IN Director - IT Risk Assessment -Cyber Risk and Regulations– Advisory- Mumbai

Line of Service

Advisory

Industry/Sector

FS X-Sector

Specialism

Risk

Management Level

Director

Job Description & Summary

At PwC, our people in cybersecurity focus on protecting organisations from cyber threats through advanced technologies and strategies. They work to identify vulnerabilities, develop secure systems, and provide proactive solutions to safeguard sensitive data.

In threat intelligence and vulnerability management at PwC, you will focus on identifying and analysing potential threats to an organisation's security, as well as managing vulnerabilities to prevent cyber attacks. You will play a crucial role in safeguarding sensitive information and enabling the resilience of digital infrastructure.

Why PWC

At PwC, you will be part of a vibrant community of solvers that leads with trust and creates distinctive outcomes for our clients and communities. This purpose-led and values-driven work, powered by technology in an environment that drives innovation, will enable you to make a tangible impact in the real world. We reward your contributions, support your wellbeing, and offer inclusive benefits, flexibility programmes and mentorship that will help you thrive in work and life. Together, we grow, learn, care, collaborate, and create a future of infinite experiences for each other. Learn more about us.

At PwC, we believe in providing equal employment opportunities, without any discrimination on the grounds of gender, ethnic background, age, disability, marital status, sexual orientation, pregnancy, gender identity or expression, religion or other beliefs, perceived differences and status protected by law. We strive to create an environment where each one of our people can bring their true selves and contribute to their personal growth and the firm’s growth. To enable this, we have zero tolerance for any discrimination and harassment based on the above considerations.

Job Description & Summary

A career within Cybersecurity and Privacy services will provide you with the opportunity to help our clients implement an effective cybersecurity program that protects against threats, propels transformation, and drives growth. As companies pivot toward a digital business model, exponentially more data is generated and shared among organizations, partners, and customers. We play an integral role in helping our clients ensure they are protected by developing transformation strategies focused on security, efficiently integrating and managing new or existing technology systems to deliver continuous operational improvements, increase their cybersecurity investment, and detect, respond, and remediate threats.

Responsibilities:

· Lead and conduct comprehensive IT risk assessments and audits.

· Develop and implement IT risk management frameworks and strategies.

· Provide expert guidance on ISO 27001, NIST, PCI, Data Privacy, and Cloud Security.

· Oversee the evaluation of application infrastructure architecture and SaaS application architecture.

· Ensure robust database and middleware communication security.

· Implement and manage API security protocols.

· Deliver high-quality presentations and reports to senior stakeholders.

· Mentor and guide junior team members in IT risk assessment methodologies.

· Collaborate with cross-functional teams to enhance cybersecurity measures.

Mandatory Skill Sets:

· Extensive experience in IT Risk, ISO 27001, NIST, PCI, Data Privacy, and Cloud Security.

· Strong leadership and stakeholder management skills.

· Excellent communication and presentation abilities.

Preferred Skill Sets:

· Team Management, Strategic Planning, and Project Management.

Years of Experience Required:

· 12+ Years

Educational Qualification:

· BE, B.Tech, M.Tech, MCA, MBA graduates.

Certifications:

· CISA, CISSP, CCNP, CCSP, CISM, CRISC, or equivalent.

Education (if blank, degree and/or field of study not specified)

Degrees/Field of Study required: Master of Engineering, Master of Business Administration, Bachelor of Engineering

Degrees/Field of Study preferred:

Certifications (if blank, certifications not specified)

Required Skills

Cloud Security

Optional Skills

Accepting Feedback, Accepting Feedback, Active Listening, Analytical Thinking, Cloud Security, Coaching and Feedback, Communication, Conducting Research, Creativity, Cyber Defense, Cyber Threat Intelligence, Embracing Change, Emotional Regulation, Empathy, Encryption, Inclusion, Influence, Information Security, Innovation, Intellectual Curiosity, Intelligence Analysis, Intelligence Report, Intrusion Detection, Intrusion Detection System (IDS), IT Operations {+ 28 more}

Desired Languages (If blank, desired languages not specified)

Travel Requirements

Available for Work Visa Sponsorship?

Government Clearance Required?

Job Posting End Date