Life at Deloitte
Journeys to cyber security - what does it take?
Different perspectives, one passion
When it comes to choosing cyber security as a career path, a common misconception is that a computer science degree is a must. While having an information technology background is helpful, a successful career in the security space does not depend on it.
Some of our brightest cyber security minds jump-started their career without a computer science degree. Instead, they were armed with a curious mind, an affinity and passion for the subject and the ability to easily adapt to new situations. When asked why they chose Deloitte and what inspires them about their profession, this is what they had to say:
Cyber security careers at Deloitte
Find open positions
Anne van Eck, Senior Consultant, Data Protection & Privacy, Cyber Risk Services
While I was studying law and business at the University of Leiden in the Netherlands, I always felt that something was missing. In my third year I therefore helped to set up a Legal Tech initiative, by combining legal and technical knowledge. And it paid off! Today, I am advising clients on legal and technological matters – and this is what I still love doing. The combination of my legal, business and tech background allows me to think broader and consider more than just one angle of a client challenge (e.g. legal concerns).
At Deloitte I love working in our multidisciplinary and diverse team. People from various backgrounds and nationalities make up our cyber team. I think diversity is key to being innovative and having different perspectives on certain challenges that clients may face. We are always open to helping our clients grow and taking on new challenges. If there is one thing I have learned working for Deloitte in the past few years, it is that anything is possible, as long as you go for it. And that is what I will continue to do in my future as a woman in cyber at Deloitte.
Katie Koetke, Assistant Manager, Cyber Risk Services
My cyber journey began almost five years ago when I joined Deloitte in the United States and continued my career with a transfer to Deloitte Switzerland. Even though my academic background was Biomedical Engineering and I was unfamiliar with Cyber topics, Deloitte offered me a position in the resilience and business continuity team. My colleagues were eager to help me learn and grow in this new, demanding space. The work gave me the opportunity to explore new subject areas, while also developing my passions and interests. My Cyber colleagues in Switzerland helped me to leverage my existing experience in resilience, while learning and developing my cyber skillset. I am now able to add a much-needed cyber perspective to my operational resilience skills. This perspective helps me to serve my clients better, while keeping myself challenged to explore new areas.
In my opinion, in this ever-evolving field of cyber risk, it is an exciting time to be part of a team that is always striving to develop and enhance its experience and abilities in the industry. The cyber risk field is innovative and fast-paced, something that I find very appealing. Being part of the Deloitte Cyber Risk Services team means working with a diverse group of individuals who thrive on new challenges, solving complex problems, and helping each other succeed.
Laura Mati, Assistant Manager, Cyber Risk Services
After having studied Economics in Milan and Business Journalism in Beijing, I came across cyber security almost by accident when I joined Deloitte (although “there are no accidents” Master Oogwa, Kung Fu Panda, would wisely whisper). One of my first projects allowed me to design operating models and set up global hubs for the delivery of cyber security services for various Swiss based global organisations.
Just as much as my initial involvement was accidental, the choice to move to cyber security was unreservedly deliberate. I completed the Certificate of Advanced Studies in Cyber Security at ETH Zürich and moved from Strategy & Analytics in Consulting to the Cyber team in Risk Advisory.
What fascinates me about cyber security is the wide spectrum of fields one could pursue without ever leaving the cyber domain – cryptography and mathematics, law and privacy, national security and international relations, compliance and regulations – all tightly glued together by technology.
With a background in outsourcing and shared services large-scale transformations, I am looking forward to exploring and pushing forward the thinking around cyber delivery models, alongside our clients. As the maturity of cyber services grows, so does the importance of delivering them in the most effective and efficient way.
Ramona Traber, Senior Consultant, Cyber Risk Services
Looking back at my journey to cyber security at Deloitte, I am amazed of how all my previous work experiences are a perfect match for a career in this fascinating field.
With a bachelor degree in hospitality administration, a master diploma in management and a handful of operational and strategic work experiences around the world in the hotel, banking and start-up environment, I enrich the cyber business with a different thinking to an industry, to a team, and ultimately, to the client.
When thinking about my atypical professional journey from hospitality to cyber risk services, the most important common denominators of these experiences are ‘people’ and ‘problem solving’. I am very passionate about people, particularly about how individuals interact with each other in different professional settings, and I truly enjoy accompanying organisations in their journeys of solving complex strategic and organizational challenges. The cyber security business in particular has captured my interest due to its fast-paced, innovative and complex nature, not only requiring a thorough understanding of both people and technology matters, but also a relentless intrinsic motivation to challenge the status quo.
Ursina Livers, Senior Consultant, Cyber Security Services
My journey to Cyber began in a two-week tech boot camp facilitated by Deloitte, targeted at women with non-technical backgrounds and aiming to inspire them to join the tech industry. With my economics background and an affinity and curiosity for technology, I was a perfect match and was absolutely thrilled to participate. In retrospective it took me some time to start discovering the world of technology as I was a bit intimidated by computers before my studies and the boot camp, because I did not fully understand how they work. So, I did not concern myself with them in detail until I was forced to during my studies. But once I got over my initial reluctance, I was surprised and amazed by all the possibilities that suddenly opened up to me.
Hence, the two-weeks boot camp, brought me even closer to the topic and increased my interest and motivation to learn more. It was during those two weeks where I had my first encounter with Cyber Security and ever since, I am convinced that it is the right place for me.
My goal was always to have a job with purpose and meaning. And what better purpose is there than to protect my family, friends and everyone else from threats most people are not even aware of? Working in cyber means having an impact on lives by working towards a safer cyber space for everyone. Moreover, I enjoy the fast changing environment and the surprises that come along with it. It is a challenge but it keeps me on my toes and it awakes a spirit of discovery. Hence, I did not think twice when Deloitte offered me a consultant position in Cyber Security and I have not regretted it once.
Stephanie Barry, Cyber Risk Analyst, Deloitte Business Security
"It’s been an amazing ride! With a background in data analysis, I joined Deloitte in the UK in 2015. At the time, I was part of the Quality and Risk Operations department where I developed my skills in information security risk. One year after joining the team in the UK, I seized the opportunity to join Deloitte’s internal security team in Switzerland. I was excited to build upon my risk background and become a cyber risk analyst. My new team in Switzerland helped me define a development plan, which included technical training, such as information system, cloud and networking security courses, as well as women in leadership courses.
As I look back on the time I’ve spent in this role, I feel that I’ve achieved so much more than I ever could have imagined, in a field that I originally hadn’t considered entering: I’ve contributed to many cyber initiatives, while working with a variety of stakeholders at various levels, and with multiple Deloitte firms from around the globe.
There’s no doubt that the technical aspect of my role has at times been daunting, but the prospect of overcoming these challenges has always driven my desire to keep on learning, and my progress keeps me motivated every day. The world of cyber risk is fascinating, and having come from a risk background, I feel as though cyber security has in fact been a natural next step. In addition, I’ve gained first-hand experience in effective communication and collaboration, which is absolutely necessary in providing pragmatic security services. Now, I’m really excited to develop further professionally and help Deloitte innovate securely!"
Maria Pisa, Senior Manager, Cyber Risk Services
“My Deloitte journey started with risk analytics and ultimately brought me to the field of cyber and privacy, which I am passionate about. But it’s not just the exciting field of cyber and privacy that makes me enjoy my job so much; it is much more. Three key things stand out in particular:
- The diversity of the work: As privacy team we are responsible for translating legal and regulatory requirements into policies, roles and responsibilities for our clients. Further, we also get to design and implement processes, functions, and technical measures to secure information. To round it up, we analyse data and systems and assess their implementations. And when we are asked to find gaps, threats and vulnerabilities of such systems to help ensure regulatory compliance, my risk analytics background comes to play again as well.
- The many opportunities to grow and develop as an individual: In the cyber team, I can be who I am and I get the support I need to become the best I can be. This allows me to grow in areas that I find exciting and learn about things that ignite me.
- An amazing team: The cyber team is comprised of a diverse mix of incredibly smart cyber risk professionals from across the globe. We enjoy taking on new challenges as a team, solving them by playing to each other’s strengths and capabilities. The combination of trust, respect and a common passion for our work makes the collaboration in this team something I look forward to every day.
It's really the complete package of exciting work, opportunities, and an inspiring team that makes being a part of the cyber team and being a woman in cyber so thrilling. I can’t wait for the next steps of the journey that lie ahead!"
Elisa Papa, Manager, Cyber Risk Services
“I am a physicist by trade who is passionate about data. After several years in the academic research and data science field it was time for a change. My increasing interest in data management and data security led me to joining Deloitte's Cyber team, where I now get to deep-dive into these topics while working on exciting client engagements. In this role, I have already had the opportunity to work on challenging privacy 'transformation' programmes for clients, which aimed at ensuring data protection, in particular around personal data, by translating multi-faceted regulatory requirements into technical and organisational measures for an appropriate use and processing of the data.
Being part of the Cyber team is a unique and rewarding experience because the learning and developing never stops. Every day, I am surrounded by a dedicated and very diverse group of cyber security specialists and data protection experts who all strive to reach one common goal: navigate the complex IT landscapes of international companies, understand the technologies in place and the risks associated with them to be able to find the best solutions for our clients.”
Yasmine Deryckere, Assistant Manager, Cyber Risk Services
"As a data protection specialist I am passionate about translating legalese data protection requirements into comprehensible and easy to implement GDPR solutions for companies across all industries. This regulatory rollercoaster allows me to obtain new insights and skills on a daily basis, which sparks continuous learning and growth and ensures I never get bored.
I joined Deloitte Cyber because I wanted to be part of a dedicated and ambitious team of privacy and security professionals who have in-depth expertise in cyber transformation programmes across large scale companies. For new joiners, the team promotes on the job learning, applauds and rewards people that are proactive and values all team members’ point of view, irrespective of seniority.”
Fiona Koller, Consultant, Cyber Risk Services
"During my bachelor studies at the University of St. Gallen in International Affairs, I decided to write my thesis on the topic of cyber risk and security for Small and Medium-Sized Enterprises (SMEs) in Switzerland. I chose this topic because it was an emerging issue and there was not much information about it at the time of my research. Afterwards, and despite some initial doubts due to my lack of technical skills, I applied for a traineeship in Deloitte’s Cyber Risk Services team. The goal was to gain hands-on experience and to determine whether it could be a potential career path for me in the future.
I am now part of an ambitious and passionate team working towards the greater good in providing companies with the best possible solutions in this dynamic and fast-growing field. I have had the privilege of working alongside and learning from extremely talented data privacy and cyber security specialists. I enjoyed working on a variety of diverse and complex client projects ranging from GDPR support to cyber security gap assessments. The team here promotes learning on the job and, over the past few months, I have been given increased responsibilities and client exposure.
Looking back, my initial concerns now seem unfounded, as I experienced the interplay between technical and non-technical skills and how crucial both are to complete successful projects. The interconnectivity of the human and the technical factor is integrated into our team and the work we do every day. A few months into my cyber risk journey at Deloitte, I see myself continuing on this career path with additional training and I am very excited about the opportunities and the challenges of the future."