Security Testing Manager

Company: Deloitte
Location: Houston
Posted on: May 16, 2022

Job Description:

Do you thrive on developing creative and innovative insights to solve complex challenges? Want to work on next-generation, cutting-edge products and services that deliver outstanding value and that are global in vision and scope? Work with other experts in your field? Work for a world-class organization that provides an exceptional career experience with an inclusive and collaborative culture?Want to make an impact that matters? Consider Deloitte Global.Work you'll do:As part of the Global Cybersecurity team, responsibilities will be to work with customers to deliver technical assessments against a broad range of services. You will use your strong communication skills to provide consultative guidance to customers on findings identified, how to effectively engage services and the available capabilities.Key responsibilities include:

• Provide strategic input in developing and enhancing the technical delivery of security testing services
• Provide strategic input into the future directions and enhancements that will increase service value and resourcing deployment efficiency
• Take ownership of regional staff management to ensure operations best support customer requests
• Act as the technical SME within the testing teams, supporting management and product quality assurance
• Guide the development of testing methodologies and documentation to support service delivery
• Oversee and monitor the quality of security testing;
• Code assessments (SAST/DAST)
• Software/Web Application/Web Services penetration testing
• Network Penetration Testing
• Mobile Application Penetration Testing
• Thick Client Penetration Testing
• Remediate vulnerabilities identified in security testing activity
• Contribute to the technical working group to support;
• Consistent operational process, rules of engagement and methodologies to deliver quality penetration testing services to Deloitte's global network
• Ensure training paths and research and development are fundamental building blocks for fostering and developing talent within the security testing team
• Define requirements for enhancements to reporting and tooling needs
• Work closely with the customer management teams to ensure appropriate customer facing documentation and communications are present to facilitate effective entry points and service offerings
• Align and collaborate with other service delivery managers in the Attack Surface Assessment group to understand trends, issues and risks and to exchange expertiseWhat you'll be part of - our Deloitte Global Culture:At Deloitte, we expect results. Incredible-tangible-results. And Deloitte Global professionals play a unique role in delivering those results. We reach across disciplines and borders to serve our global organization. We are the engine of Deloitte. We develop and implement global strategies and provide programs and services that unite our network.In Deloitte Global, everyone has opportunities. We see the importance of your perspective and your ability to create value. We want you to fit in-with an inclusive culture, focus on work-life fit and well-being, and a supportive, connected environment; but we also want you to stand out-with opportunities to have a strategic impact, innovate, and take the risks necessary to make your mark. The Deloitte Global Cybersecurity function is responsible for enhancing data protection, standardizing and securing critical infrastructure, and gaining cyber visibility through security operations centers. The Cybersecurity organization delivers a comprehensive set of security services to Deloitte's global network of firms around the globe. Requirements
  • At least 5 years of combined experience in the Information Security / Cybersecurity domain with a focus on security risk management
  • At least 3 years holding a management role for delivery of penetration testing or code assessment
  • Proven track record and experience of the following in a highly complex and global organization:
  • Application Security testing services experience working with both testing tools and any facet of penetration testing services
  • Penetration Testing* Security Analytics to drive risk reduction * Risk Management - ability to convey technical risks to business managers and executives
    
    • Application/Infrastructure Architecture experience
    • Experience working with variety of cultures across the globe and have the patience, understanding and empathy to work collaboratively and effectivelyEducation
      • Bachelor's degree in Computer Science, Cyber Security, International Cyber Security, or equivalent education experience.Other Qualifications
        • Professional security management certification with at least 1 active certification from any of the following; Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), Certified Information Systems Auditor (CISA) or other similar credentials such as any SANs ethical hacking certifications.
        • Knowledge of business management and an expert level of knowledge of penetration testing
        • Experience interacting, presenting and working with C-level executives (CISO, CIO, etc.) and lower business management as well as technical management teams
        • Knowledge and understanding of information security legal and regulatory requirements, such as Sarbanes-Oxley Act (SOX), Health Insurance Portability and Accountability Act (HIPAA), GDPR and Payment Card Industry/Data Security Standard
        • Knowledge of common information security management frameworks, such as ISO/IEC 27001, COBIT, and NIST, including 800-53 and the Cybersecurity FrameworkHow you'll grow:Deloitte Global inspires leaders at every level. We believe in investing in you, helping you embrace leadership opportunities at every step of your career, and helping you identify and hone your unique strengths. We encourage you to grow by providing formal and informal development programs, coaching and mentoring, and on-the-job challenges. We want you to ask questions, take chances, and explore the possible.Benefits you'll receive:Deloitte's Total Rewards program reflects our continued commitment to lead from the front in everything we do-that's why we take pride in offering a comprehensive variety of programs and resources to support your health and well-being needs. We provide the benefits, competitive compensation, and recognition to help sustain your efforts in making an impact that matters.Corporate citizenship:Deloitte is led by a purpose: to make an impact that matters. This purpose defines who we are and extends to relationships with our clients, our people, and our communities. We believe that business has the power to inspire and transform. We focus on education, giving, skill-based volunteerism, and leadership to help drive positive social impact in our communities. #LI-Hybrid Hybrid work, remote may be an option

Keywords: Deloitte, Houston , Security Testing Manager, Executive , Houston, Texas