Manager, Cyber Infrastructure Security, Risk Advisory

Apply now »
Apply now

Apply for Job

Date: May 1, 2022

Location: Ottawa, Ontario, Canada

Company: Deloitte

Job Type: Permanent 
Primary Location: Ottawa, Ontario, Canada 
All Available Locations: Ottawa 


Our Purpose

At Deloitte, we are driven to inspire and help our people, organization, communities, and country to thrive. Our Purpose is to build a better future by accelerating and expanding access to knowledge. Purpose defines who we are and gives us reason to exist as an organization. By living our Purpose, we will make an impact that matters.

Be encouraged to deepen your technical skills…whatever those may be.
Experience MyFlex and an agile work environment where work is what you do not where you do it.
Be expected to share your ideas and to make them a reality.

What will your typical day look like?

Reporting to the Lead Cyber Partner, the Manager leads the delivery team to achieve exceptional quality and client outcomes. In doing so, you have the investment and support of the largest and #1 cyber security practice in Canada and a global network of security professionals who have experience in every sector and technology.

Clients want you at the helm of any large project because you can be counted on to deliver top quality. You are recognized in the industry as a trusted advisor, defining and delivering our clients cyber security strategies, architectures, and projects to keep organizations, government and Canadians secure. You coach and develop the next generation of cyber security talent – the best talent comes to Deloitte because they want to work for you and on your projects.

About the team

As cyber threats evolve and become more complex, many business leaders recognize they can’t manage the challenge alone. That’s why Deloitte offers a global network of Cyber Security teams and services. Our Cyber Security specialists provide fully customizable managed security solutions, including assessments, advanced security event monitoring solutions, threat analytics, cyber threat management, and incident response to enable our customers to meet the increasing market demand for cybersecurity services.

Enough about us, let’s talk about you

You are someone who has:

  • Experience providing certificate and key management good practice, including creating documentation (CPS/ CP), CA and key generation ceremonies, and designing PKI solutions
  • A solid foundation in PKI including the trust hierarchy of CAs and the supporting cryptographic algorithms (Symmetric and Asymmetric), hashing algorithms, certificate content and constructs and the supporting cryptographic and framework standards (RFCs, FIPS, NIST, ISO, ANSI, PKCS etc.)
  • An understanding of risk management requirements and what is required by a PKI to mitigate the risk requirements depending on the level of assurance the PKI is required to operate at
  • Experience with both internal CA hierarchies and commercial CAs and effectively managing the certificates in both environments including cloud and on premise implementations
  • Experience of Certificate & Key Management Services and support tools (such as MS AD Certificate Services, Venafi CMS, Hashicorp etc.) and associated technologies (HSM’s, cipher suites, TCM, secure network architectures etc.)
  • Experience with key vendors of HSMs (Thales, Entrust etc.)
  • Experience of providing guidance on encryption good practice and its practical implementation to protect data in a client environment
  • Knowledge of PKI Data Centre design requirements for the various assurance levels that PKIs are required to support and the supporting security requirements supporting the assurance requirements
  • An understanding of quantum computing impact to PKI and insight and a desire to help organizations migrate to post quantum PKI environments
  • 8-10 years of professional experience with a minimum of 5 years defining and/or supporting PKI trust models, strategies and programs for large and complex organizations
  • Proven track record defining and implementing PKI trust architectures, both in cloud and on premise
  • Strong experience in technology-based tools or methodologies to review, design and/or implement enterprise PKI and other cryptographic programs from a; thorough understanding of network protocols, TCP/IP fundamentals, thorough understanding of information security fundamentals, strong familiarity with security solutions, solid understanding of identity and access management solutions and strategies, and a thorough understanding of security incident response processes
  • Industry certifications (CISSP, CISA, CISM etc.) are a strong asset
  • Experience with WebTrust for Certification Authorities is a strong asset
  • Proven ability to build and inspire a team of technical and business security professionals, ability to Deliver projects on time/budget/scope, excellent presentation and communications skills and experience working collaboratively with clients

Our shared values

While our Purpose guides us and helps explain why we exist, our shared values describe the behaviour we expect from each other at the firm. They provide common ground to unite us across cultures and geographies. They help us to earn the trust and respect of our stakeholders. We all commit to living by these shared values, to stay true to the principles they represent, and to honour the legacy from which they came. They are what sets us apart and makes us Deloitte.

Every day, we live our Purpose through the following five shared values:

  • Lead the way: Deloitte is not only leading the profession, but reinventing it for the future. We’re also committed to creating opportunity and leading the way to a more sustainable world.
  • Serve with integrity: Deloitte has earned the trust of employees, clients, regulators, and the public for 175 years. Upholding that trust is our single most important responsibility.
  • Take care of each other: We look out for one another and prioritize respect, fairness, development, and well-being.
  • Foster inclusion: We are at our best when we foster an inclusive culture and embrace diversity in all forms. We know this attracts top talent, enables innovation, and helps us deliver well-rounded client solutions.
  • Collaborate for measurable impact: We approach our work with a collaborative mind¬set, teaming across businesses, geographies, and skill sets to deliver tangible, measurable, attributable impact.

The next step is yours

Sound like The One Firm. For You?

At Deloitte, we are all about doing business inclusively – that starts with having diverse colleagues of all abilities. Deloitte encourages applications from all qualified candidates who represent the full diversity of communities across Canada. This includes, but is not limited to, people with disabilities, candidates from Indigenous communities, and candidates from the Black community in support of living our values, creating a culture of Diversity Equity and Inclusion and our commitment to our AccessAbility Action PlanReconciliation Action Plan and the BlackNorth Initiative.

We encourage you to connect with us at accessiblecareers@deloitte.ca if you require an accommodation for the recruitment process (including alternate formats of materials, accessible meeting rooms or other accommodations). We’d love to hear from you!

By applying to this job you will be assessed against the Deloitte Global Talent Standards. We’ve designed these standards to provide our clients with a consistent and exceptional Deloitte experience globally.

Deloitte Canada has 30 offices with representation across most of the country. We acknowledge our offices reside on traditional, treaty and unceded territories as part of Turtle Island and is still home to many First Nations, Métis, and Inuit peoples. We are all Treaty people.

Job Segment: Risk Management, Developer, Equity, Manager, Finance, Security, Technology, Management