US Jobs US Jobs     UK Jobs UK Jobs     EU Jobs EU Jobs


Technical Cyber Risk Assessment Manager

Technical Cyber Risk Assessment ManagerReference Code 1879

Country: United States (US)

US Locations: USA - Hermitage; USA - Nashville; USA - Tampa

Deloitte Global is the engine of the Deloitte network.

Our professionals reach across disciplines and borders to develop and lead global initiatives.

We deliver strategic programs and services that unite our organization.

Work you'll do

The Technical Cyber Risk Assessment Manager will be responsible for the following:

Perform in‑depth technical cybersecurity risk assessments across cloud, identity, network, infrastructure, applications, and platforms.

Validate actual control effectiveness by reviewing live configurations, security tooling outputs, logs, and architecture implementations.

Provide expert challenge and guidance to DT teams on control design gaps, compensating controls, and risk reduction options.

Oversee end‑to‑end technical risk assessments, ensuring risks are identified, findings appropriately communicated / acknowledged and risk treatment agreed and documented with all DT stakeholders.

Provide oversight and technical assurance on the implementation of security controls within DT infrastructure, platforms, cloud, identity, and endpoint technologies.

Work with Cybersecurity Architects to apply DT reference architectures and validate that deployed solutions align to design intent, patterns, and standards.

Collaborate with the Deloitte Cyber Threat Intelligence (DCTI) and Security Operations Center (SOC) teams to evaluate how effective deployed controls are against real threats, incidents, peer‑industry threat intelligence, and emerging TTPs.

Escalate material threats or misconfigurations to DT leadership and support the design of effective remediation and mitigation strategies.

Stay current on cybersecurity threats, vulnerabilities, emerging technologies, and relevant regulations/standards (e.g., NIST CSF 2.0, ISO 27001/27002, SOC 2).

Monitor threat intelligence sources, industry reports, and community research to identify risks relevant to Deloitte's environment.

Advise leadership on trends that require updates to controls, processes, playbooks, or preparedness activities.

Conduct formal technology security risk assessments using Deloitte-aligned methodologies and industry standards (ISO 27005, NIST CSF, FAIR where appropriate).

Ensure risks are clearly documented, rated, tracked, and communicated with stakeholders, including risk acceptance or remediation plans.

Maintain strong documentation discipline aligned with Deloitte's Technology GRC requirements.

Build and maintain strong relationships with Security Architecture & Engineering, Shared Cyber Services, Global Business Services, Member Firm Services, and Technology leadership teams.

Translate complex technical issues into clear, business‑orientated narratives for senior stakeholders.

Facilitate risk treatment discussions and negotiate realistic remediation solutions.

Produce clear, technically rigo...




Share Job