About Deloitte: When you work for us, you commit to a career at one of the largest and most prestigious professional services firms in the world. We have received numerous awards over the last few years, including Best Employer in the Middle East, and Best Consulting Firm, and the Middle East Training & Development Excellence Award.
Our Purpose
Deloitte makes an impact that matters. Every day we challenge ourselves to do what matters most—for clients, for our people, and for society. We serve clients distinctively, bringing innovative insights, solving complex challenges and unlocking sustainable growth. We inspire our talented professionals to deliver outstanding value to clients, providing an exceptional career experience and an inclusive and collaborative culture. We contribute to society, building confidence and trust in the markets, upholding the integrity of organizations and supporting our communities.
Our shared values guide the way we behave to make a positive, enduring impact:
- Lead the way
- Serve with integrity
- Take care of each other
- Foster inclusion
- Collaborate for measurable impact
During your tenure as an Information Security and Confidentiality Senior Associate, you will demonstrate and develop your capabilities in the following areas:
- Manage the Firm’s Confidentiality Program effectively, champion the roll out and provide necessary subject-matter oversight to have in place a governance mechanism, which will promote successful delivery of the program and capabilities.
- Lead our organization’s Confidentiality Program strategy and influence the necessary cultural changes across the organization.
- Facilitate development and sharing of leading practices amongst Chief Information Officers (CIOs) and Confidentiality champions.
- Monitor effectiveness of overall Confidentiality Program efforts.
- Interpret local and regional regulations, which might impact the security posture and compliance of Deloitte Middle East.
- Maintain the Information Security Management Systems (ISMS) documentation and keep them relevant, accurate and up to date.
- Conduct periodic risk assessments to identify threats and vulnerabilities applicable to Deloitte Middle East.
- Perform periodic reviews against information security requirements related to data classification, clear desk policy, etc., and identify non-compliance.
- Conduct periodic training and awareness sessions to impart key messages to Deloitte Middle East staff. Support ongoing awareness through channels such as email newsletters and brochures.
- Review the performance of the ISMS on a periodic basis against pre-defined Key Performance Indicators (KPIs) and report status to the Chief Security Officer (CSO).
Leadership capabilities:
- Builds own understanding of our purpose and values; explores opportunities for impact.
- Demonstrates strong commitment to personal learning and development; acts as a brand ambassador to help attract top talent
- Understands expectations and demonstrates personal accountability for keeping performance on track
- Actively focuses on developing effective communication and relationship-building skills
- Understands how their daily work contributes to the priorities of the team and the business
Qualifications:
- Graduate degree from a reputable University in Information Technology, Computer Science, project management specialization or related fields.
- 7+ years’ experience in information security, privacy and/or other technology-related experience.
- Management experience in building and maintaining information security and privacy for large organizations.
- Certified Information Security Manager (CISM) / Certified Information Systems Security Professional (CISSP).
- ISO 27001 Lead Implementer / ISO 27701 Lead Implementer.