Deloitte Technology Cybersecurity – Assistant Manager, Security Inquiry Response Centre (SIRC) in Aberdeen

Deloitte Technology works at the forefront of technology development and processes to support and protect Deloitte around the world. In this truly global environment, we operate not in "what is" but rather "what can be" to help Deloitte deliver and connect with its clients, its communities, and one another in ways not previously conceived.

Deloitte drives progress. Using our vast range of expertise, we help our clients become leaders wherever they choose to compete. To do this, we invest in outstanding people. We build teams of future thinkers, with diverse talents and backgrounds, and empower them all to reach for and achieve more.

As the demand for security and technology-related information from our multinational and local clients continues to grow, it is crucial for Deloitte to provide consistent, centralized, and timely responses. As a SIRC Assistant Manager within Deloitte Technology, specifically under Cybersecurity, Governance, Risk and Compliance team, you will play a pivotal role in addressing these client security inquiries for our member firms, their clients and Regulators. In this role, you prepare responses that are thorough, accurate, and reflective of Deloitte's commitment to security and data protection. This position requires a proactive mindset, strong analytical capabilities as your contributions will be essential in maintaining our clients' trust and upholding our reputation.

As part of the Security Inquiry Response Center you will:

• Address member firm, client, regulatory, and audit-related information security requests.
• Identify, gather, and pre-populate responses using Standard Answer Banks (SABs).
• Determine remaining questions needing consultation with Management, Client Security Leads (CSLs), or Subject Matter Experts (SMEs).
• Ensure the quality and consistency of work done by other team members.
• Assign and plan tasks for other team members.
• Highlight and address issues in SABs and assist with their maintenance, improving quality of responses and expanding scope as necessary.
• Support service queue and mailbox rotation for consistent coverage.
• Analyze and evaluate security requests, internal/external assessments, and audits.
• Coordinate internal/external audit requests, including scoping, data gathering, and refinement.
• Assist with evidence gathering and sanitization activities.
• Build strong relationships with internal stakeholders and maintain regular communication with the management team, member firm CSLs and various SMEs to improve deliverable quality.
• Contribute to the development of best practices and stay up to date on global security policies, standards and technology.

Do you possess the following?

• Bachelor’s Degree or higher in business administration (or equivalent), a technology-related field, or equivalent experience.
• Relevant demonstrated experience in applying leading practices in a large-scale Information Security.
• Basic knowledge of Information Systems Security, cyber security, IT auditing, IT risk management and compliance and/or vendor security risk management.
• Working knowledge of various IT risk frameworks, methodologies, leading industry/assurance standards and regulations, as well as attestation reporting frameworks, such as the ISO family of standards (27001/2, ISO 22301, ISO 27017, etc.), NIST, COBIT, SOC2 reporting framework.
• Basic knowledge of GRC tools (e.g., ServiceNow).
• Strong analytical and problem-solving skills.

Collaboration is central to everything we do at Deloitte. From IT to HR, marketing and more, our teams help to support the wider business in everything they do. Bringing your individual skills and specialist knowledge, you can make a far-reaching impact.

Regulation and controls are standard practice in our industry and Deloitte is no exception. These controls provide important legal protection for both you and the firm. We are subject to a number of audit regulations, one of which requires that certain colleagues abide by specific personal independence constraints (e.g., in relation to any financial interests and employment relationships).

Our hybrid working policy allows you to work flexibly through our hybrid working policy. Depending on the requirements of your role, you’ll have the opportunity to work in your local office, virtual collaboration spaces, client sites and remotely.

Making an impact is more than just what we do: it’s why we’re here. So we work hard to create an environment where you can experience a purpose you believe in, the freedom to be you, and the capacity to go further than ever before. Your expertise is our capability, so we’ll make sure it never stops growing. Whether it’s from the complex work you do, or the people you collaborate with, you’ll learn every day.

A career at Deloitte is an opportunity to develop in any direction you choose. Join us and you’ll experience a purpose you can believe in and an impact you can see.