Senior Consultant: ERP Security Specialist

Senior Consultant: ERP Security Specialist Deloitte & Touche LLP's ("Deloitte & Touche's") Audit and Enterprise Risk Services business has a risk-based approach, experienced professionals, comprehensive methodologies, and technical resources. Deloitte & Touche's services combine competency and experience in the areas of financial reporting, risk management, and compliance.   Providing security across the enterprise - Security & Privacy Services   Business models today encourage, and even require, opening boundaries between customers, suppliers, and partners. Technology can enable that openness and is also seen as a means to help achieve compliance with corporate policy and regulation. However, behind this increased accessibility and reliance on technology exists real risks and challenges.  Technology can support compliance efforts, act as a business enabler, and provide a foundation to achieving secure systems.  Meanwhile complex network environments, global operations, and human beings often challenge an organization's security efforts. The increasing occurrence and complexity of security threats indicate that security has become a business imperative. Managing information risk at the enterprise level enables companies to achieve more efficient and effective security processes and programs. Issues such as stakeholder value, consumer confidence, brand and reputation protection, and legal and regulatory compliance can be addressed.   Digital information security is a management issue with global business implications. To succeed in today's network economy requires more than simply a focus on IT issues - it also requires a focus on security strategy and management.  Deloitte & Touche provides Security Services that address how to take advantage of this dynamic situation while managing risks and are based on an enterprise-wide approach that focuses on security through four areas:    • Application Integrity   • Identity Management Security     • Infrastructure Security     • Security Strategy and Management     Deloitte & Touche is currently seeking professionals interested in the following: - Working on diverse implementation focused project teams to plan, design, implement, test and or/assess security, privacy, data quality and internal controls for SAP, PeopleSoft, Oracle, or JD Edwards ERP applications.   - Project roles include technical resources (focused on security and technical aspects of projects) and process focused roles (business process controls and functional aspects of projects) - Developing strategies, capturing requirements, developing recommendations and implementing solutions for optimized controls and security solutions which bring clients value - Contributing to engagement planning and multiple project phases of domestic and global ERP implementation projects - Serving attest and non attest ERP clients as specialists, with skills that help clients achieve their business objectives and manage compliance risks - Participating in Practice Development - Working in environments that exhibit a professional, business-like demeanor - Opportunities to take proactive career steps - Setting goals and career plans with counselors and mentors     - Developing excellent professional oral and written communication skills     - Continuous skills development through local, national and eLearning training programs - Establishing working relationships with client personnel  Ideal Skills include: - Experience in implementing, designing or administering security in SAP, PeopleSoft, Oracle, or JD Edwards applications helpful - Experience in implementing, designing or enhancing processes and/or internal controls in SAP, PeopleSoft, Oracle, or JD Edwards applications helpful - Good understanding of technology architectures helpful for technical roles - Strong understanding of accounting, financial management processes and risks helpful for functional roles - Good understanding of IT audit and auditing concepts helpful for serving attest clients in more assessment focused roles - Excellent written and verbal communication skills as well as presentation skills required - Understanding of and experience with segregation of duty concepts and Sarbanes-Oxley section 404 requirements, other compliance requirements very helpful - BA/BS required - Willingness to travel required, both domestic and international requirement - CPA, CISSP  or CISA certification preferred   Why Work for Deloitte's Security & Privacy Services Group in the Application Integrity Area?   - The dedicated ERP competency group focuses on serving attest and non-attest clients in many dimensions including implementation and assessment projects. We have specialist and generalist tracks which allow resources to focus on the things that interest them - e.g., span across many ERP packages or focus on a certain ERP package, work on only implementation versus assessment projects, focus on certain work streams on projects (security versus functional process roles), etc.  - Leadership roles are immediately available on current projects.  Our ERP practice has a need to acquire Consultants, Senior Consultants, Managers and Senior Managers. - We offer a variety of consulting opportunities to our practitioners.  We encourage our practitioners to gain skills in multiple ERP packages as well as other competency areas in Enterprise Risk Services, such as Identity Management, Role based Access Controls, Privacy, Infrastructure Security, IT audit. - The ERP practice is currently experiencing over 50% growth. - We offer both internal and external ERP training courses as well as internal sandboxes and systems for learning and solutions development. About DeloitteDeloitte refers to one or more of Deloitte Touche Tohmatsu, a Swiss Verein, and its network of member firms, each of which is a legally separate and independent entity. Please see www.deloitte.com/about for a detailed description of the legal structure of Deloitte Touche Tohmatsu and its member firms. Please see www.deloitte.com/us/about for a detailed description of the legal structure of Deloitte LLP and its subsidiaries. Deloitte LLP and its subsidiaries are equal opportunity employers.