Manager – CyberSecurity (CS) Assurance /CISO/ITS - Hyderabad

Hyderabad, Telangana, India

Back to search results
Back to search results

Position Summary

ManagerCybersecurity Project Assurance/CISO/ITS

Your opportunity

To work in the innovative and creative CISO team. A world class operation with extensive knowledge and experience. Interfacing with business and technical teams and bringing about change and influence across the whole world of Deloitte. Apply your skills here to make things happen. You will be part of a great team that are passionate about our work in serving a great purpose.

Work you’ll do

   As a Cybersecurity Project Assurance Manager, you will:

·        Assess that Cybersecurity is embedded throughout the development lifecycle of Technology Assets by using Deloitte’s Secure System Development Lifecyle (SSDLC) to assure paths to production.

·        Oversee that security testing activities like vulnerability scanning, penetration testing, and code reviews are completed to identify weaknesses and potential exploits on the identified security requirements.

·        Identify potential information security risks within a project, analyze their impact, and develop mitigation strategies to address vulnerabilities. These risk assessments will be presented to risk owners who are either Director or Partner level.

·        Ensure that the project adheres to Deloitte’s Cybersecurity capability framework, relevant information security regulations and industry standards. Examples include GDPR, EU AI Act, ISO 27001, NIST Cybersecurity Framework, and Cyber Essentials +.

·        Communicate security awareness, concerns, and requirements to project stakeholders, including developers, project managers, and business leaders, to ensure alignment and buy-in.

·        Maintain documentation related to security assessments, risks, mitigation plans, and compliance status, providing regular reports to relevant stakeholders across waterfall and iterative deployment methodologies.

·        Enable the business by being a trusted partner. This means working with Business Relationship Managers, Business Advisers, and Program Managers to provide advice and guidance on Project Demand initiatives so that speed to market is both prioritized and secured.

·        Work with local and Global compliance teams to ensure that secure development practices across the business align to good practice, are audit ready, and practical.

Your professional experience/Qualifications

·        10 – 12 years of experience.

·        Strong understanding of information security principles, including confidentiality, integrity, and availability.

·        Demonstrable understanding of Cybersecurity risk and controls inherent in various technologies, and related best practices. This includes OWASP Top 10 and vulnerability management.

·        Have strong knowledge in cybersecurity frameworks and standards like ISO 27001, NIST, COBIT, and Cyber Essentials+ or equivalent.

·        Experience with risk management methodologies, techniques, and being able to clearly understand and articulate risk.

·        Demonstrable ability to identify risks associated with business processes, operations, and the roll out of technology projects.

·        An understanding of project management to manage security aspects within a project timeline and budget.

·        Knowledge and understanding of cybersecurity technologies - mobile threat defense, endpoint protection, data loss prevention, insider threat protection, device hardening, classification, key & certificate management or equivalent.

Essential

·        Proven experience within Cybersecurity or similar, or equivalent field.

·        Excellent communication and stakeholder management abilities.

·        Demonstrable ability to work in a fast-paced, deadline driven environment.

·        Demonstrated excellence in a variety of competencies including teamwork/collaboration, analytical thinking, communication and influencing skills, and technical expertise.

·        Ability to work with changing priorities and with multiple projects.

·       

Desirable

·        Relevant certifications like Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM) or Certified in Risk and Information Systems Control (CRISC) or similar, or equivalent.

·        Experience in assessing Technology Assets for adherence to security requirements.

·        An understanding of service management and delivery.

Your work, your choice

In the CISO team we are results focused and believe in excellence in respect in all aspects of our work and interaction with each other. We make full use of technologies that help support different ways of working. At Deloitte we believe the best impact is the value we add, not the hours we sit at our desk. We, therefore, carefully consider agile ways of working, both formal and informal, that allow for the best impact for our people and our clients. If the working pattern you are looking for is not specifically indicated below, we are happy to discuss alternative arrangements.

Location: Hyderabad

Timings: 1 PM to 10 PM
Recruiting tips

From developing a stand out resume to putting your best foot forward in the interview, we want you to feel prepared and confident as you explore opportunities at Deloitte. Check out recruiting tips from Deloitte recruiters.
Benefits

At Deloitte, we know that great people make a great organization. We value our people and offer employees a broad range of benefits. Learn more about what working at Deloitte can mean for you.
Our people and culture

Our inclusive culture empowers our people to be who they are, contribute their unique perspectives, and make a difference individually and collectively. It enables us to leverage different ideas and perspectives, and bring more creativity and innovation to help solve our clients' most complex challenges. This makes Deloitte one of the most rewarding places to work.
Our purpose

Deloitte’s purpose is to make an impact that matters for our people, clients, and communities. At Deloitte, purpose is synonymous with how we work every day. It defines who we are. Our purpose comes through in our work with clients that enables impact and value in their organizations, as well as through our own investments, commitments, and actions across areas that help drive positive outcomes for our communities. 
Professional development

From entry-level employees to senior leaders, we believe there’s always room to learn. We offer opportunities to build new skills, take on leadership opportunities and connect and grow through mentorship. From on-the-job learning experiences to formal development programs, our professionals have a variety of opportunities to continue to grow throughout their career.

Requisition code: 302915