Student opportunities in Risk Advisory
In these rapidly evolving times, we’re defining the future. As well as helping clients to comply with changing laws and best practice, you’ll transform their businesses. It’s about understanding and anticipating the risks that come from uncertainty, whether that’s cyber threat, financial, operational, or a myriad of other risks. And offering innovative solutions that not only build resilience, but deliver a competitive advantage.
Why work in Risk Advisory?
You’ll work with, and learn from, brilliant people. People who disrupt how our clients traditionally respond to uncertainty in their business; who combine deep expertise and innovative digital technology across all areas of risk to help our clients drive better performance. And importantly people who care about the world around them and use their expertise to make an impact in society.
Join us and you’ll become a specialist in the issues that keep our clients awake at night. You’ll help bring new, innovative solutions and products to market and will be empowered to take responsibility for developing, delivering and running the future for your clients.
We work with major organisations across the corporate, financial and public sectors; from the largest household names to smaller clients in niche or emerging industries. We give you a huge breadth of career options, including opportunities to work on global client engagements with colleagues across the entire Deloitte network.
So many paths are open to you in Risk Advisory. You can choose to specialise in a broad range of business or technological competencies. Focus on joining interesting new teams and developing products and businesses from scratch... Whichever way you go, you’ll be nurtured and developed throughout your career.
Explore your Options:
What we do
Keeping our clients safe, secure and one step ahead means working on all kinds of challenging projects to mitigate the cyber risks they’re exposed to. We help them identify and protect their critical information and assets, and make intelligent decisions about their infrastructure, technology, processes and people. Ultimately, this about ensuring that they can not only survive disruption, but thrive in a competitive market.
We provide deep technical expertise to secure their organisation, from implementing advanced defensive technologies to trying to compromise their network to identify critical vulnerabilities. We tackle the business issues involved too. Such as compliance with new regulations and understanding which cyber threats could have the biggest impact.
All of this takes different types of knowledge and expertise, from the highly technical to pure strategic business thinking. The current shape of our business reflects this, with two distinct streams: Cyber Strategy and Transformation & Cyber Technical.
Whichever one you join, you’ll be part of a team that’s growing fast, as cyber security becomes ever-more pressing for all businesses, large and small. Four years ago, there were just 50 of us; we’re now 200-strong.
You don’t need a solid IT background for Cyber. In fact, our diversity is how we make a difference. We’re dedicated to developing talent. So, whatever your academic or professional background, you’ll soon get to understand what our clients need and become a specialist in your field.
Whether you join us on the technical or non-technical side, you’ll be among true innovators. Together, we’re constantly seeking new ways to solve complex problems and deliver more. For example, working on how to translate complex technical issues into more business friendly information. Developing a "red button" alert, so we can deliver instant support to clients in the event of a privacy or security breach. Finding better ways to define metrics. Leading the way with subscription-based managed services.
You’re sure to make a huge impact here, for your clients and your career, and for wider society too. You can help us train organisations in what it means to be cyber aware; work with non-profit organisations that teach young adults how to stay safe online; or become one of our many cyber security ambassadors, who’ve worked in schools and on government initiatives, such as Cyber First.
Deloitte Managed Solutions (DMS)
What we do
We specialise in designing, building and running large-scale managed services on behalf of our clients. Our delivery model combines strategic process re-engineering, operational management and the deployment of innovative technologies, such as robotic and cognitive automation, to support clients with some of their most significant business challenges.
We work across multiple sectors and businesses in the UK and internationally. Our clients are usually organisations who need our expertise to support with large scale operational and regulatory challenges. For example, we run and manage remediation and claims management programmes, litigation-related document reviews, and customer outreach and data breach response projects.
DMS – Robotics and Cognitive Automation
Within DMS is a growing team focused on Robotic and Cognitive Automation. This team specialises in applying pioneering technology, such as Robotic Process Automation (RPA) and Artificial Intelligence, advising clients on their automation strategy, alongside designing, building and running robotics solutions on their behalf.
What makes us different in DMS? The scale and size of our engagements (some of our projects have teams of over 500 people), and the constant harnessing of innovative technology and working methods, to refine and enhance our client propositions.
- Using robotic and cognitive tools such as (RPA), machine learning, text analytics tools, etc.
- Collaborating with third parties e.g. software providers, resourcing firms, and real estate specialists to tailor our services.
- Deloitte Intelhub – using multiple media sources to track emerging issues in the UK and overseas that could impact our clients or the firm.
You’ll have the opportunity to work with some of the UK’s leading firms in this fast-paced and challenging area. The sheer diversity of roles here means you can create your own individual career path. Choose to run large-scale operations, for example, or become a solution architect, implementing cutting-edge technology solutions, or any number of options in between. We’ll support you all the way.
Extended Enterprise Risk Management (EERM)
What we do
The success of third party relationships is critical to our client and our Extended Enterprise Risk Management professionals help maximise the benefits gained from the relationships our clients have with various business partners. We help with identifying and managing the risks that come with contractual relationships, delivering tangible solutions across our four propositions: Third Party Advisory (TPA), Business Partner Assurance (BPA), Software License Compliance (SLC) and Software Asset Management (SAM).
Our people work across all sectors; from sports, pharmaceuticals to financial services, and with various stakeholders within the client’s third party businesses. These can include the Chief Information Officer, procurement teams, IT administrators and many others.
From using the latest technology to developing our own, to transforming the way that we work; innovation is critical to our business. You could be part of our dedicated EERM Innovation team when you join us. We’ve already developed unique in-house tools to automate our analytics, and we’re working with exciting technology companies on contract discovery technology to automate entire lifecycle processes. We’re also exploring how block chain, machine learning, automation and internet of things can become part of our daily business.
Working with us means all kinds of exciting opportunities and you’ll have the chance to work on projects across diverse industries, including technology, oil & gas, pharmaceuticals and the public sector. You’ll collaborate with senior people and key stakeholders in many different businesses and there will also be the opportunity to travel within the UK and internationally. Recent projects have taken our colleagues to Latin America, Asia Pacific and Africa. You’ll also have the chance to bring your voice to the table and help make change happen.
The EERM team, whilst being high performing where no two days are the same, values a healthy work-life balance, and provides ample opportunities. Social events are democratically selected and are well attended. We enable our people to constantly develop, both professionally and personally, through training, on the field experience, and exposure to different clients from day one. If you’re keen to branch out into different areas, we’ll help you get to wherever you want to go.
What we do promotes good governance behaviours, affecting how businesses operate and work with one another. Which means our people can feel great pride in being part of something that has such a positive impact.
Public Sector Audit
What we do
We are the market leader in NHS Foundation Trusts and are recognised by governors and management alike for our high quality audit skills, tailored focus and in-depth scrutiny. Our assurance is considered the gold standard in the sector.
As well as working with NHS Trusts throughout the UK our client list includes some of the biggest universities in the country and key local and central government accounts.
Introducing new techniques and automated technologies has freed our people to focus more on business-critical issues, and less on more basic tasks. Which means ‘doing an annual audit’ here is as much about providing the client with valuable insights as it is, highlighting weaknesses in their financial systems, and recommending solutions.
This is a real opportunity for you to build advisory expertise through close involvement with managers, partners and senior client staff. As contracts often last for several years, you’re able to build lasting relationships and make meaningful, long-term impacts on their business.
Working within Audit & Assurance provides one of the finest and fastest forms of business education imaginable. While you study for the ACA qualification, you’ll gain unrivalled work experience on audit and advisory projects, in different areas of the public sector and in different locations. This means, you’ll get to deal with clients who vary enormously in their operations, their controls and their size and structure, giving you a thorough sector knowledge.
Reporting requirements are more detailed for the public sector, and many organisations are vast, so you’ll gain a good grounding in International Financial Reporting Standards (IFRS), consolidations and corporate reporting too.
You’ll get to work on both audit and non-audit projects, such as organisational development reviews, financial due diligence and board development work. And collaborate with specialists across the firm, from IT, to Tax and Real Estate, enabling you to build your network and gain knowledge and experience across the firm.
There’s no doubt the learning curve is steep. But you’ll soon develop into an accomplished professional, with a wide network. You’ll be able to drive change for organisations and add real value for your clients, as well as progressing fast within our firm.
Reputation, Crisis & Resilience
What we do
We advise and support clients at each stage of the crisis lifecycle to help them identify, assess, prevent, prepare, respond and recover from strategic risks, issues and incidents, and crises. Whether it’s a cyber-attack, natural disaster, product failure or other challenging issue, we’re there to advise senior leaders and help them minimise the impact on their reputation, strategy, commercial interests and bottom line.
Managing a complex issue or fast-moving crisis can be extremely challenging. Addressing what has gone wrong, looking after people who may have been affected, and dealing with the intense public scrutiny can stretch the most experienced of teams. At Deloitte we help manage issues before they escalate, and support effective responses should the worst-case scenario occur. This is what makes us different.
We support clients in a number of ways, such as by providing strategic advice to the senior team, evaluating potential scenarios and preparing contingency plans, guiding their crisis response, developing communication strategies to handle intense public and media scrutiny, or coordinating activities and work streams in the Crisis Management Office. We also provide clients with immediate access to experienced crisis management professionals via a dedicated 24/7 service.
We value innovative solutions and have developed a number of products to improve the way we support our clients such as the CrisisHub and CrisisSimulator. The Deloitte CrisisHub provides our clients with an intuitive, cloud based, crisis management hub of information, covering all the key facts, and supporting the critical decisions and actions required throughout a crisis - all managed via a single online tool, accessible anywhere in the world. Our CrisisSimulator enables us to replicate a 24-hour news site as well as a client’s own website and session or crisis simulation exercise. This secure platform allows clients to view the evolving external reaction to a crisis and see the consequences of their decisions played out in real time, for example seeing media and customer reactions to their crisis communications.
As a professional in this area, your impact will be huge as you’re there for clients when they need you most. As well as being a ‘first responder’ and supporting your clients through a crisis, you’ll also help them to be prepared for worst-case scenarios and avoid them where possible. So they are better able to protect their people and their business.
In other words, you’ll gain the hands-on experience and insight to provide practical advice on crisis preparedness, issues management, crisis communication and organisational resilience.
Risk & Regulation
What we do
The regulatory landscape faced by the financial services industry has never been more complex. Confronted by a series of changes from national and international regulators, many of which overlap and interact in ways that are difficult to predict, many institutions are struggling to keep up, let alone strive for best practice.
We’re here to help. We’ve built a market leading team that supports top tier financial institutions in managing change. We work with the most senior level people and are often asked by our clients to help them strike the right balance between meeting regulatory requirements and running a commercially successful business.
They look to us to not just provide in-depth technical expertise and knowledge, but also to help them benchmark their own approach against their competitors and the expectations of regulators. This combination of exceptional technical ability and extensive industry knowledge is what enables us to really make a positive contribution.
Risk & Capital Management (RCM):
This team helps firms implement liquidity and capital reporting requirements; model counterparty, credit and market risks and implement new regulations and operating models.
Financial Risk Measurement (FRM):
Helps clients to develop, validate, execute, apply and audit risk models, combining technical insight with practical business knowledge. The team helps clients to design and implement effective credit risk modelling; risk adjusted pricing processes and stress testing methodologies.
Compliance & Operational Risk (COR):
These experienced professionals use a range of internally developed tools and delivery models to help our clients meet regulatory requirements. They provide support and assurance over governance, conduct and operational risk.
You’ll have extensive opportunities to work with the largest and most influential financial services clients. Collaborating with different Deloitte teams, and international offices, you’ll provide exceptional services to those clients. You’ll get to explore how firms can best make use of technological innovation to enhance their risk and compliance processes, and develop your technical and personal skills within a highly motivated and enthusiastic team.
What we do
Storing, using, and interpreting data presents complex and challenging issues for our clients. We’re here to help them understand how, by improving how they manage and use their data, they can improve their business performance. We look at financial, operational, and commercial information, analysing and visualising it to provide insight and add value for our clients.
There’s no typical Risk Analytics client or project. Poor data is a problem that affects all organisations, regardless of size or business model, and leveraging data for insight and cost efficiency can be an opportunity for clients across all industries. This means that we work with clients of all kinds, from banks, insurers, and other major financial institutions, to high-street businesses, government institutions, and even professional sports teams.
Our teams are generally a mix of highly skilled technical people, such as data scientists, mathematicians, and academics, and non-technical specialists who have a deep industry knowledge, such as ex-traders, sportspeople, and industry leads – but don’t worry, you don’t need to be an expert at this stage!
This inter-disciplinary model ensures we’re able to deliver complex models and solutions, but also respond to the needs of specialised proposals. We’ll call in additional experts where necessary too. Which means you’re likely to meet and work with all kinds of inspiring, deeply knowledgeable people, throughout your career.
Key project areas:
- Information Management: Data Quality; Data Governance; Data Migration
- Data Science: Artificial Intelligence; Machine Learning; Robotics
- Analytics Insight: Visualisation; Operational Analytics; Regulatory Compliance
One of the fastest growing and highest performing areas of our business, Risk Analytics offers exceptional opportunities for your career. Many problems tackled here can be applied to clients across different industries, and the core skills you’ll develop are highly transferable. You’ll experience a huge variety of client and project types, and will be responsible for drawing out, refining and clearly articulating complex data stories and concepts to our clients. No prior data or coding experience is required, but there are opportunities to pursue specialised fields such as data science and artificial intelligence should you be interested.
Strategic Regulatory & Operational Risk (SRO)
What we do
Managing risk, compliance, and establishing effective control is at the heart of good governance; it’s vital to sustaining superior business performance. We help businesses manage the risks and challenges they face every day, by designing, implementing and providing confidence and insight on their processes.
The SRO group delivers solutions in the following three inter-connected areas:
- Strategic risk management
- Sustainable business (assurance and advisory)
- Crisis preparation
- Live crisis response
Recent projects in Regulatory risk include helping a FTSE50 global telecoms company standardise their Enterprise Risk Management system across all 15 global markets their operated in when previously they had all been different. This brought greater efficiency and transparency to their business and helped significantly improve the quality of risk management data available across the whole organisation.
We also worked with a FTSE100 organisation, helping them ensure they had effective processes in place to mitigate risks, particularly in areas such as cyber risk, digitalisation and changing regulations.
Our sustainability work covers things like responsible business, human rights, health & safety, and gender pay gap advice, as well as environmental management and sustainability.
- Internal audit delivery – outsourced and co-sourced
- Internal audit advisory – transforming IA
- Change risk management
- Operational excellence/controls advisory
Recent projects include reviewing and advising improvements on the effectiveness of the Internal Audit function within a FTSE100 global Oil and Gas organisation, comparing this against leading practice and the International Standards for the Professional Practice of Internal Auditing.
We also helped a Technology, Media and Telecoms organisation design and implement a change management framework for a significant transformation programme they are running. This impacts their whole business, from back office finance systems right through to interactions with their customers.
- Regulatory compliance – assessment, design, implementation and assurance
We recently helped a FTSE 100 global pharmaceutical organisation create a capability that provided risk assurance over the commercial activities of its affiliates across the globe including whether the risk of bribery, corruption and fraud was being adequately managed.
We also worked with a technology industry-disruptor to review and improve their existing compliance processes. This included working with the legal department to translate complicated requirements into understandable business objectives, the development of a practical Governance Handbook, and creating a focussed approach to training the business.
Across the SRO business:
Running across these three key areas, we also develop and deliver Governance, Risk and Compliance (GRC) technology for our clients. Which means building an ecosystem of technology to support their governance, risk and control agenda.
And we have a dedicated team focused on regulatory horizon scanning: our Centre for Corporate Regulatory Insight. These are experts in looking ahead and developing innovative new services for clients, as well as providing insights.
We work with a broad range of clients. Key industries include health and life sciences, consumer and industrial products, telecommunications, media and technology, and energy & resources, as well as the public sector.
The opportunities here are vast. You’ll have exposure to clients from day one, working on client site and attending meetings. While the diversity of our client base, both in size and industry, means you’ll get to understand the inner workings and challenges faced by all kinds of organisations, including major global companies.
Project timescales range from a week to several months long, giving you plenty of variety, with opportunities to work with different people, including colleagues across the firm, in the UK and overseas.
Technology Digital Risk (TDR)
What we do
Technology and digital transformation is at the core of business strategy, enabling organisation’s to exploit competitive advantages and keep pace with market disruptors. As dependency on technology increases so does technology and digital risk, unless it is adequately managed. In Technology and Digital Risk (TDR) we help organisations to manage this risk, allowing them to make intelligent risk-based decisions over business processes, technology and digital operations.
The type of work we do includes:
- IT Internal Audit: As subject matter advisors or as part of the outsourced / co-sourced Internal Audit function, we help organisations evaluate and address risks related to information technology including applications, systems, networks and infrastructure.
- Third Party Assurance: We help organisations with addressing regulator and marketplace demand to manage third-party risk through our third-party readiness and attestation services.
- IT External Audit: We help organisations by delivering risk and control services related to IT, entity level, and business process controls.
- Analytics: We help organisations with exploring data to discover and analyse patterns, identify anomalies, profile, and reveal relationships from large sets of client data.
- Digital Risk: We help organisations take advantage of the benefits of innovative new technology, support their digital transformation and better manage their legacy technology through risk intelligent solutions, advisory and managed services.
- Program/Project Review: We help organisations review their technology project and program portfolio and provide senior stakeholders with an accurate, independent view on program status and health.
- Governance, Risk and Compliance: We help organisations assess, design and implement GRC systems for a broad range of risk areas including IT Risk, resilience, compliance, operational risk, third party risk management and Enterprise Risk Management.
We work with a broad range of clients, both private and public sector. From leading global financial services firms to the largest multi-national corporate businesses such as Telecoms providers, major Manufacturers, Retailers and Energy providers across the FTSE100 and FTSE250.
You’ll be joining a fast-growing and high-performing team of specialists at the cutting-edge of the technology and digital revolution. The diversity of our client base, both in size and industry type means that you’ll get unprecedented exposure to the inner workings and challenges faced by all kinds of organisations including major global companies.
You’ll become a technology and digital risk specialist and get the opportunity to develop your technical knowledge alongside softer skills to become a true ‘leader’. You don’t need to be a technology whizz-kid wizz-kid to join our team, but a passion for learning more about this area is key. We’re extremely proud of the diversity and varying backgrounds of individuals who make up our team.