Project Cybersecurity and IA Specialist

Project Cybersecurity and IA Specialist on Deloitte's Enterprise Security team designs and implements security engineering solutions across cloud, application, infrastructure, and enterprise environments, while leading technical security tasks and partnering with stakeholders to embed security throughout design, development, and deployment.

Responsibilities

• Develop and deploy security engineering solutions spanning cloud platforms, applications, IT infrastructure, and enterprise ecosystems.
• Lead technical security tasks across workstreams, including requirements analysis, solution design, implementation support, testing, and remediation tracking.
• Collaborate with developers, architects, infrastructure teams, and client stakeholders to weave security into system design, development, and deployment activities.
• Assess vulnerabilities, identify control gaps and technical risks, and support corrective actions aligned with security requirements and standards.
• Mentor team members, review deliverables, and provide technical guidance to maintain quality and consistency across project execution.

Requirements

• Bachelor's degree required.
• Active TS/SCI clearance required.
• Local to the Hampton Roads area and able to come onsite in Suffolk, VA for 5 days a week.
• One of the following certifications:
  • CompTIA Security+ (SEC+CE)
  • Certified Information Systems Auditor (CISA)
  • Certified Information Systems Auditor (CAP)
  • EC-Council Network Security Administrator Certification (ENSA)
  • CompTIA Advanced Security Practitioner (CASP)
  • Global Information Assurance Certification (GIAC) - Security Leadership Certification (GSLC)
  • Certified Information system Security Professional (CISSP)
  • Certified Information Security Manager (CISM)
• 5+ years of experience performing cybersecurity or Information Assurance functions in U.S. Navy environments.
• 5+ years of experience developing Security Assessment Plan (SAP), Security Assessment Report (SAR)/Post SAP, and SAR Executive Summaries.
• 1+ year of experience with Risk Management Framework (RMF) risk assessments and related components and instructions.
• Legally authorized to work in the United States without the need for employer sponsorship now or in the future.

The Team

• Deloitte's Government & Public Services (GPS) practice focuses on delivering impact for federal, state, and local government clients as well as public higher education institutions, bringing fresh perspective to help clients anticipate disruption and fulfill their mission promise.
• The Enterprise Security offering embeds security across digital transformation by securing a client's technical backbone while enabling secure digital transformation; includes security architecture, secure development and deployment, end-to-end cyber cloud capabilities, application security, and security for emerging technologies and connected products.
• The Project Delivery Talent Model is designed for professionals with specialized skills aligned to client needs, focusing on project-based delivery without expectations for business development or promotion, with benefits competitive for project-delivery professionals.

Preferred

• Previous Navy Qualified Validator (NQV).