Mgr, Threat & Vulnerability Position Available In Wake, North Carolina

Mgr, Threat & Vulnerability Deloitte – 3.9 Raleigh, NC Job Details Full-time $131,000 – $208,000 a year 1 day ago Qualifications Microsoft Powerpoint Microsoft Word Certified Information Systems Auditor 7 years Microsoft Excel Vulnerability assessment Azure Microsoft Outlook Crisis management

CISSP IT

auditing Google Cloud Platform HITRUST Firewall AWS Incident response Project management Bachelor’s degree NIST standards Splunk Risk management

ISO 27002

ServiceNow

IT ISO 27001

Cybersecurity Senior level Enrolled Agent Process management Communication skills Network security

SDLC Full Job Description Description:

Join the expanding DT-US Service Assurance – Compliance team and make an impact by ensuring that Technology, Cyber and Infrastructure IT controls are effectively implemented, monitored, and sustainable. As a strategist, consultant, and implementer, you will streamline activities within the organization based on urgency and priority, delivering insights and recommendations to help DT-US achieve its vision and strategic goals. Recruiting for this role ends on December 31, 2025.

Responsibilities:

Develop and maintain governance and compliance monitoring for threat and vulnerability scanning tools. Serve as the Product Owner for a continuous monitoring agent security tool, overseeing its implementation and maintenance. Analyze Qualys data, Splunk, patching, and other cybersecurity tools, translating business requirements for stakeholders. Conduct troubleshooting at network and firewall layers to ensure effective tool operation and data collection. Implement control monitoring, requiring audit expertise and relevant technical certifications. Translate audit requirements for technical teams. Stay abreast of advancements in AI and other technologies to develop governance capabilities. Design, implement, and improve programs to address company risks and prepare teams for regulatory and compliance frameworks (ISO 27001, SOC 2, HiTrust, etc.). Provide operational support to the Service Assurance Compliance Leader and Senior Leads, managing the needs of the Leadership team. Coordinate team activities and collaborate with stakeholders, including business areas, consultants, contractors, and vendors. Facilitate risk and compliance initiatives and monitor control effectiveness. Analyze data and report to various audiences based on complexity and risk. Develop dashboards and presentations to educate and inform leaders, customers, and clients. Prioritize and manage competing priorities. Arrange essential materials to expedite responses and achieve goals.

Qualifications:

7+ years of experience in enterprise-level technology risk, compliance, or audit. Strong understanding and experience in threat and vulnerability assessment tools. 5+ years of experience with IT audits and compliance frameworks (SOC1/SOC2, ISO, NIST). 3+ years experience with cyber security agents, deployment, monitoring, and basic troubleshooting. 1+ year of people/process management. Recent experience supporting compliance and/or cybersecurity experience with AWS, Azure, or GCP. Bachelor’s Degree in Technology, MIS, Computer Applications, Accounting, or related field and/or equivalent professional experience Limited immigration sponsorship may be available Ability to travel 0-10%, on average, based on the work you do

Preferred:

Professional qualifications such as

CISA, CISSP, CCSK.

Knowledge of regulatory requirements and industry standards. Technical experience with Qualys for monitoring solutions. Experience with risk management and mitigation strategies. Ability to communicate complex technical information to non-technical stakeholders. Experience with incident response and crisis management. Familiarity with data privacy regulations (e.g., GDPR, CCPA). Strong business operations or project management experience. Excellent written and verbal communication skills. Ability to work strategically and collaboratively across departments. Experience with Microsoft Word, Outlook, Excel, and PowerPoint. Ability to advise and coach on strategic and organizational matters. Strong familiarity with technical concepts like logical access control, SDLC, risk assessments, and network security. Experience with ServiceNow. Understanding of container technology. Information for applicants with a need for accommodation: https://www2.deloitte.com/us/en/pages/careers/articles/join-deloitte-assistance-for-disabled-applicants.html The wage range for this role takes into account the wide range of factors that are considered in making compensation decisions including but not limited to skill sets; experience and training; licensure and certifications; and other business and organizational needs. The disclosed range estimate has not been adjusted for the applicable geographic differential associated with the location at which the position may be filled. At Deloitte, it is not typical for an individual to be hired at or near the top of the range for their role and compensation decisions are dependent on the facts and circumstances of each case. A reasonable estimate of the current range is $131,000 – $208,000. You may also be eligible to participate in a discretionary annual incentive program, subject to the rules governing the program, whereby an award, if any, depends on various factors, including, without limitation, individual and organizational performance. EA_ExpHire #LH-1