Work In Tech

Find your next role at Canada's fastest-growing tech companies

Global Data Security Leader (Director), Deloitte Global Tax & Legal (GTLO-Intela Org.)



Toronto, ON, Canada
Posted on Friday, March 3, 2023

Job Type: Permanent
Reference code: 122371
Primary Location: Toronto, ON
All Available Locations: Toronto, ON; Calgary, AB; Edmonton, AB; Ottawa, ON

Our Purpose

At Deloitte, we are driven to inspire and help our people, organization, communities, and country to thrive. Our Purpose is to build a better future by accelerating and expanding access to knowledge. Purpose defines who we are and gives us reason to exist as an organization.

By living our Purpose, we will make an impact that matters.

  • Enjoy flexible, proactive, and practical benefits that foster a culture of well-being and connectedness.
  • Experience a firm where wellness matters.
  • Be expected to share your ideas and to make them a reality

Do you thrive on developing creative and innovative insights to solve complex challenges? Want to work on next-generation, cuttingedge products and services that deliver outstanding value and that are global in vision and scope? Work with premier thought leaders in your field? Work for a world-class organization that provides an exceptional career experience with an inclusive and collaborative culture?

What will your typical day look like?

As the Global Controls and Security Leader, you will have responsibility for: (1) defining and operationalizing global controls focused on protecting data and compliance with global data privacy regulations and relevant IT standards (e.g., SOC2), (2) collaborating with broader cyber security teams for compliance and following leading practices, (3) collaborating with global privacy office leaders on data security processes and procedures.

Defining and operationalizing global controls includes:

  • Defining processes for provision and management of standard, elevated, and privileged access rights, including requirements prior to these being granted. Management of access includes an ongoing review of standard, elevated, and privileged rights with an automated revoke of rights outside defined parameters.
  • Operationalizing control processes and managing these operations on an ongoing basis; includes updating processes over-time based on any changes to the system, regulations and/or technology standards.
  • Investigating all control ‘issues’ to define root causes and develop / implement mitigation plans and update processes, as needed; collaborate with global office of privacy, as needed.
  • Develop and maintain documentation (incl. reporting as needed) on control processes and events; includes a regular periodic review and sign-off of documentation to keep content accurate and current.
  • Drive continuous improvement within the global controls processes. Includes robust training of team members on standard controls and processes, and the importance of identifying and raising risks (reinforce with positive snapshots) and holding team members accountable for failure to follow established controls and processes (negative snapshots).

Collaborating with cyber security teams includes:

  • Ongoing collaboration with cyber security leadership teams and related efforts; act as lead on these efforts for relevant global tax technology assets
  • Manage cyber security efforts from standpoint of project management, risks, issues, and dependencies to drive outcomes meeting defined deadlines
  • Maintaining compliance with all security standards set for the tax technology assets
  • Collaborating with global privacy office leaders and other relevant groups on data security processes and procedures includes:
  • Collaborating with privacy and risk leaders on all relevant data / risk concerns regarding tax technology assets; documenting discussions, decisions, and approvals through defined privacy processes; updating control processes (as needed); managing details of all open items through to resolution
  • Acting as the liaison for tax technology with Global and other relevant Offices of Privacy and Confidentiality, and Global Compliance
  • Collaborating with privacy and risk leaders to manage and respond to external security questionnaire requests for relevant DTTL Tax technology

Within these roles you will be required to work across the various matrixed teams to drive end-to-end processes and/or issue resolution. This includes engagement in the SSDLC/TOM design phase to ensure relevant standards (e.g., in the areas of security, access, logging, retention, regulatory) are included in the design of the technology capability.

You may be required to build and/or lead a team and/or lead others indirectly to deliver against the objectives within this role.

About the team

Deloitte Global:

At Deloitte, we expect results. Incredible—tangible—results. And Deloitte Global professionals play a unique role in delivering those results. We reach across disciplines and borders to serve our global organization. We are the engine of Deloitte. We develop and lead global strategies and provide programs and services that unite our network. In Deloitte Global, everyone has an opportunity to lead. We see the importance of your perspective and your ability to create value. We want you to fit in—with an inclusive culture, focus on work-life fit and well-being, and a supportive, connected environment; but we also want you to stand out—with opportunities to have a strategic impact, innovate, and take the risks necessary to make your mark. Deloitte Global supports our talented professionals in answering the question: What impact will you make?

Global Tax & Legal deploys the right team of experts to address the ever-evolving needs of our businesses around the world. Our professionals deliver superior compliance and advisory insights and guidance (local and global) to support our businesses operating in singular or multiple jurisdictions.

Enough about us, let’s talk about you

You are someone with:

  • Bachelor's degree. Preferred degree in computer sciences or related degree
  • Experience designing, operationalizing, and owning internal control processes, especially those related to data security
  • Experience working on Tax, Audit or Accounting software platforms strongly preferred
  • Experience leading control and security related programs and risk mitigation efforts on multiple concurrent projects within time constraints
  • Experience managing/mentoring staff
  • Strong communication (written and verbal) abilities to effectively work with senior level executive stakeholders, both internal and external
  • Experience with Project Management tools including Microsoft: Excel, PowerPoint, SharePoint, Teams, Project
  • Hold at least one of the following, or similar, accreditations:
  • Certified Information Systems Security Professional (CISSP)
  • Project Management Professional (PMP)
  • Six Sigma (Black Belt)

Our promise to our people: Deloitte is where potential comes to life.

Be yourself, and more.

We are a group of talented people who want to learn, gain experience, and develop skills. Wherever you are in your career, we want you to advance.

You shape how we make impact.

Diverse perspectives and life experiences make us better. Whoever you are and wherever you’re from, we want you to feel like you belong here. We provide flexible working options to support you and how you can contribute. Be the leader you want to be.

Be the leader you want to be

Some guide teams, some change culture, some build essential expertise. We offer opportunities and experiences that support your continuing growth as a leader.

Have as many careers as you want.

We are uniquely able to offer you new challenges and roles – and prepare you for them. We bring together people with unique experiences and talents, and we are the place to develop a lasting network of friends, peers, and mentors. Our TVP is about relationships – between leaders and their people, the firm and its people, peers, and within in our communities.

The next step is yours

At Deloitte, we are all about doing business inclusively – that starts with having diverse colleagues of all abilities. Deloitte encourages applications from all qualified candidates who represent the full diversity of communities across Canada. This includes, but is not limited to, people with disabilities, candidates from Indigenous communities, and candidates from the Black community in support of living our values, creating a culture of Diversity Equity and Inclusion and our commitment to our AccessAbility Action Plan, Reconciliation Action Plan and the BlackNorth Initiative.

By applying to this job you will be assessed against the Deloitte Global Talent Standards. We’ve designed these standards to provide our clients with a consistent and exceptional Deloitte experience globally.
Deloitte Canada has 30 offices with representation across most of the country. We acknowledge our offices reside on traditional, treaty and unceded territories as part of Turtle Island and is still home to many First Nations, Métis, and Inuit peoples. We are all Treaty people.