Cyber Governance Lead

Are you looking to elevate your cyber career? Your technical skills? Your opportunity for growth? Deloitte's Government and Public Services Cyber Practice (GPS Cyber Practice) is the place for you! Our GPS Cyber Practice helps organizations create a cyber minded culture and become stronger, faster, and more innovative. You will become part of a team that advises, implements, and manages solutions across five verticals: Strategy, Defense and Response; Identity; Infrastructure; Data; and Application Security. Our dynamic team offers opportunities to work with cutting-edge cyber security tools and grow both vertically and horizontally at an accelerated rate. Join our cyber team and elevate your career.

• Seeking an experienced professional specialized in cyber governance, risk management, strategic planning, and privacy.
• Will assist federal organizations in maturing their Cyber Risk Management and Ongoing Authorization programs in accordance with NIST guidance, and federal regulations by integrating security and privacy assessment capabilities and augmenting assessment activities.
• Candidate will support in the integration of assessment processes to stakeholders make more informed cyber risk management decisions with privacy in mind.
• Implement risk management programs for our federal clients by utilizing NIST, RMF, and FISMA compliance frameworks.
• Enhance cyber awareness with clients and project teams.
• Work alongside federal clients to help them mitigate risk with the use of continuous monitoring and incident response.
• Establish security controls to ensure protection of client systems.
• Implement cutting edge security tools for our federal clients.
• Develop, operating, and maintain a Cybersecurity Awareness and Training program consistent with agency requirements.
• Conduct training sessions and briefings, and report metrics as required.
• Operate and maintain a role-based training program consistent with the NICE Cybersecurity Workforce Framework .

• Must be legally authorized to work in the United States without the need for employer sponsorship, now or at any time in the future
• Must be able to obtain and maintain the required clearance for this role
• Experience working with RMF and NIST 800-53
• Experience working with cyber security tools
• Knowledgeable over National Institute of Standards and Technology (NIST) Special Publications (SP) to support RMF Business Rules.
• Experience incorporating NIST 800-37 Rev 2 guidance to integrate cybersecurity and privacy risk management activities.
• Demonstrated ability to support data governance and data privacy activities in accordance with federal discovery laws.

• Prior professional services or federal consulting experience
• Certifications (e.g., CompTIA Security+, CEH, CISSP)