C-Suite management at clients whilst maintaining high level oversight of client engagements and projects
• Build relationships across Deloitte Service lines for cross-selling opportunities and combined engagement pursuits, including integrating cyber offerings and solutions and contribute to thought leadership whilst sharing knowledge and expertise with clients, colleagues and teams
• Drive client portfolio and profitable book of business whilst identifying innovative solutions on projects/ engagements to enhance/ renew client service offerings
• Strategic level risk management coupled with process design and ownership and ensure full compliance with engagement quality requirements
• Effecting manage margins through accurate budgeting, pricing and profitability management on engagements and oversee WIP on projects/ engagements and ensure billings are timeously completed.
• Act as Squad Leader to support finance and operations, whilst proactively monitoring staff productivity and engagement profitability
• Mentor and develop team members and counselees, whilst maintaining dynamic succession plans for critical resources and commitment to the firm agenda.
• Empower team members through delegation of work, whilst providing consistent recognition and encouragement to teams
• Understand client strategy to influence and advise client leadership on key risk decisions
• Ensure effective risk assessment compilation and mitigation plan execution, determine risk tolerance and identify key business risks and cyber-threat exposures
• Recognise, analyse and address third-party and regulatory compliance risks created by the development of new, complex and distributed networks in order to avoid potential threats to business critical data and systems
• Build eminence and assemble teams to best serve clients and maximise engagement economics, through a global approach to networking

Qualifications

Minimum qualifications:

• Relevant Degree, honours or post graduate diploma, professional qualifications e.g. B.Sc, B.Com, or B.Ing/Eng or M.Sc

Desired qualifications:

• Advanced certifications, diplomas, professional certifications, advanced degrees in Cyber or information security - examples include:
  • ·CISM (Certified Information Security Manager)
  • CISSP (Certified Information Systems Security Professional)
  • ISMP (Information Security Management Principles)
  • CCSP (Certified Cloud Security Professional)
  • Certified Ethical Hacker – EC Council
  • Cloud Security Certifications
  • Information and Cyber Security Frameworks: ISO/IEC 27001/2; NIST SP800-53; NIST CSF; CYBOK
  • ISO27001 Lead Auditor/Implementer Certificate
  • SABSA Chartered Security Architect
  • (TOGAF) The Open Group Architecture Framework
  • Cisco Unity Systems Engineer
  • ITIL – IT Infrastructure Library Foundation

Experience:

• 9 years working experience is required
• 7 years preferably within a client facing role and 3 years within management
• 7-9 years of progressive experience with role(s) in a professional, consulting services (including boutique security firm), public and/or private sector organisations is required.
• Experience in delivering Cyber strategy, transformation and assessments
• Experience in Cyber risk management and compliance
• Experience in:
  • Software / solution architecture, design and development
  • Secure architecture and engineering principles
  • Designing network layer security solution
  • Web and mobile application security, including mobile gateway security and multi-channel security
  • PCI standards and Payments security
  • NIST Cyber security framework for Critical Infrastructures (CSF)
  • NIST SP-800-53
  • Development and open source technology experience
  • IT Operations and processes
  • Privacy implementation according to POPIA and/or GDPR
  • Laws related to Information Security, Cyber Security, Data Protection and/or Privacy

Technical competencies:

• Deep technical SME and industry experience in Cyber. With understanding of complexity at Network, application, database, infrastructure, and cloud level
• Understands the integration points of Cyber sub offering with broader Digital Risk, Cyber Risk and enterprise consulting offerings in line with market demand.

Behavioural Competencies:

• Excellent communication skills, both written and verbal
• Effective engagement management and delivery within time and budget
• Proven ability to make decisions and the right judgement calls
• Ability to provide leadership and guidance/coaching to junior member of the team, whilst creating a culture of trust and accountability
• Custodian of the business, shaping offerings that we need to proactively take to the market
• Manages large engagement / multiple engagement deadlines holistically, identifying risks and escalating. 
• Ownership of deliverables driving team quality and risk management.

Additional Information

At Deloitte, we want everyone to feel they can be themselves and to thrive at work—in every country, in everything we do, every day. We aim to create a workplace where everyone is treated fairly and with respect, including reasonable accommodation for persons with disabilities. We seek to create and leverage our diverse workforce to build an inclusive environment across the African continent.