Deputy Manager | Not Applicable | Mumbai | Cyber Strategy & Transformation

·      Oversee assessments of cybersecurity risk management frameworks, evaluating the effectiveness of security controls aligned with standards such as NIST, ISO 27001, ITIL, COBIT, CIS, and regulatory requirements (RBI, NPCI, SEBI, PCI-DSS, IRDAI, and others,) depending on the industry.

·      In-depth knowledge in IT audits of systems, applications, databases, networks and other cybersecurity tools (DLP, SIEM, VPN, XDR, PIM, etc)

·      Strong knowledge of cloud infrastructure (SAAS/PAAS/IAAS), cloud service providers (AWS, Azure, GCP) and frameworks such as CSA Cloud Controls Matrix (CCM), Well-Architecture Review (WAR).

·      Lead IT Audit activities such as plan, manage, and execute risk-based audit reviews, focusing on areas such as cybersecurity, IT general controls (ITGC), Compliance Audits, application controls, and IT infrastructure.

·      Proven experience in Control Testing & Evaluation on IT governance, cybersecurity best practices, IT risk management strategies, cybersecurity risk assessments and advising on remediation, documentations (RCM, Workpapers, Audit Reporting).

·      Provide advisory services to senior management on emerging technologies, cybersecurity threats, IT governance, and regulatory changes, as well as insights on best practices for IT and cybersecurity risk management.

·      Strong team leadership experience to manage, mentor, and develop a team of IT auditors, ensuring the team remains current on emerging IT and cybersecurity risks and audit methodologies.

·      Strong communication skills, with the ability to convey complex IT audit and cybersecurity concepts to non-technical stakeholders.

9+ years of experience in IT Audit, Cybersecurity, or Risk Management, with