Job Title: Manager | IT Audits | Bengaluru | Cyber Strategy & Transformation
Your potential, unleashed.
India’s impact on the global economy has increased at an exponential rate and Deloitte presents an opportu
nity to unleash and realize your potential amongst cutting edge leaders, and organizations shaping the future of the region, and indeed, the world beyond.
At Deloitte, your whole self to work, every day. Combine that with our drive to propel with purpose and you have the perfect playground to collaborate, innovate, grow, and make an impact that matters.
The team
Deloitte helps organizations prevent cyberattacks and protect valuable assets. We believe in being secure, vigilant, and resilient—not only by looking at how to prevent and respond to attacks, but at how to manage cyber risk in a way that allows you to unleash new opportunities. Embed cyber risk at the start of strategy development for more effective management of information and technology risks
Your work profile
As Manager in our Cyber Team, you’ll build and nurture positive working relationships with teams and clients with the intention to exceed client expectations: -
Key Responsibilities:
Delivery Management
· Conduct information system/application, process and regulatory audits as per the RBI, IRDAI, SEBI and NPCI guidelines for information security and data protection
· Strong Working knowledge in multiple domains such as Governance policies and procedures, Risk Management, Compliance, Access Control, Security Incident Response, Disaster Recovery, Business continuity management, Network Security, Software Development Lifecycle, Cloud Security, Server & Database security, AI system security, Identity, Endpoint security, Data security etc.
· Sound understanding of security technologies/techniques like Cryptography, Algorithms, Secure Authentication, Secure Development, Data Protection, Certificate Management Lifecycle, Incident and event monitoring and analysis etc.
· Review the control requirements across the in-scope regulations and industry standards and build common control framework or Risk and Control Matrix (RCM)
· Building the control testing methodology, sampling and testing criteria
· Review the existing IT and security policies and procedures against the RCM/control framework
· Conduct walkthrough along with design and operating effectiveness testing of the controls for the respective audits.
· Identify the audit findings/gaps/improvement areas and discuss with management for confirmation
· Develop the audit reports covering the audit wise detailed findings, risk exposure, impact rating, compliance rating, recommendations.
· Discuss with management for finalizing the findings and building the remedial action plan.
· Perform detailed technical review of the audit reports drafted by the team members
· Perform remediation testing of the open findings for the respective audits
· Lead and mentor junior team members in control testing practices.
· Stay updated on emerging IT threats and control best practices.
Project Management
· Build the audit plan for all in-scope audits and take signoff from stakeholders
· Plan and schedule the audits as per the agreed plan
· Program-manage the delivery of all audits and provide periodic status updates to stakeholders
· Discuss the audit related risks, issues and dependencies and part of status updates
· Support in building the management review meetings for audit committees
· Conduct closing meetings for respective audits
Desired qualifications
Research, insights, content, and thought leadership
· Minimum 8 years of relevant experience in areas like IT/system audit, security risk management and GRC
· Bachelor’s degree in information technology, Cyber security, Computer Science, or a related field (or equivalent experience).
· Strong working knowledge of cyber security controls, IT audits and regulatory requirements in FS sector, preferably in banks and fintech companies
· Familiarity with tools like ServiceNow, Jira, or other GRC platforms.
· Experience in assessing and providing recommendations on the feasibility of automating control testing
· Excellent analytical and problem-solving skills.
· Strong communication, collaboration, and leadership skills.
· MS Office proficiency
Creative thinking
· Ability to identify new ways of customer engagement and through leadership dissemination
· Brainstorm with the team to ideate newer ways of representing content in a reader-friendly manner through presentations, infographics, videos, battle cards etc.
· Innovative content creation that captures attention and improves readability
· Ability to research and create new formats/templates; and provide guidance to the team
· Others
· Ability to work with cross-functional teams
· Ability to have meaningful technology and business conversations with clients
· Strong interpersonal communication skills
Location and way of working
· Base location: Bangalore
· Professional is required to work from office full time (5 days a week)
How you’ll grow
Connect for impact
Our exceptional team of professionals across the globe are solving some of the world’s most complex business problems, as well as directly supporting our communities, the planet, and each other. Know more in our Global Impact Report and our India Impact Report.
Empower to lead
You can be a leader irrespective of your career level. Our colleagues are characterized by their ability to inspire, support, and provide opportunities for people to deliver their best and grow both as professionals and human beings. Know more about Deloitte and our One Young World partnership.
Inclusion for all
At Deloitte, people are valued and respected for who they are and are trusted to add value to their clients, teams and communities in a way that reflects their own unique capabilities. Know more about everyday steps that you can take to be more inclusive. At Deloitte, we believe in the unique skills, attitude and potential each and every one of us brings to the table to make an impact that matters.
Drive your career
At Deloitte, you are encouraged to take ownership of your career. We recognize there is no one size fits all career path, and global, cross-business mobility and up / re-skilling are all within the range of possibilities to shape a unique and fulfilling career. Know more about Life at Deloitte.
Everyone’s welcome… entrust your happiness to us
Our workspaces and initiatives are geared towards your 360-degree happiness. This includes specific needs you may have in terms of accessibility, flexibility, safety and security, and caregiving. Here’s a glimpse of things that are in store for you.
Interview tips
We want job seekers exploring opportunities at Deloitte to feel prepared, confident and comfortable. To help you with your interview, we suggest that you do your research, know some background about the organization and the business area you’re applying to. Check out recruiting tips from Deloitte professionals.
*Caution against fraudulent job offers*: We would like to advise career aspirants to exercise caution against fraudulent job offers or unscrupulous practices.
At Deloitte, ethics and integrity are fundamental and not negotiable. We do not charge any fee or seek any deposits, advance, or money from any career aspirant in relation to our recruitment process. We have not authorized any party or person to collect any money from career aspirants in any form whatsoever for promises of getting jobs in Deloitte or for being considered against roles in Deloitte. We follow a professional recruitment process, provide a fair opportunity to eligible applicants and consider candidates only on merit. No one other than an authorized official of Deloitte is permitted to offer or confirm any job offer from Deloitte. We advise career aspirants to exercise caution.
In this regard, you may refer to a more detailed advisory given on our website at: https://www2.deloitte.com/in/en/careers/advisory-for-career-aspirants.html?icid=wn_