Deloitte | India Offices of the US

USI T&I/IT Security – Compliance and Vulnerability Management - Analyst

Work you’ll do

Responsibilities

As a key member of the IT Security team, you will lead critical security projects and reviews, focusing on the full lifecycle of security controls to ensure a secure and compliant IT environment. Your role will also include managing the vulnerability management program—conducting assessments, prioritizing risks, coordinating remediation, and maintaining documentation—to proactively identify and mitigate threats across systems and applications.

Key Responsibilities:

Compliance & Vulnerability Management

• Lead periodic and ad hoc reviews of critical security controls, including network access, authentication, and exception management.

• Conduct firewall rule reviews to identify and remediate inactive or risky configurations.

• Coordinate comprehensive assessments of security configurations and policies to ensure alignment with internal standards and regulatory frameworks (e.g., NIST, ISO 27001, PCI-DSS).

• Identify gaps in security controls and recommend actionable improvements.

• Perform regular vulnerability scans across networks, systems, and applications using tools like Qualys, Nessus, or Rapid7.

• Analyze scan results, prioritize vulnerabilities based on risk, and coordinate remediation with IT and development teams.

• Maintain and evolve the vulnerability management program, including documentation, policies, and procedures.

• Track remediation efforts and validate fixes in collaboration with internal and external stakeholders.

Skills:

• Comprehensive knowledge of IT security principles and frameworks, including risk management, security controls, and regulatory compliance.

• Experience with security reviews and assessments for IT infrastructure, applications, and new technology deployments.

• Vulnerability Assessment Tools Proficiency: Expertise in using vulnerability scanning tools such as Qualys, Nessus or Rapid7.

• Risk Analysis and Prioritization: Strong analytical skills to assess and prioritize vulnerabilities based on risk and impact.

• Remediation Coordination: Ability to collaborate effectively with IT, development teams, and external vendors to ensure timely remediation of vulnerabilities.

• Familiarity with workflow automation platforms (e.g., ServiceNow, Ansible, or similar) for process optimization.

• Strong understanding of security technologies, such as firewalls, endpoint protection, identity and access management (IAM), and vulnerability management solutions.

• Hands-on experience with security incident management, including detection, analysis, response, and remediation in both cloud and on-premise environments.

• Ability to evaluate and integrate security requirements into new projects, products, and IT initiatives.

• Experience with exception management processes, including risk assessment, documentation, and remediation planning.

• Excellent analytical and problem-solving skills, with the ability to identify gaps and recommend improvements in security controls.

• Effective communication and stakeholder management skills, with the ability to translate technical security requirements for non-technical audiences.

• Demonstrated ability to lead and collaborate within cross-functional teams, fostering a culture of continuous improvement.

Education: Bachelor’s Degree or equivalent

Experience: 1 to 2.5 years

Work Location: Hyderabad

Shift Timings: 11 AM to 2 PM IST or 2 PM to 11 PM IST.

The Team

At Deloitte, we’re all about collaboration. And nowhere is this more apparent than among our 2,000-strong internal services team. With our combined specialist skills, we provide all the essential support and advice our client-facing colleagues need, right across the firm. This enables them to focus all of their efforts on delivering the best service possible to their clients. Covering seven distinct areas; Human Resources, Clients & Industries, Finance & Legal, Practice Support Services, Quality & Risk Services, IT Services, and Workplace Services & Real Estate, together we live, breathe and deliver the Deloitte experience.

How you’ll grow

At Deloitte, we’ve invested a great deal to create a rich environment in which our professionals can grow. We want all our people to develop in their own way, playing to their own strengths as they hone their leadership skills. And, as a part of our efforts, we provide our professionals with a variety of learning and networking opportunities—including exposure to leaders, sponsors, coaches, and challenging assignments—to help accelerate their careers along the way. No two people learn in exactly the same way. So, we provide a range of resources including live classrooms, team- based learning, and eLearning. DU: The Leadership Center in India, our state-of-the-art, world-class learning Center in the Hyderabad offices is an extension of the Deloitte University (DU) in Westlake, Texas, and represents a tangible symbol of our commitment to our people’s growth and development. Explore DU: The Leadership Center in India

Benefits

At Deloitte, we know that great people make a great organization. We value our people and offer employees a broad range of benefits. Learn more about what working at Deloitte can mean for you.

Deloitte’s culture

Our positive and supportive culture encourages our people to do their best work every day. We celebrate individuals by recognizing their uniqueness and offering them the flexibility to make daily choices that can help them to be healthy, centered, confident, and aware. We offer well-being programs and are continuously looking for new ways to maintain a culture that is inclusive, invites authenticity, leverages our diversity, and where our people excel and lead healthy, happy lives. Learn more about Life at Deloitte.