Talent.com
Cyber Security Analyst - Client Security Support

Cyber Security Analyst - Client Security Support

DeloitteToronto, ON
30+ days ago
Salary
CAD80000–CAD90000 yearly
Job description

Job Type : Permanent

Reference code : 124747

Primary Location : Toronto, ON

All Available Locations : Toronto, ON; Ottawa, ON

Our Purpose

At Deloitte, we are driven to inspire and help our people, organization, communities, and country to thrive. Our Purpose is to build a better future by accelerating and expanding access to knowledge. Purpose defines who we are and gives us reason to exist as an organization.

By living our Purpose, we will make an impact that matters.

  • Learn from deep subject matter experts through mentoring and on the job coaching
  • Be encouraged to deepen your technical skills…whatever those may be.
  • Build a network of colleagues for life

What will your typical day look like?

The Cybersecurity Analyst plays a crucial role in supporting Deloitte's client engagements by providing expertise on cybersecurity matters and ensuring compliance with internal policies and standards. This position focuses on reviewing contractual documents, responding to client security questionnaires, and assisting teams in addressing cybersecurity clauses in legal and contractual agreements along with supporting client security audits. The ideal candidate possesses a strong understanding of broader cybersecurity concepts, technology risk assessment, cloud security, and can provide detailed responses to client inquiries. Exposure of ISO 27001 and SOC2 certifications and associated requirements is ideal. By collaborating with cross-functional teams, the Cybersecurity Analyst helps mitigate risks, ensures contractual compliance, and enhances the organization's cybersecurity posture.

Responsibilities :

  • Contractual Review : Thoroughly review contractual documents, including legal agreements, RFPs, and MSAs, to identify and address cybersecurity clauses, ensuring compliance with internal policies and standards, and contractual obligations.
  • Client Security Questionnaires : Provide detailed and accurate responses to client security questionnaires, demonstrating a deep understanding of cybersecurity practices, technology risk assessment, and cloud security, while aligning with ISO 27001 and SOC2 certifications, as applicable.
  • Compliance Assurance : Collaborate with business teams to ensure compliance with Deloitte's cybersecurity policies, standards, and industry certifications, providing guidance on data protection measures and cybersecurity controls.
  • Stakeholder Collaboration : Collaborate with internal teams, including legal, compliance, IT, and business units, to provide guidance on cybersecurity clauses, contractual obligations, and data protection measures, fostering effective cross-functional collaboration.
  • Client Contractual Compliance : Monitor and assess compliance with cybersecurity requirements outlined in client contracts, identifying areas for improvement and providing recommendations to ensure contractual obligations are met.
  • Industry Knowledge : Stay updated on emerging cybersecurity trends, regulatory developments, and best practices, ensuring the continuous improvement of cybersecurity practices and the organization's ability to address evolving threats.

    • About the team

    You will be reporting to the Senior Manager of Information Security and representing security as a service function to stakeholders and clients. This role offers high level of cross-team and cross-customer visibility and requires the individual to demonstrate security subject matter expertise and critical thinking along with customer-centric mindset and positive demeanor.

    Enough about us, let's talk about you

    Qualifications :

  • Bachelor's degree in a relevant field (e.g., Cybersecurity, Information Technology, Cyber Law).
  • 1-2 years of relevant industry experience in cybersecurity or related roles.
  • Awareness of certifications such as ISO 27001 and SOC2 is desired.
  • Experience in reviewing and analyzing cybersecurity clauses in legal and contractual documents, RFPs, and MSAs.
  • Knowledge of data protection measures, industry standards, and regulatory requirements.
  • Excellent communication skills, both written and verbal, with the ability to effectively respond to client inquiries and collaborate with stakeholders.
  • Strong analytical and problem-solving abilities, with attention to detail and the ability to assess risks and recommend appropriate mitigations.
  • Ability to work collaboratively within cross-functional teams and adapt to a dynamic and fast-paced environment.

    • Our promise to our people : Deloitte is where potential comes to life.

    Be yourself, and more.

    We are a group of talented people who want to learn, gain experience, and develop skills. Wherever you are in your career, we want you to advance.

    You shape how we make impact.

    Diverse perspectives and life experiences make us better. Whoever you are and wherever you're from, we want you to feel like you belong here. We provide flexible working options to support you and how you can contribute. Be the leader you want to be.

    Be the leader you want to be

    Some guide teams, some change culture, some build essential expertise. We offer opportunities and experiences that support your continuing growth as a leader.

    Have as many careers as you want.

    We are uniquely able to offer you new challenges and roles - and prepare you for them. We bring together people with unique experiences and talents, and we are the place to develop a lasting network of friends, peers, and mentors. Our TVP is about relationships - between leaders and their people, the firm and its people, peers, and within in our communities.

    The next step is yours

    At Deloitte, we are all about doing business inclusively - that starts with having diverse colleagues of all abilities. Deloitte encourages applications from all qualified candidates who represent the full diversity of communities across Canada. This includes, but is not limited to, people with disabilities, candidates from Indigenous communities, and candidates from the Black community in support of living our values, creating a culture of Diversity Equity and Inclusion and our commitment to our AccessAbility Action Plan, Reconciliation Action Plan and the BlackNorth Initiative.