Job Title: Deputy Manager | PMO: Functional PMO | Pune | Cyber Strategy & Transformation

Deputy Manager | PMO: Functional PMO | Pune | Cyber Strategy & Transformation
• Job requisition ID : 108599
• Location: Pune
• Entity: Deloitte Touche Tohmatsu India LLP
The Team
Deloitte helps organizations prevent cyberattacks and protect valuable assets. We believe in being secure, vigilant, and resilient—not only by looking at how to prevent and respond to attacks, but at how to manage cyber risk in a way that allows you to unleash new opportunities. Embed cyber risk at the start of strategy development for more effective management of information and technology risks. Learn more about Cybersecurity
Role Summary
The Cyber PMO is responsible for supporting the planning, governance, and delivery of cybersecurity initiatives while ensuring alignment with business objectives and regulatory requirements. The role combines Business Analysis, Project Management, Third-Party Risk Management (TPRM), and Governance, Risk & Compliance (GRC) to drive successful cyber transformation programs, strengthen operational governance, and manage risks across the organization and its third-party ecosystem.
Key Responsibilities
Business Analysis
- Engage with business, technology, cyber security, and risk stakeholders to gather and document business requirements.
- Facilitate workshops, stakeholder interviews, and requirement elicitation sessions.
- Prepare Business Requirement Documents (BRD), Functional Requirement Documents (FRD), user stories, process maps, and use cases.
- Perform gap analysis, impact assessments, and process improvement initiatives.
- Support solution design, User Acceptance Testing (UAT), and business readiness activities.
- Ensure business requirements are aligned with cyber security and regulatory objectives.
Project & Program Management
- Support the delivery of multiple cybersecurity and technology transformation projects.
- Develop and maintain project plans, schedules, milestones, and resource plans.
- Track project progress, dependencies, RAID logs (Risks, Assumptions, Issues, and Dependencies), and action items.
- Monitor project budgets, forecasts, and resource utilization.
- Produce executive dashboards, status reports, and steering committee presentations.
- Coordinate cross-functional teams to ensure successful project delivery.
Third-Party Risk Management (TPRM)
- Support the end-to-end third-party risk management lifecycle, including onboarding, due diligence, risk assessments, ongoing monitoring, and offboarding.
- Conduct inherent and residual risk assessments for third-party suppliers.
- Review supplier security questionnaires, control evidence, and regulatory documentation.
- Track remediation plans and risk treatment activities.
- Monitor compliance with outsourcing and supplier risk policies.
- Support audits, regulatory reviews, and assurance activities related to third-party risk.
Governance, Risk & Compliance (GRC)
- Support governance frameworks for cybersecurity and technology risk programs.
- Monitor compliance with internal policies, regulatory requirements, and industry standards.
- Assist with risk and control assessments, policy reviews, and compliance monitoring.
- Coordinate internal and external audit activities and track remediation actions.
- Maintain governance documentation, control evidence, and reporting metrics.
- Support regulatory change implementation and control testing activities.
Governance & PMO
- Establish governance processes across cyber initiatives.
- Facilitate governance forums, project review meetings, and steering committees.
- Manage RAID logs and ensure timely escalation of key risks and issues.
- Define and monitor KPIs and delivery metrics.
- Drive PMO standards, templates, and continuous improvement initiatives.
Stakeholder Management
- Build strong relationships with Cyber Security, Technology, Risk, Compliance, Procurement, Legal, and Business teams.
- Communicate project status, risks, and key decisions to senior stakeholders.
- Coordinate with internal and external vendors to ensure delivery commitments are met.
- Support executive reporting and governance presentations.
Required Skills
- Cyber PMO
- Business Analysis
- Project & Program Management
- Third-Party Risk Management (TPRM)
- Governance, Risk & Compliance (GRC)
- Cyber Risk Management
- Requirements Gathering & Documentation
- Process Mapping & Business Process Improvement
- RAID Management
- Risk & Issue Management
- Governance & Executive Reporting
- Stakeholder Management
- Audit & Regulatory Compliance
- Change Management
- Financial & Resource Management
Preferred Experience
- 8–15 years of experience in Cyber PMO, Business Analysis, Project Management, TPRM, GRC, or Technology Risk.
- Experience in banking, financial services, insurance, or other highly regulated industries.
- Hands-on experience delivering cybersecurity transformation or regulatory compliance programs.
- Strong understanding of cybersecurity governance, operational risk, and third-party risk frameworks.
- Experience working in Agile, Waterfall, or Hybrid delivery environments.
- Education: Btech, BSC, MBA, B.E
