This job is closed
We regret to inform you that the job you were interested in has been closed. Although this specific position is no longer available, we encourage you to continue exploring other opportunities on our job board.
Deloitte - Delhi, OH
posted about 1 month ago
About the position
As a Deputy Manager in our Cyber Team you'll build and nurture positive working relationships with teams and clients with the intention to exceed client expectations. This role involves working knowledge in one or more security and privacy domains such as security governance policies and procedures, risk management, compliance, access control, network security, security architecture, security incident response, disaster recovery, business continuity management, privacy and data protection. You will also leverage industry standards and frameworks such as ISO/IEC 17799, ISO/IEC 27001, COBIT, ITIL, etc. and demonstrate in-depth knowledge of security and privacy controls and risk management processes.
Responsibilities
- Responsible for ISO 27001 based Information Security Management System implementation and sustenance
- Advising clients on Business Continuity Planning and IT Disaster Recovery planning
- Assessing client information security posture, identifying gaps/risks in the existing environment and developing solutions to mitigate identified gaps/risk
- Assisting clients in reviewing/implementing Information Security controls in various areas
- Conducting clients vendors risk assessment and providing a holistic view of clients risk exposure due to outsourcing
- Advising and assisting clients to develop and implement Information classification framework
- Conducting Information Systems audits covering IT infrastructure assets
- Advising clients on data privacy, data leakage prevention, identity and access management
- Serving as technical lead or subject matter specialist on security and privacy implementation projects
- Managing day-to-day client relationships at mid and lower levels
- Participating in proposal development efforts to sell 'add-on' work to clients
- Identifying opportunities to improve engagement economics
- Playing substantive role in designing and implementing business development plan for the service line
- Undertaking initiatives in people and practice development
Requirements
- B.E / B.Tech (Tier 1/2) in Computer Science, Information Technology or related fields
- Working knowledge in security and privacy domains
- Experience in leveraging industry standards and frameworks
- Demonstrates in-depth knowledge of security and privacy controls and risk management process
- Experience in data protection technologies such as encryption, data discovery, data masking, data redaction
- Possesses certifications such as ISO27001 LA/LI, ISO22301 LA/LI, CISSP, CISA, CISM certification - preferred
Nice-to-haves
- ISO 27001 LA/LI, ISO 31000 LA/LI, ISO 22301 LA/LI, CISA, ITIL, or equivalent certification preferred
- CISSP, GSEC, GCIH, CEH, LPT, CCSK, eGRC tools like Archer, OpenPages or functional certifications would be preferred
Benefits
- Hybrid working model
- Opportunities for professional development and growth
- Support for work-life balance
- Inclusive work environment
