Job Title:  Deputy Manager | ISO:27001 | Mumbai | Cyber Strategy & Transformation

• Strong knowledge of cyber / information security concepts, risk and controls concepts. Well versed with global standard such as NIST, ISO, CSA, etc.

• Strong understanding of security-related operational processes in IT environments.

• Strong knowledge of IT Systems, Application and Business functions to a good extend.

• Good knowledge of both cloud infrastructure (SAAS/PAAS/IAAS) and security standard, with related infrastructure and cloud service providers (AWS, Azure, GCP) is a definite plus.

• Strong knowledge of IT infrastructure and Networking, including Firewalls, IDS/IPS and security solution such as DLP, Proxy, SIEM, VPN, EDR, etc.

• Strong knowledge and experience in carrying out audit based on regulatory guidelines and master direction from regulatory such as RBI, NPCI, SEBI and IRDAI.

• Good Knowledge of cyber threats and vulnerabilities related with IT infrastructure including but not limited to strong understanding of IT general controls (ITGC) and cybersecurity controls.

• Strong analytical skills, with the ability to interpret and evaluate technical data. With excellent written and verbal communication skills, capable of presenting audit findings to senior management

• Proven experience conducting cybersecurity risk assessments and advising on remediation, documentations such as RCM, Workpapers, reports, etc. 

• Good experience in project management and team guidance to meet objective of the assessment with the intention to exceed client expectations.

• 6+ years of experience in the Cyber Security or IT Audit Domain 

• Certifications – CISSP, CISA, CCSP, GICSP or equivalent (technology-based certification)