Job Title:  Deputy Manager | ISO/IEC 27002 | Mumbai | Cyber Strategy & Transformation

·      Strong knowledge of cyber / information security concepts, risk and controls concepts. Well versed with global standard such as NIST, ISO, CSA, etc.

·      Strong understanding of security-related operational processes in IT environments.

·      Strong knowledge of IT Systems, Application and Business functions to a good extend.

·      Good knowledge of both cloud infrastructure (SAAS/PAAS/IAAS) and security standard, with related infrastructure and cloud service providers (AWS, Azure, GCP) is a definite plus.

·      Strong knowledge of IT infrastructure and Networking, including Firewalls, IDS/IPS and security solution such as DLP, Proxy, SIEM, VPN, EDR, etc.

·      Strong knowledge and experience in carrying out audit based on regulatory guidelines and master direction from regulatory such as RBI, NPCI, SEBI and IRDAI.

·      Good Knowledge of cyber threats and vulnerabilities related with IT infrastructure including but not limited to strong understanding of IT general controls (ITGC) and cybersecurity controls.

·      Strong analytical skills, with the ability to interpret and evaluate technical data. With excellent written and verbal communication skills, capable of presenting audit findings to senior management

·      Proven experience conducting cybersecurity risk assessments and advising on remediation, documentations such as RCM, Workpapers, reports, etc.

·      Good experience in project management and team guidance to meet objective of the assessment with the intention to exceed client expectations.

·      6+ years of experience in the Cyber Security or IT Audit Domain

·      Certifications – CISSP, CISA, CCSP, GICSP or equivalent (technology-based certification)