Job Title:  Manager | SAP Security & GRC AC | Bengaluru | SAP

Job Title: Manager – Cyber Risk | Risk & Access Management (RAM)

Location: PAN India (Bengaluru / Hyderabad / Mumbai / Gurugram / Pune)

Experience: 8–12 years

Deloitte India is seeking a seasoned professional to join its Cyber Risk practice as a Manager within the Risk & Access Management (RAM) team. The role focuses on leading client engagements across Identity & Access Management (IAM), Access Governance, Privileged Access Management (PAM), and Segregation of Duties (SoD) transformation initiatives. The Manager will drive end-to-end delivery of access risk programs while ensuring alignment with regulatory requirements, industry frameworks, and Deloitte’s quality standards.

As a Manager, you will lead multiple concurrent client engagements, overseeing project planning, execution, quality review, and stakeholder communication. You will design and implement enterprise-wide access governance frameworks, role-based access control (RBAC) models, identity lifecycle management processes, and SoD controls across ERP and non-ERP systems. You will also guide clients in establishing sustainable governance structures, access review mechanisms, and continuous monitoring models.

The role requires hands-on expertise in IAM platforms such as SAP GRC Access Control, SailPoint, Saviynt, Okta, CyberArk, Microsoft Entra ID (Azure AD), or similar solutions. You will be responsible for conducting access risk assessments, evaluating control maturity, identifying gaps, and recommending remediation strategies aligned to frameworks such as ISO 27001, NIST CSF, SOX, GDPR, RBI/SEBI guidelines, and other regulatory standards. Experience in ERP security (SAP/Oracle), cloud IAM controls, and zero trust models will be highly valued.

In addition to delivery leadership, you will support proposal development, solution architecture discussions, and client presentations, contributing to business development within the Cyber Risk practice. You will manage engagement economics including budgeting, utilization, revenue realization, and risk management. Strong executive communication skills are essential, as the role requires frequent interaction with CISOs, CIOs, internal audit heads, and business leadership.

As a people leader, you will mentor consultants and senior consultants, drive performance management, and foster capability development within the RAM team. You are expected to demonstrate structured problem-solving, high attention to detail, strong documentation governance, and the ability to operate effectively in complex, matrixed environments.

The ideal candidate will have 8–12 years of experience in IAM, cyber security, or IT risk advisory within consulting or large enterprise environments, with prior experience leading teams and managing end-to-end client engagements. Professional certifications such as CISA, CISSP, CISM, CRISC, or IAM platform certifications are preferred.

Success in this role will be measured through client satisfaction, quality of delivery, revenue contribution, team development, and active participation in growing Deloitte India’s Cyber Risk and RAM capabilities.