Third Party Cyber Risk Services – Consultant

Same job available in 6 locations

Bengaluru, Karnataka, India

Gurugram, Haryana, India

Hyderabad, Telangana, India

Kolkata, West Bengal, India

Mumbai, Maharashtra, India

Pune, Maharashtra, India

Back to search results
Back to search results

Position Summary

Job title: Third Party Cyber Risk Services-Consultant

About

At Deloitte, we do not offer you just a job, but a career in the highly sought-after risk management field. We are one of the business leaders in the risk market. We work with a vision to make the world more prosperous, trustworthy, and safe. Deloitte’s clients, primarily based outside of India, are large, complex organizations that constantly evolve and innovate to build better products and services. In the process, they encounter various risks and the work we do to help them address these risks is increasingly important to their success—and to the strength of the economy and public security.


By joining us, you will get to work with diverse teams of professionals who design, manage, and implement risk-centric solutions across a variety of domains. In the process, you will gain exposure to the risk-centric challenges faced in today’s world by organizations across a range of industry sectors and become subject matter experts in those areas.


Our Risk and Financial Advisory services professionals help organizations effectively navigate business risks and opportunities—from strategic, reputation, and financial risks to operational, cyber, and regulatory risks—to gain competitive advantage. We apply our experience in ongoing business operations and corporate lifecycle events to help clients become stronger and more resilient. Our market-leading teams help clients embrace complexity to accelerate performance, disrupt through innovation, and lead in their industries. We use cutting-edge technology like AI/ML techniques, analytics, and RPA to solve Deloitte’s clients‘most complex issues. Working in Risk and Financial Advisory at Deloitte US-India offices has the power to redefine your ambitions.

 The Team

Cyber & Strategic Risk

We help organizations create a cyber-minded culture, reimagine risk to uncover strategic opportunities, and become faster, more innovative, and more resilient in the face of ever-changing threats. We provide intelligence and acuity that dynamically reframes risk, transcending a manual, reactive paradigm.

Third Party Risk Management (TPRM) capability is part of the wider Cyber & Strategic Risk portfolio within Deloitte Risk and Financial Advisory. The TPRM team is focused on helping our clients identify and manage the cyber risks arising from their association with third parties or service providers. We help our clients to define their overall third-party cyber risk strategy, design and implement enterprise-wide programs and technology that focus on identifying and reducing risks; help them evaluate their priorities, strengths and weaknesses and roll out large scale organizational changes to achieve goals.


Work you’ll do

The key job responsibilities will be to:

  • Perform ongoing third-party cyber risk assessments to help clients identify and evaluate complex business and technology risks related to their third parties, and provide recommendations for managing those risks
  • Provide periodic status updates including potential risks and delays to the project delivery to project manager and client
  • Assist in the selection and tailoring of third-party cyber risk management approaches, methods and tools to support delivery of third-party cyber risk assessment services

Required skills

  • 3 to 4 years of relevant experience in information security
  • Good understanding of information security and risk frameworks/standards (ISO 27001/2, NIST 800 series, PCI-DSS, etc.)
  • Demonstrate knowledge of key risk areas such as cyber risk, compliance risk and regulatory risk
  • Demonstrate knowledge in one or more of the following cyber risk domains, including:

o   Security Governance and Management

o   Security Policies and Procedures

o   Application Security Controls

o   Access Controls

o   Network Security Operations

o   Security Architectures

o   Identity Management

o   Disaster Recovery & Business Continuity

o   Incident Response

o   Risk Management

o   Privacy and Data Protection

o   Encryption

  • Experience with internal controls, risk assessments, business process and internal IT control testing or operational auditing
  • Excellent verbal and written communication skills
  • Excellent inter-personal skills

Preferred skills

  • CISSP/CISA (or equivalent)
  • Good understanding of legal and regulatory requirements around information security and data privacy, such as OCC Bulletin 29, FFIEC, HIPAA Security/Privacy, etc.
  • Prior consulting experience
  • Experience with internal controls, risk assessments, business process, and internal IT control testing or operational auditing

Qualification

  • Bachelor’s/ Master’s degree in information technology or related field
Recruiting tips

From developing a stand out resume to putting your best foot forward in the interview, we want you to feel prepared and confident as you explore opportunities at Deloitte. Check out recruiting tips from Deloitte recruiters.
Benefits

At Deloitte, we know that great people make a great organization. We value our people and offer employees a broad range of benefits. Learn more about what working at Deloitte can mean for you.
Our people and culture

Our inclusive culture empowers our people to be who they are, contribute their unique perspectives, and make a difference individually and collectively. It enables us to leverage different ideas and perspectives, and bring more creativity and innovation to help solve our client most complex challenges. This makes Deloitte one of the most rewarding places to work.
Our purpose

Deloitte’s purpose is to make an impact that matters for our clients, our people, and in our communities. We are creating trust and confidence in a more equitable society. At Deloitte, purpose is synonymous with how we work every day. It defines who we are. We are focusing our collective efforts to advance sustainability, equity, and trust that come to life through our core commitments. Learn more about Deloitte's purpose, commitments, and impact.
Professional development

From entry-level employees to senior leaders, we believe there’s always room to learn. We offer opportunities to build new skills, take on leadership opportunities and connect and grow through mentorship. From on-the-job learning experiences to formal development programs, our professionals have a variety of opportunities to continue to grow throughout their career.

Requisition code: 183276