Role Overview
As an Assistant Manager in our Cyber Strategy & Transformation Team, you will build and nurture strong working relationships with internal teams and clients to consistently exceed expectations. Our services enable clients to address complex security challenges by designing and implementing effective solutions across people, processes, and technology, while improving security decision-making and optimizing the cost of managing cyber risks.
Key Responsibilities
- Build trusted relationships with clients and internal stakeholders to deliver high-quality cyber advisory engagements.
- Identify key security, risk, and compliance challenges and recommend practical, value-driven solutions.
- Conduct information security and regulatory compliance assessments, primarily within the BFSI sector.
- Perform audits aligned with regulatory guidelines and master directions from RBI, NPCI, SEBI, and IRDAI.
- Review IT General Controls (ITGC) and application security controls.
- Support security assessments covering IT infrastructure, applications, and emerging technologies.
- Prepare clear, insightful reports and presentations for senior stakeholders.
- Manage engagement delivery to ensure timely execution, quality assurance, and proactive risk mitigation.
- Contribute to business growth by identifying opportunities and supporting proposal development.
Requirements
Desired Qualifications & Experience
- Any graduate degree (preferred: IT, Engineering, Risk, or related fields).
- 2–5 years of experience in Cyber Security, Information Security, or IT Audit domains.
- In-depth knowledge of cyber regulatory compliance, global frameworks, and industry standards.
- Strong expertise in cybersecurity and data privacy, with exposure to emerging technologies such as Cloud, AI, Automation, IoT, and Metaverse.
- Solid understanding of IT infrastructure and networking, including firewalls, IDS/IPS, proxy solutions, antivirus, and endpoint security.
- Hands-on knowledge of NIST CSF, COBIT, ISO 27001, ISO 22301, and data privacy standards.
- Strong understanding of risk and control frameworks and security operations across IT systems (Windows servers, databases) and applications.
- Proven experience conducting information security assessments and audits.
- Good analytical, problem-solving, and documentation skills.
- Strong interpersonal and communication skills.
Certifications (Preferred)
- ISO 27001:2022
- Cloud certifications or equivalent technology-focused certifications
