Cyber Design Studio Senior Manager

Are you passionate about technology and interested in joining a community of collaborative colleagues who respectfully and courageously seek to challenge the status quo? If so, read on to learn more about an exciting opportunity with Deloitte Technology-US (DT-US). We are curious and life-long learners focused on technology and innovation.

Recruiting for this role ends on 4/28/2026.

Work you'll do

We are seeking a highly skilled and motivated professional to join our Cyber Design Studio team. This individual will be responsible for ensuring the speed, completeness, and quality of security assessments for technology assets that enable business innovation. Responsibilities include identifying security requirements, defining design specifications and compliance controls, and validating adherence to security policies, standards, and industry-accepted best practices.

Key Responsibilities

• Serve as a trusted advisor to executive leadership, clients, and key stakeholders on cyber risk, resilience, and the evolving threat landscape.
• Design, collect and deliver decision-ready cyber metrics, dashboards, and status reporting to inform leadership on operational performance and strategic improvement initiatives.
• Lead and oversee complex, high-visibility security assessments with clear accountability for quality, rigor, and outcomes.
• Develop and lead talent through coaching, mentorship, and direct management, providing timely, specific, and actionable feedback.
• Provide strategic oversight and guidance on cybersecurity policy and standards updates that affect organization procedures and operating processes.
• Lead a high-performing cybersecurity organization while fostering a strong, security-first culture across teams and stakeholders.
• Oversee audits of organization processes and procedures, maintaining documentation, process materials, and audit readiness artifacts.
• Use AI and automation to streamline processes, minimize manual work, and increase operational efficiency.
• Engage cloud and platform teams, as well as infrastructure as a service (IaaS) and platform as a service (PaaS) vendors, to evaluate configurations, control coverage, and adoption of best practices for secure cloud usage.

Deloitte Technology-US

Deloitte Technology-US helps power Deloitte's success. Deloitte Technology-US drives Deloitte, which serves many of the world's largest, most respected organizations. DT-US develops and deploys cutting-edge internal and go-to-market solutions that help Deloitte operate effectively and lead in the market. Our reputation is built on a tradition of delivering with excellence.

The ~3,000 professionals in DT-US deliver services including:

• Cyber Security
• Technology Support
• Technology & Infrastructure
• Applications
• Relationship Management
• Strategy & Communications
• Project Management
• Strategic Financial Management

DT-US Cyber Security

DT-US Cyber Security vigilantly protects Deloitte and client data. The team leads a strategic cyber risk program that adapts to a rapidly changing threat landscape, changes in business strategies, risks, and vulnerabilities. Using situational awareness, threat intelligence, and building a security culture across the organization, with integration into the global cyber security capabilities that to protect the Deloitte brand.

Areas of focus include:

• Risk & Compliance
• Security Assessment
• Identity & Access Management
• Data Protection
• Cyber Design
• Security Architecture

Required Qualifications:

• Bachelor's degree or equivalent in Cybersecurity, Information Security, Computer Science, Data Science, Engineering, or a related field.
• Minimum 10 years of experience in cybersecurity, information risk management, or technology risk, including leadership roles within large-scale environments including knowledge of cybersecurity principles across application security, cloud security, identity and access management, data protection, vulnerability management, and secure architecture.
• Leadership experience in overseeing cybersecurity service operations, performance metrics, and continuous improvement.
• Experience conducting security assessments of complex, emerging, and high-technology solutions.
• Experience evaluating the security of artificial intelligence (AI) and machine learning environments (ML), including models, training data pipelines, inference layers, application programming interfaces (API), and supporting cloud infrastructure.
• Demonstrated success of designing, streamlining, and optimizing organizational processes through automation and/or AI.
• Minimum 2 years previous people leadership or project management experience.
• Ability to travel 0-10%, on average, based on the work you do and the clients and industries/sectors you serve
• Must be legally authorized to work in the United States without the need for employer sponsorship, now or at any time in the future.

Preferred Qualifications:

• The ideal candidate is an integrator of people and processes, a thought leader, a problem solver, and knowledgeable about cybersecurity.
• Advanced degree preferred.
• Industry certifications such as Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), Certified Information Systems Auditor (CISA), Global Information Assurance Certification (GIAC), or equivalent experience, are strongly preferred.
• Certification or training related to application programming interfaces (API), cloud computing, artificial intelligence (AI), quantum computing security.
• Demonstrated experience defining and executing enterprise cyber security strategies aligned to business objectives, regulatory requirements, and risk appetite.
• Familiarity with AI-specific risk domains such as model abuse, prompt injection, data poisoning, model leakage, adversarial attacks, insecure plugins/connectors, and third-party model risk.
• Experience applying risk and control frameworks such as the National Institute of Standards and Technology Cybersecurity Framework (NIST CSF), National Institute of Standards and Technology Special Publication 800-53, National Institute of Standards and Technology Artificial Intelligence Risk Management Framework (NIST AI RMF), International Organization for Standardization 27001 (ISO 27001), System and Organization Controls 2 (SOC 2), Open Worldwide Application Security Project (OWASP), and Secure Software Development Lifecycle (SSDLC) practices.

The wage range for this role takes into account the wide range of factors that are considered in making compensation decisions including but not limited to skill sets; experience and training; licensure and certifications; and other business and organizational needs. The disclosed range estimate has not been adjusted for the applicable geographic differential associated with the location at which the position may be filled. At Deloitte, it is not typical for an individual to be hired at or near the top of the range for their role and compensation decisions are dependent on the facts and circumstances of each case. A reasonable estimate of the current range is $130,900-$268,700.

You may also be eligible to participate in a discretionary annual incentive program, subject to the rules governing the program, whereby an award, if any, depends on various factors, including, without limitation, individual and organizational performance.

Information for applicants with a need for accommodation:

EA_ExpHire
RITM10314289