Experience supporting governance, risk, and compliance workflows, including risk reporting, audit ... If yes, then Deloitte's Cyber team could be the place for you. We are looking for a hands-on Data ...
Experience supporting governance, risk, and compliance workflows, including risk reporting, audit ... If yes, then Deloitte's Cyber team could be the place for you. We are looking for a hands-on Data ...
Sr. Director, GRC, IT Controls & Cyber Culture, Orthopedics
Warsaw, IN · On-site
$107K - $144K/yr
Lead enterprise cyber risk management activities, including risk identification, assessment ... Audit, and IT control owners. * Establish and operationalize an enterprise IT controls and ...
New
Sr. Director, GRC, IT Controls & Cyber Culture, Orthopedics
Warsaw, IN · On-site
$107K - $144K/yr
Lead enterprise cyber risk management activities, including risk identification, assessment ... Audit, and IT control owners. * Establish and operationalize an enterprise IT controls and ...
New
Lead enterprise cyber risk management activities, including risk identification, assessment ... Audit, and IT control owners. * Establish and operationalize an enterprise IT controls and ...
New
Lead enterprise cyber risk management activities, including risk identification, assessment ... Audit, and IT control owners. * Establish and operationalize an enterprise IT controls and ...
New
Cyber Data Protection/PKI Manager
Indianapolis, IN · On-site
$106K - $143K/yr
Awareness of regulatory, audit, and policy requirements impacting cryptographic controls ... Our Deloitte Cyber team understands the unique challenges and opportunities businesses face in ...
Cyber Data Protection/PKI Manager
Indianapolis, IN · On-site
$106K - $143K/yr
Awareness of regulatory, audit, and policy requirements impacting cryptographic controls ... Our Deloitte Cyber team understands the unique challenges and opportunities businesses face in ...
Director II, Cybersecurity: Cyber Defense & Security Analytics
Indianapolis, IN · Hybrid
$106K - $143K/yr
Cyber Defense & Security Analytics Location: This role requires the associate to be in-office 3 ... Strong track record in leading cybersecurity audits and developing comprehensive response plans for ...
Director II, Cybersecurity: Cyber Defense & Security Analytics
Indianapolis, IN · Hybrid
$106K - $143K/yr
Cyber Defense & Security Analytics Location: This role requires the associate to be in-office 3 ... Strong track record in leading cybersecurity audits and developing comprehensive response plans for ...
Director II, Cybersecurity: Cyber Defense & Security Analytics
Indianapolis, IN · Hybrid
$106K - $143K/yr
Cyber Defense & Security Analytics Location: This role requires the associate to be in-office 3 ... Strong track record in leading cybersecurity audits and developing comprehensive response plans for ...
Director II, Cybersecurity: Cyber Defense & Security Analytics
Indianapolis, IN · Hybrid
$106K - $143K/yr
Cyber Defense & Security Analytics Location: This role requires the associate to be in-office 3 ... Strong track record in leading cybersecurity audits and developing comprehensive response plans for ...
Cyber Operational Technology/ Industrial Control Systems (OT/ICS) Senior Consultant
Indianapolis, IN · Remote
Cyber Operational Technology/ Industrial Control Systems (OT/ICS) Senior Consultant Position ... Support clients in achieving regulatory compliance and readiness for audits related to OT/ICS ...
Cyber Operational Technology/ Industrial Control Systems (OT/ICS) Senior Consultant
Indianapolis, IN · Remote
Cyber Operational Technology/ Industrial Control Systems (OT/ICS) Senior Consultant Position ... Support clients in achieving regulatory compliance and readiness for audits related to OT/ICS ...
Cybersecurity Service Provider (CSSP) Operations Team Lead with Security Clearance
Indianapolis, IN · On-site
$97K - $131K/yr
Cyber Command, DISA, and Zero Trust cybersecurity requirements. The Team Lead provides daily ... Security Audits & Compliance * Perform audits on servers, workstations, network devices, and ...
Cybersecurity Service Provider (CSSP) Operations Team Lead with Security Clearance
Indianapolis, IN · On-site
$97K - $131K/yr
Cyber Command, DISA, and Zero Trust cybersecurity requirements. The Team Lead provides daily ... Security Audits & Compliance * Perform audits on servers, workstations, network devices, and ...
Cybersecurity Service Provider (CSSP) Operations Team Lead
Indianapolis, IN · On-site
$106K - $143K/yr
Cyber Command, DISA, and Zero Trust cybersecurity requirements. The Team Lead provides daily ... Security Audits & Compliance * Perform audits on servers, workstations, network devices, and ...
Cybersecurity Service Provider (CSSP) Operations Team Lead
Indianapolis, IN · On-site
$106K - $143K/yr
Cyber Command, DISA, and Zero Trust cybersecurity requirements. The Team Lead provides daily ... Security Audits & Compliance * Perform audits on servers, workstations, network devices, and ...
Cyber Command, DISA, and Zero Trust cybersecurity requirements. The Team Lead provides daily ... Security Audits & Compliance * Perform audits on servers, workstations, network devices, and ...
Cyber Command, DISA, and Zero Trust cybersecurity requirements. The Team Lead provides daily ... Security Audits & Compliance * Perform audits on servers, workstations, network devices, and ...
Cyber Incident Response * Audit Support & Compliance Guidance * Security Analysis & Reporting * Cybersecurity Policy Review * Program Operations & Planning * Information Assurance Vulnerability ...
Cyber Incident Response * Audit Support & Compliance Guidance * Security Analysis & Reporting * Cybersecurity Policy Review * Program Operations & Planning * Information Assurance Vulnerability ...
Cyber Incident Response * Audit Support & Compliance Guidance * Security Analysis & Reporting * Cybersecurity Policy Review * Program Operations & Planning * Information Assurance Vulnerability ...
Cyber Incident Response * Audit Support & Compliance Guidance * Security Analysis & Reporting * Cybersecurity Policy Review * Program Operations & Planning * Information Assurance Vulnerability ...
Cybersecurity Service Provider (CSSP) Engineering Team Lead with Security Clearance
Indianapolis, IN · On-site
Cyber Incident Response * Audit Support & Compliance Guidance * Security Analysis & Reporting * Cybersecurity Policy Review * Program Operations & Planning * Information Assurance Vulnerability ...
Cybersecurity Service Provider (CSSP) Engineering Team Lead with Security Clearance
Indianapolis, IN · On-site
Cyber Incident Response * Audit Support & Compliance Guidance * Security Analysis & Reporting * Cybersecurity Policy Review * Program Operations & Planning * Information Assurance Vulnerability ...
Deloitte's Cyber team helps organizations address evolving cyber threats with solutions that ... audit, privileged access, and policy configuration reviews. * Supporting proof of concept ...
Deloitte's Cyber team helps organizations address evolving cyber threats with solutions that ... audit, privileged access, and policy configuration reviews. * Supporting proof of concept ...
Partner with Cyber to maintain enterprise-wide visibility into remediation status and proactively escalate aging items. * Risk, Audit & Compliance Support * Produce audit-ready remediation evidence ...
Partner with Cyber to maintain enterprise-wide visibility into remediation status and proactively escalate aging items. * Risk, Audit & Compliance Support * Produce audit-ready remediation evidence ...
Partner with Cyber to maintain enterprise-wide visibility into remediation status and proactively escalate aging items. * Risk, Audit & Compliance Support * Produce audit-ready remediation evidence ...
Quick apply
Partner with Cyber to maintain enterprise-wide visibility into remediation status and proactively escalate aging items. * Risk, Audit & Compliance Support * Produce audit-ready remediation evidence ...
Security Automation Engineer
Daleville, IN · On-site +1
Partner with Cyber to maintain enterprise-wide visibility into remediation status and proactively escalate aging items. * Risk, Audit & Compliance Support * Produce audit-ready remediation evidence ...
Security Automation Engineer
Daleville, IN · On-site +1
Partner with Cyber to maintain enterprise-wide visibility into remediation status and proactively escalate aging items. * Risk, Audit & Compliance Support * Produce audit-ready remediation evidence ...
Partner with Cyber to maintain enterprise-wide visibility into remediation status and proactively escalate aging items. * Risk, Audit & Compliance Support * Produce audit-ready remediation evidence ...
Quick apply
Partner with Cyber to maintain enterprise-wide visibility into remediation status and proactively escalate aging items. * Risk, Audit & Compliance Support * Produce audit-ready remediation evidence ...
... EU Cyber Resilience Act requirements. * Prior experience supporting ISO 27001 certification efforts, including creation of policies, procedures, and audit evidence. * Experience coordinating third ...
... EU Cyber Resilience Act requirements. * Prior experience supporting ISO 27001 certification efforts, including creation of policies, procedures, and audit evidence. * Experience coordinating third ...
... EU Cyber Resilience Act requirements. * Prior experience supporting ISO 27001 certification efforts, including creation of policies, procedures, and audit evidence. * Experience coordinating third ...
... EU Cyber Resilience Act requirements. * Prior experience supporting ISO 27001 certification efforts, including creation of policies, procedures, and audit evidence. * Experience coordinating third ...
Cyber Audit information
What is the difference between Cyber Audit vs Cyber Security Analyst?
| Aspect | Cyber Audit | Cyber Security Analyst |
|---|---|---|
| Certifications | ISO 27001 Lead Auditor, CISA | CompTIA Security+, CISSP |
| Work Environment | Audit firms, consulting companies, internal audit departments | Security operations centers, IT departments, corporate security teams |
| Employer & Industry Usage | Financial, healthcare, government sectors | All industries with IT infrastructure |
| Primary Focus | Assessing compliance, evaluating controls, auditing security policies | Monitoring security threats, implementing security measures, incident response |
While both roles focus on cybersecurity, Cyber Audit primarily involves evaluating an organization's security controls and compliance through audits. Cyber Security Analysts actively monitor and respond to security threats. Understanding these differences helps organizations assign the right responsibilities and professionals for their cybersecurity needs.

Deloitte rating
8.1
Based on 90 frontline employees who took The Breakroom Quiz
60th of 148 rated financial services
Job description
Are you interested in improving the cyber and organizational risk profiles of leading companies? Do you want to build the data foundations that power the next generation of AI-enabled cyber defense?
If yes, then Deloitte's Cyber team could be the place for you.
We are looking for a hands-on Data Engineer to build and operate the governed data foundations powering cyber risk, compliance evidence, and agentic AI-enabled cyber workflows. You will design production-grade pipelines and services that support risk reporting, continuous controls monitoring, and AI-assisted security operations-built with strong governance, lineage, privacy-by-design, and audit-ready evidence.
This role is ideal for engineers who can bridge modern data engineering and software development with Governance, Risk, and Compliance (GRC) expectations in regulated enterprise environments.
Recruiting for this role ends on 12/31/2026.
Work you'll do
As a Senior Consultant, Strategy, Growth and Transformation on the Cyber team, you will be responsible for:
- Building scalable batch and stream processing pipelines that ingest security telemetry, control evidence, and compliance artifacts into governed data stores.
- Designing data models for risk and controls domains, including key risk indicators, issues and defects, risk acceptance, control testing outcomes, audit evidence, and policy exceptions, and enabling self-service analytics and dashboards.
- Implementing data quality checks, lineage, metadata, and access controls to support auditability, regulatory defensibility, and repeatable evidence generation.
- Developing AI-enabled capabilities that accelerate governance, risk, and compliance and cyber operations, including evidence summarization, control testing assist, policy question-and-answer, investigation copilots, ticket triage, and exception reasoning using agentic patterns, workflow orchestration, and retrieval-augmented generation.
- Engineering integrations between data platforms, governance, risk, and compliance workflows, and enterprise systems using application programming interfaces, event patterns, and connectors, with observability and runbooks for production support.
- Partnering with Cyber, Risk, Compliance, Privacy, and Legal stakeholders to translate requirements into implementable controls and developer-ready guardrails.
A successful candidate would possess these skills:
- Ability to work independently and collaborate as part of a team
- Effective written and verbal communication skills
- Meticulous attention to detail and quality of work product
- Ability to build and sustain professional relationships
- Ability to lead projects or workstreams
- Ability to manage and prioritize multiple tasks in a fast-paced and dynamic environment
- Strong interpersonal skills and professional demeanor
- Ability to meet deadlines
- Ability to provide clear guidance to others
The team
You will join a cyber engineering team focused on enabling resilient, secure, and compliant operations through modern data platforms and AI-enabled automation. The team builds repeatable assets-reference architectures, accelerators, and governance patterns-to help clients modernize and scale cyber and GRC programs.
Qualifications
Required:
- Bachelor's degree or equivalent practical experience.
- 4+ years of experience in data engineering and software development using Python and SQL.
- Experience building production data pipelines and data models for batch processing, stream processing, or both, and deploying solutions using cloud platforms, containers, infrastructure as code, application programming interfaces, and secrets management.
- Experience implementing data governance controls including data classification, personally identifiable information handling, least-privilege access, encryption, secrets management, retention, audit logging, and lineage or metadata management.
- Experience supporting governance, risk, and compliance workflows, including risk reporting, audit data requests, controls monitoring, controls testing, compliance metrics, governance, risk, and compliance tool integrations, and large language model-enabled applications using retrieval-augmented generation, vector or hybrid retrieval, tool or function calling, evaluation or monitoring, prompt-injection defenses, and secure access patterns.
- Ability to travel 0-25%, on average, based on the work you do and the clients and industries/sectors you serve.
- Limited immigration sponsorship may be available.
Preferred:
- Experience in consulting or a Big 4 environment.
- Experience with Java, Go, or JavaScript.
- Experience integrating with ServiceNow GRC, Archer, OneTrust, or BigID and building evidence pipelines mapped to control objectives.
- Experience building pipelines for security information and event management, security orchestration, automation, and response, vulnerability, identity, or cloud security posture data.
- Experience operationalizing large language model operations or machine learning operations capabilities, including evaluation, monitoring, versioning, and governance workflows.
- Security certification such as CompTIA Security+, Certified Information Security Manager, Certified Information Systems Auditor, Certified Information Systems Security Professional, or a cloud certification.
The wage range for this role takes into account the wide range of factors that are considered in making compensation decisions including but not limited to skill sets; experience and training; licensure and certifications; and other business and organizational needs. The disclosed range estimate has not been adjusted for the applicable geographic differential associated with the location at which the position may be filled. At Deloitte, it is not typical for an individual to be hired at or near the top of the range for their role and compensation decisions are dependent on the facts and circumstances of each case. A reasonable estimate of the current range is $105,400 to $207,800.
You may also be eligible to participate in a discretionary annual incentive program, subject to the rules governing the program, whereby an award, if any, depends on various factors, including, without limitation, individual and organizational performance.
Are you interested in improving the cyber and organizational risk profiles of leading companies? Do you want to build the data foundations that power the next generation of AI-enabled cyber defense?
If yes, then Deloitte's Cyber team could be the place for you.
We are looking for a hands-on Data Engineer to build and operate the governed data foundations powering cyber risk, compliance evidence, and agentic AI-enabled cyber workflows. You will design production-grade pipelines and services that support risk reporting, continuous controls monitoring, and AI-assisted security operations-built with strong governance, lineage, privacy-by-design, and audit-ready evidence.
This role is ideal for engineers who can bridge modern data engineering and software development with Governance, Risk, and Compliance (GRC) expectations in regulated enterprise environments.
Recruiting for this role ends on 12/31/2026.
Work you'll do
As a Senior Consultant, Strategy, Growth and Transformation on the Cyber team, you will be responsible for:
- Building scalable batch and stream processing pipelines that ingest security telemetry, control evidence, and compliance artifacts into governed data stores.
- Designing data models for risk and controls domains, including key risk indicators, issues and defects, risk acceptance, control testing outcomes, audit evidence, and policy exceptions, and enabling self-service analytics and dashboards.
- Implementing data quality checks, lineage, metadata, and access controls to support auditability, regulatory defensibility, and repeatable evidence generation.
- Developing AI-enabled capabilities that accelerate governance, risk, and compliance and cyber operations, including evidence summarization, control testing assist, policy question-and-answer, investigation copilots, ticket triage, and exception reasoning using agentic patterns, workflow orchestration, and retrieval-augmented generation.
- Engineering integrations between data platforms, governance, risk, and compliance workflows, and enterprise systems using application programming interfaces, event patterns, and connectors, with observability and runbooks for production support.
- Partnering with Cyber, Risk, Compliance, Privacy, and Legal stakeholders to translate requirements into implementable controls and developer-ready guardrails.
A successful candidate would possess these skills:
- Ability to work independently and collaborate as part of a team
- Effective written and verbal communication skills
- Meticulous attention to detail and quality of work product
- Ability to build and sustain professional relationships
- Ability to lead projects or workstreams
- Ability to manage and prioritize multiple tasks in a fast-paced and dynamic environment
- Strong interpersonal skills and professional demeanor
- Ability to meet deadlines
- Ability to provide clear guidance to others
The team
You will join a cyber engineering team focused on enabling resilient, secure, and compliant operations through modern data platforms and AI-enabled automation. The team builds repeatable assets-reference architectures, accelerators, and governance patterns-to help clients modernize and scale cyber and GRC programs.
Qualifications
Required:
- Bachelor's degree or equivalent practical experience.
- 4+ years of experience in data engineering and software development using Python and SQL.
- Experience building production data pipelines and data models for batch processing, stream processing, or both, and deploying solutions using cloud platforms, containers, infrastructure as code, application programming interfaces, and secrets management.
- Experience implementing data governance controls including data classification, personally identifiable information handling, least-privilege access, encryption, secrets management, retention, audit logging, and lineage or metadata management.
- Experience supporting governance, risk, and compliance workflows, including risk reporting, audit data requests, controls monitoring, controls testing, compliance metrics, governance, risk, and compliance tool integrations, and large language model-enabled applications using retrieval-augmented generation, vector or hybrid retrieval, tool or function calling, evaluation or monitoring, prompt-injection defenses, and secure access patterns.
- Ability to travel 0-25%, on average, based on the work you do and the clients and industries/sectors you serve.
- Limited immigration sponsorship may be available.
Preferred:
- Experience in consulting or a Big 4 environment.
- Experience with Java, Go, or JavaScript.
- Experience integrating with ServiceNow GRC, Archer, OneTrust, or BigID and building evidence pipelines mapped to control objectives.
- Experience building pipelines for security information and event management, security orchestration, automation, and response, vulnerability, identity, or cloud security posture data.
- Experience operationalizing large language model operations or machine learning operations capabilities, including evaluation, monitoring, versioning, and governance workflows.
- Security certification such as CompTIA Security+, Certified Information Security Manager, Certified Information Systems Auditor, Certified Information Systems Security Professional, or a cloud certification.
The wage range for this role takes into account the wide range of factors that are considered in making compensation decisions including but not limited to skill sets; experience and training; licensure and certifications; and other business and organizational needs. The disclosed range estimate has not been adjusted for the applicable geographic differential associated with the location at which the position may be filled. At Deloitte, it is not typical for an individual to be hired at or near the top of the range for their role and compensation decisions are dependent on the facts and circumstances of each case. A reasonable estimate of the current range is $105,400 to $207,800.
You may also be eligible to participate in a discretionary annual incentive program, subject to the rules governing the program, whereby an award, if any, depends on various factors, including, without limitation, individual and organizational performance.