Job Title:  T&T | Cyber - CST | Deputy Manager | Cyber Control & Compliance

The team

Deloitte helps organizations prevent cyberattacks and protect valuable assets. We believe in being secure, vigilant, and resilient—not only by looking at how to prevent and respond to attacks, but at how to manage cyber risk in a way that allows you to unleash new opportunities. Embed cyber risk at the start of strategy development for more effective management of information and technology risks. Lear more about  Cybersecurity

Your work profile

We are looking for a Cyber Technology Control Manager to drive the design, implementation, and assurance of technology and cybersecurity controls across the organization.

This role will focus on strengthening the control environment across IT systems, infrastructure, and applications, ensuring alignment with cybersecurity standards, regulatory expectations, and enterprise risk frameworks.

1. Technology Control Design & Implementation

• Design and implement IT and cyber control frameworks across infrastructure, applications, and cloud environments
• Establish controls covering access management, privileged access, change management, configuration management, and data security
• Ensure alignment with industry frameworks such as ISO/IEC 27001 and NIST Cybersecurity Framework

2. Cybersecurity Controls Oversight

• Partner with cybersecurity teams to enforce preventive and detective controls across networks, endpoints, and cloud platforms
• Oversee implementation of controls related to IAM, encryption, vulnerability management, and security monitoring
• Evaluate control effectiveness in mitigating cyber threats and attack vectors

3. Risk Assessment & Control Assurance

• Conduct technology risk assessments and identify control gaps across systems and processes
• Lead control testing, walkthroughs, and assurance reviews
• Define and track Key Risk Indicators (KRIs) and Key Control Indicators (KCIs)

4. Audit & Regulatory Compliance

• Support internal and external audits related to IT and cybersecurity controls
• Ensure compliance with regulatory and internal policy requirements
• Drive remediation of audit findings and control deficiencies

5. Governance & Stakeholder Management

• Collaborate with IT, Risk, Compliance, and Business teams to strengthen technology risk posture
• Provide actionable insights and reporting to senior stakeholders
• Contribute to governance forums and risk committees

6. Continuous Improvement & Automation

• Drive automation in control monitoring and reporting
• Identify opportunities to enhance control efficiency and effectiveness
• Stay updated on emerging cyber threats and evolving control practices

Key skills required: 

• 4+ years of experience in IT Risk, Cybersecurity, or Technology Controls
• IT General Controls (ITGC)
• Identity & Access Management (IAM)
• Network, endpoint, and cloud security
• SDLC and change management controls
• ServiceNow ITIL, ITSM, Risk Management, KPI, ISO 9001, ISO 27001
• Hands-on experience in risk assessments, control testing, and audit support
• Familiarity with cybersecurity tools (SIEM, vulnerability scanners, IAM tools)
• Strong stakeholder management and communication skills
• Bachelors in technology (B.Tech) / Computer in Science or relevant Certifications such as CISSP, CISM, CISA, or CRISC
• Experience in cloud environments (AWS, Azure, GCP)
• Exposure to DevSecOps and modern security practices
• Experience in financial services or regulated industries