leadership What were looking for: 5+ years in tech risk, IT audit, cyber/digital resilience (FS sector) Strong knowledge of FCA/PRA Operational Resilience, DORA, ISO/NIST/COBIT Experience managing multi-workstream projects & producing board-level deliverables Excellent communicator with proven leadership skills Professional certifications (CISA, CRISC, CISM etc.) and cloud/AI knowledge are a More ❯
leadership What were looking for: 5+ years in tech risk, IT audit, cyber/digital resilience (FS sector) Strong knowledge of FCA/PRA Operational Resilience, DORA, ISO/NIST/COBIT Experience managing multi-workstream projects & producing board-level deliverables Excellent communicator with proven leadership skills Professional certifications (CISA, CRISC, CISM etc.) and cloud/AI knowledge are a More ❯
leadership What were looking for: 5+ years in tech risk, IT audit, cyber/digital resilience (FS sector) Strong knowledge of FCA/PRA Operational Resilience, DORA, ISO/NIST/COBIT Experience managing multi-workstream projects & producing board-level deliverables Excellent communicator with proven leadership skills Professional certifications (CISA, CRISC, CISM etc.) and cloud/AI knowledge are a More ❯
leadership What were looking for: 5+ years in tech risk, IT audit, cyber/digital resilience (FS sector) Strong knowledge of FCA/PRA Operational Resilience, DORA, ISO/NIST/COBIT Experience managing multi-workstream projects & producing board-level deliverables Excellent communicator with proven leadership skills Professional certifications (CISA, CRISC, CISM etc.) and cloud/AI knowledge are a More ❯
or Partner level. Ensure that the project adheres to Deloitte's Cybersecurity capability framework, relevant information security regulations and industry standards. Examples include GDPR, EU AI Act, ISO 27001, NIST Cybersecurity Framework, and Cyber Essentials +. Communicate security awareness, concerns, and requirements to project stakeholders, including developers, project managers, and business leaders, to ensure alignment and buy-in. Maintain documentation … and controls inherent in various technologies, and related best practices. This includes OWASP Top 10 and vulnerability management. Have strong knowledge in cybersecurity frameworks andstandards like ISO 27001, NIST, COBIT, and Cyber Essentials+ or equivalent. Experience with risk management methodologies, techniques, and being able to clearly understand and articulate risk. Demonstrable ability to identify risks associated with business processes More ❯
or Partner level. Ensure that the project adheres to Deloitte's Cybersecurity capability framework, relevant information security regulations and industry standards. Examples include GDPR, EU AI Act, ISO 27001, NIST Cybersecurity Framework, and Cyber Essentials +. Communicate security awareness, concerns, and requirements to project stakeholders, including developers, project managers, and business leaders, to ensure alignment and buy-in. Maintain documentation … and controls inherent in various technologies, and related best practices. This includes OWASP Top 10 and vulnerability management. Have strong knowledge in cybersecurity frameworks andstandards like ISO 27001, NIST, COBIT, and Cyber Essentials+ or equivalent. Experience with risk management methodologies, techniques, and being able to clearly understand and articulate risk. Demonstrable ability to identify risks associated with business processes More ❯
technology to solve business problems, working in partnership with our clients to help in achieving their goals. About the role: Develop and maintain GRC frameworks aligned with ISO 27001, NIST, GDPR, and NIS2 standards Conduct risk assessments across business units, vendors, and projects Monitor regulatory changes and ensure compliance with legal and contractual obligations Support business continuity and disaster recovery … e.g., GDPR, Data Protection Act) and industry-specific regulations Knowledge of common information security management frameworks, such as ISO/IEC 27001, ITIL, COBIT as well as those from NIST, including 800-53 and Cybersecurity Framework Knowledge of OneTrust risk management toolset or similar preferred Proven ability to communicate with technical teams to elicit information and requirements Excellent written andMore ❯
technology to solve business problems, working in partnership with our clients to help in achieving their goals. About the role: Develop and maintain GRC frameworks aligned with ISO 27001, NIST, GDPR, and NIS2 standards Conduct risk assessments across business units, vendors, and projects Monitor regulatory changes and ensure compliance with legal and contractual obligations Support business continuity and disaster recovery … e.g., GDPR, Data Protection Act) and industry-specific regulations Knowledge of common information security management frameworks, such as ISO/IEC 27001, ITIL, COBIT as well as those from NIST, including 800-53 and Cybersecurity Framework Knowledge of OneTrust risk management toolset or similar preferred Proven ability to communicate with technical teams to elicit information and requirements Excellent written andMore ❯
technology to solve business problems, working in partnership with our clients to help in achieving their goals. About the role: Develop and maintain GRC frameworks aligned with ISO 27001, NIST, GDPR, and NIS2 standards Conduct risk assessments across business units, vendors, and projects Monitor regulatory changes and ensure compliance with legal and contractual obligations Support business continuity and disaster recovery … e.g., GDPR, Data Protection Act) and industry-specific regulations Knowledge of common information security management frameworks, such as ISO/IEC 27001, ITIL, COBIT as well as those from NIST, including 800-53 and Cybersecurity Framework Knowledge of OneTrust risk management toolset or similar preferred Proven ability to communicate with technical teams to elicit information and requirements Excellent written andMore ❯
