This role within Cyber Exposure Management, will play a pivotal role in the CEM team. This role is central to bridging the gap between security tooling outputs, asset owners, and leadership, by driving the continuous identification, assessment, and prioritisation of cyber exposures.
The successful candidate will be instrumental in supporting CEM processes, providing expert analysis, and fostering effective communication to ensure the organisation's cyber risk posture is understood and proactively managed. This role focuses on analysis, coordination, and reporting.
Work you'll do
As a Deputy Manager, Cyber Engineering on the Cyber Exposure Management team, you will be responsible for…
-
Act as the primary deputy to the CEM Team Manager, supporting daily operations, strategic planning, and continuity of team activities
-
Analyze cyber exposure data from security tools and translate findings into risk-prioritized insights for asset owners and leadership
-
Coordinate with asset owners and stakeholders to define remediation timelines, track progress, and drive fixes to completion
-
Support the development and delivery of reporting, dashboards, and metrics that show exposure posture, remediation progress, and improvement opportunities
-
Provide guidance to junior team members and support ongoing refinement of Cyber Exposure Management processes and methodologies
The team
Join our innovative, creative, and inclusive Cyber team - a world-class operation with extensive knowledge, experience and opportunities for professional growth. You will collaborate with business and technical teams to bring about change and influence across the entire world of Deloitte. Apply your skills to make things happen and be a part of a great team that is passionate about serving a great purpose.
The Cyber Exposure Management (CEM) function sits within the wider Deloitte UK Cybersecurity organization. The CEM team serves as a central team providing an ongoing picture of the entire exposure landscape, offering deep risk context and a holistic and continuous view covering external, internal, cloud, and identity assets.
Location: Hyderabad
Shift Timings: 2 PM to 11 PM
Qualifications
Required:
-
5-10 years of experience in information security, cybersecurity, cyber exposure management, attack surface management, cyber risk, or threat intelligence
-
2+ years of experience in staff management, mentoring, or coaching
-
Experience using Qualys, Prisma, CyCognito, and ServiceNow
-
Working knowledge of Microsoft Office
-
Experience using Key Risk Indicators in risk analysis or reporting activities
-
Knowledge of Common Vulnerabilities and Exposures and Common Vulnerability Scoring System
-
Knowledge of cybersecurity frameworks such as International Organization for Standardization 27000 family, Open Worldwide Application Security Project, and National Institute of Standards and Technology
Preferred:
-
Knowledge of confidentiality, integrity, and availability principles
-
Knowledge of data analysis, root cause analysis, and security testing
-
Industry certifications such as Information Technology Infrastructure Library, Control Objectives for Information and Related Technologies, Certified Information Systems Security Professional, Certified Information Security Manager, CompTIA CySA+, or GIAC Security Essentials