Job Title: T&T | Cyber - CST | Assistant Manager | ISO 27001

T&T | Cyber - CST | Assistant Manager | ISO 27001
• Job requisition ID : 108229
• Location: Bengaluru
• Entity: Deloitte Touche Tohmatsu India LLP
The team
Deloitte helps organizations prevent cyberattacks and protect valuable assets. We believe in being secure, vigilant, and resilient—not only by looking at how to prevent and respond to attacks, but at how to manage cyber risk in a way that allows you to unleash new opportunities. Embed cyber risk at the start of strategy development for more effective management of information and technology risks. Lear more about Cybersecurity
Your work profile:
- ISMS: implementation, and ongoing management of the ISO 27001 framework across the organization.
- Certification & Audit: Manage the internal audit schedule, coordinate with external auditors for certification and surveillance audits, and drive the organization towards successful ISO 27001 certification and recertification.
- Risk Management: Conduct risk assessments, vulnerability assessments, and penetration testing analysis. Develop and implement risk treatment plans and mitigation strategies.
- Policy & Procedure Development: Develop, review, and update Information Security policies, standards, and procedures to ensure alignment with ISO 27001 Annex A controls.
- Stakeholder Engagement: Work closely with IT, Legal, HR, and business units to ensure security controls are integrated into business processes.
- Training & Awareness: Develop and deliver security awareness training programs for employees to foster a culture of security.
- Compliance: Ensure ongoing compliance with other relevant standards such as SOC 2, NIST, and applicable data privacy laws (GDPR, DPDP Act).
- Incident Response: Support the incident response team in investigating security breaches and post-incident analysis.
Key skills required:
- 4+ years’ experience in cyber security of ISO 27001 standards
- Strong knowledge of ISO 27001 standards (current version ISO/IEC 27001:2022) and its Annex A controls
- Experience in conducting Gap Assessments and Risk Assessments.
- Excellent communication and report-writing skills.
- Strong project management and stakeholder management skills.
- B.Tech/M.Tech/BCA/BSc in Computer science or relevant education.
