Continuous Threat Exposure Management (CTEM) Manager

Position Summary

Are you an experienced cybersecurity professional looking to take on complex challenges, expand your leadership impact, and help shape the future of cyber defense? At Deloitte & Touche LLP, you'll work with leading organizations to address a critical business issue: strengthening security while enabling innovation and reducing threat exposure. Join Deloitte's Cyber Defense & Resilience Continuous Threat Exposure Management (CTEM) team to help clients identify, assess, and reduce their attack surface and overall cyber risk. In this role, you'll bring your experience to high-impact client environments, work alongside top cyber practitioners, and contribute to some of the market's most complex and strategic security engagements.

Work you'll do

As a Cyber Defense & Resilience Manager, you will lead teams and work directly with clients to address complex attack surface security challenges and strengthen their overall cyber posture. You will support organizations in reducing risk by applying leading practices across cybersecurity, security operations, and threat exposure management. This role offers the opportunity to help clients navigate an evolving threat landscape while delivering practical, business-aligned security solutions. In this role, you will:

• Execute exposure-based patching and automation aligned to CTEM priorities

• Lead teams and build trusted client relationships through high-quality delivery

• Oversee end-to-end patching operations, including deployment and maintenance of vulnerability and patch management tools across technologies and lifecycle phases

• Provide technical guidance across vulnerability management, patching, exception management, and reporting

• Identify opportunities to improve efficiency, reduce risk, and enhance threat visibility

• Develop clear client deliverables and support proposals, POVs, and firm initiatives

• Mentor junior team members and drive innovation in next-generation security solutions

The team

At Deloitte, our Cyber Specialists help organizations manage cyber risk and drive business value through stronger security, greater visibility, and embedded privacy. By combining program design, implementation, operations, and incident response capabilities with deep industry and mission knowledge, we help clients protect their most valuable assets, enable secure digital transformation, and respond quickly to an evolving threat landscape.

Required:

• 10+ years of experience in information technology and/or information security
• Experience working with service delivery teams across multiple geographic regions
• Demonstrated ability to plan, design, deploy, operationalize, and lead secure, scalable vulnerability and patch management programs from strategy through execution
• Experience owning the end-to-end CTEM remediation lifecycle, including exposure identification, prioritization, patch execution, validation, and reporting
• Hands-on experience remediating vulnerabilities across operating systems, middleware, and applications, including critical exposures such as zero-days, KEVs, and externally exposed assets
• Ability to translate CTEM signals, threat intelligence, exploitability, attack paths, and asset criticality into risk-based patching and remediation plans
• Experience leading continuous patching operations aligned to real-time threat conditions, including emergency response for active threats and exploitation campaigns
• Experience integrating vulnerability management, CTEM, and attack surface management platforms with patch management and automation tools
• Strong hands-on experience with patch management tools such as BigFix, SCCM/MECM, Red Hat Satellite, and WSUS, and vulnerability management tools such as Tenable, Rapid7, and Qualys
• Proficiency in PowerShell, Bash, Python, and JSON, with experience using Ansible, Terraform, and related orchestration tools to drive automation-first patching strategies
• Experience validating remediation through rescans, system health checks, exposure reduction metrics, and attack path disruption
• Ability to remove remediation blockers and coordinate patch windows and remediation activities across infrastructure, application, OT, and asset owner teams
• Experience developing patch procedures, runbooks, exception processes, and KPI reporting focused on exposure reduction, not just patch compliance
• Strong understanding of CVSS, exploitability, exposure context, and core security principles such as defense-in-depth, least privilege, security architecture, and threat modeling
• Experience with Linux and Windows patching and working knowledge of ITSM and CMDB platforms such as ServiceNow
• Foundational knowledge of AI and LLM concepts, including common use cases, risks, and security considerations
• Strong client-facing, consulting, collaboration, communication, and relationship-building skills, with the ability to work independently and exercise sound professional judgment
• Strong analytical, problem-solving, and troubleshooting skills, with experience supporting client proposals and work orders