IN-Manager Cyber Security Strategy & Governance Advisory Bangalore

Line of Service

Advisory

Industry/Sector

FS X-Sector

Specialism

Risk

Management Level

Manager

Job Description & Summary

Experience of above 8 years in Strategy & Governance
Prior experience in Risk Management, Governance Frameworks, RBI regulatory guidelines/circulars etc.
Strong understanding of security frameworks (e.g., NIST, ISO 27001, COBIT) and regulatory requirements (e.g., RBI, PCI-DSS, SEBI, GDPR).
Prior experience in vetting Bank IT/IS/BCP related policies & procedures.
Prior experience in ISO 27001/ISO 22301 implementation and assessments
Experience in Business Continuity Planning (BCP) and Third-Party Risk Management (TPRM) processes.
At least one certification: CISM/CISA/CISSP is preferred
Experience in cloud security concepts and network security technologies.

*Why PWC

 

At PwC, you will be part of a vibrant community of solvers that leads with trust and creates distinctive outcomes for our clients and communities. This purpose-led and values-driven work, powered by technology in an environment that drives innovation, will enable you to make a tangible impact in the real world. We reward your contributions, support your wellbeing, and offer inclusive benefits, flexibility programmes and mentorship that will help you thrive in work and life. Together, we grow, learn, care, collaborate, and create a future of infinite experiences for each other. Learn more about us.

At PwC, we believe in providing equal employment opportunities, without any discrimination on the grounds of gender, ethnic background, age, disability, marital status, sexual orientation, pregnancy, gender identity or expression, religion or other beliefs, perceived differences and status protected by law. We strive to create an environment where each one of our people can bring their true selves and contribute to their personal growth and the firm’s growth. To enable this, we have zero tolerance for any discrimination and harassment based on the above considerations. "

 

Description & Summary:

We are looking for a highly skilled and experienced Cybersecurity Manager to join our team. The successful candidate will play a crucial role in supporting PWC Cyber Security practice by proposing and delivering Cyber Security solutions to clients. Responsibilities include building a strong practice for Financial services industry and play a key delivery lead for conducting Information Security (IS) Audits, Risk Assessments, Cybersecurity Maturity Framework Assessments ( NIST Framework ) , Vendor Risk Assessments and Gap Assessments against various Reserve Bank of India (RBI) Master Directions for Cybersecurity, SEBI guidelines for Cybersecurity and IRDA cybersecurity guidelines

Responsibilities:

• Conduct comprehensive IS audits to evaluate the effectiveness of cybersecurity controls and compliance with RBI Master Directions for Cybersecurity.
• Perform risk assessments to identify, evaluate, and mitigate cybersecurity risks across the organization.
• Assess the organization's cybersecurity maturity using established frameworks and provide actionable recommendations for improvement.
• Develop and implement cybersecurity policies, procedures, and guidelines in accordance with RBI regulations.
• Collaborate with internal and external stakeholders to ensure a robust and compliant cybersecurity posture.
• Provide expert advice and support on cybersecurity best practices and regulatory requirements.
• Prepare detailed audit reports, risk assessment reports, and maturity assessment reports for senior management.
• Stay up-to-date with the latest cybersecurity trends, threats, and regulatory changes to ensure continuous improvement of the organization's cybersecurity measures.
• Possess rounded cybersecurity experience with an understanding of all domains of Cybersecurity including IAM, VAPT, Strategy and consulting, SIEM, and SOC solutions.

Mandatory skill sets:

The suitable candidate should demonstrate suitable work experience in the following areas.

• Proven experience in conducting IS audits, risk assessments, and cybersecurity maturity assessments.
• In-depth knowledge of RBI Master Directions, SEBI, and IRDA guidelines for Cybersecurity and other related regulations around IT GRC and IT Outsourcing.
• Strong understanding of cybersecurity frameworks, standards, and best practices.
• Excellent analytical, problem-solving, and communication skills.
• Understanding of AI Standards and Frameworks: Knowledge of AI standards and frameworks such as ISO/IEC 42001:2023,  ISO/IEC 22989 (AI concepts and terminology), ISO/IEC 23053 (Framework for AI systems using machine learning), and NIST  Risk Management Framework.

Ability to work independently and as part of a team in a fast-paced environment.

- Strong understanding of cybersecurity frameworks, standards, and best practices.

- Excellent analytical, problem-solving, and communication skills.

- Ability to work independently and as part of a team in a fast-paced environment.

Preferred skill sets:

Cybersecurity including IAM, VAPT, Strategy and consulting, SIEM, and SOC solutions.

Years of experience required:

8-12 years

Education qualification:

B.Tech. Mtech, MCA, BE, ME

• Bachelor's degree in Computer Science, Information Technology, Cybersecurity, or a related field.
• Professional certifications such as CISA, CISM, CISSP, or equivalent are highly desirable.

 

Education (if blank, degree and/or field of study not specified)

Degrees/Field of Study required: Bachelor of Engineering, Master of Engineering

Degrees/Field of Study preferred:

Certifications (if blank, certifications not specified)

Required Skills

Governance Framework, Risk Management

Optional Skills

Accepting Feedback, Accepting Feedback, Active Listening, Agile Methodology, Azure Data Factory, Communication, Cybersecurity, Cybersecurity Framework, Cybersecurity Policy, Cybersecurity Requirements, Cybersecurity Strategy, Emotional Regulation, Empathy, Encryption Technologies, Inclusion, Intellectual Curiosity, Managed Services, Optimism, Privacy Compliance, Regulatory Response, Security Architecture, Security Compliance Management, Security Control, Security Incident Management, Security Monitoring {+ 3 more}

Desired Languages (If blank, desired languages not specified)

Travel Requirements

Not Specified

Available for Work Visa Sponsorship?

No

Government Clearance Required?

No

Job Posting End Date