Description:
We are seeking an experienced Cybersecurity Manager to be a leader in our Global Red Team, overseeing critical functions including Red Team Remediation and Breach and Attack Simulation (BAS). This role requires a strategic leader with deep technical expertise, strong project management skills, and the ability to manage multiple high-impact cybersecurity initiatives. The successful candidate will drive proactive security testing, manage risk mitigation efforts, and ensure robust communication and execution of action plans to safeguard our infrastructure. As part of the Global Cybersecurity function you will:
- Oversee the Remediation lifecycle including identifying ownership, assessing risk, and prioritizing each risk to ensure effective mitigation strategies
- Develop, communicate, and monitor action plans for implementing new security controls or enhancing existing controls
- Collaborate with cross-functional teams to ensure timely execution and closure of remediation efforts
- Lead other complex risk mitigation practices for the organization
- Design, execute, and manage simulated cyber-attacks using BAS platforms to evaluate the effectiveness of security controls
- Overcome delivery challenges, including but not limited to; priority conflicts, business versus technology perspective, resource availability and engagement
- Review simulation results to pinpoint gaps in detection, prevention, and response capabilities, delivering actionable recommendations to enhance defenses
- Manage multiple concurrent projects, ensuring alignment with organizational security objectives
- Mentor and develop team members, fostering a culture of collaboration, innovation, and accountability
- Act as a liaison between technical teams and senior leadership, translating complex technical findings into actionable insights
- Drive continuous improvement in processes, tools, and methodologies across the Global Red Team
- Stay updated on emerging threats and tactics, techniques, and procedures (TTPs) to enhance simulation scenarios and risk mitigation
About The Team
Deloitte Technology works at the forefront of technology development and processes to support and protect Deloitte around the world. In this truly global environment, we operate not in "what is" but rather "what can be" to help Deloitte deliver and connect with its clients, its communities, and one another in ways not previously conceived.
Enough about us, let’s talk about you
Required:
- Bachelor’s Degree preferably in an information technology-related field
- Approximately 5 years of experience in cybersecurity, with at least 1-2 years focused on breach and attack simulation and/or vulnerability management.
- Familiarity with MITRE ATT&CK and how it maps to real-world threats
- Knowledge of a wide array of technologies, including network security, endpoint protection, cloud security, and SIEM systems
- Strong communication skills to document findings and collaborate across teams
- General networking, host, and security based troubleshooting (firewalls, routing, NAT, etc.)
- Ability to autonomously prioritize and successfully deliver across a portfolio of projects