Job Title:  Associate Director | Vulnerability Assessment & Penetration Testing (VAPT) | Delhi | Cyber Defense &

Location : Delhi

The team

Deloitte helps organizations prevent cyberattacks and protect valuable assets. We believe in being secure, vigilant, and resilient—not only by looking at how to prevent and respond to attacks, but at how to manage cyber risk in a way that allows you to unleash new opportunities. Embed cyber risk at the start of strategy development for more effective management of information and technology risks: Learn more about Cyber | Deloitte

Your work Profile:

• Lead delivery of Cyber Defence projects across vulnerability management, DevSecOps integration, penetration testing, and secure SDLC.
• Lead and guide advanced penetration testing – covering internal/external networks, web/mobile applications and cloud environments – with actionable reporting.
• Design and implement enterprise-wide vulnerability management programs, establish metrics, and advise clients on remediation strategy.
• Oversee advanced security assessments, including application security (SAST/DAST), network penetration testing, and infrastructure assessments.
• Embed security into CI/CD pipelines, driving automation across development and deployment.
• Support testing strategy and execution across on-premise, cloud and converged infrastructure.
• Serve as a strategic advisor to clients, presenting findings, driving executive communications, and aligning solutions to business goals.
• Mentor diverse cybersecurity teams and contribute to the growth of Deloitte’s security offerings.

Desired Qualification:

• Education: Bachelor’s or Master’s degree in Computer Science, Cybersecurity, or related field.
• Experience: 15+ years of relevant experience, with 5+ years in leadership roles across cyber domains.
• Certifications: CISSP, OSCP, CISM, CEH, GPEN, or equivalent expert-level certification(s).
• Deep hands-on expertise in threat & vulnerability management, security testing tools/methodologies, and secure application development practices.
• Strong communication, client management, and team leadership skills. 

• Preferred skills : Knowledge of cloud security frameworks and risk regulations (NIST, ISO 27001, PCI DSS, etc).
• Experience managing large-scale consulting engagements or security programs