GRC Assistant Manager- Hyderabad

Hyderabad, Telangana, India

Back to search results
Back to search results

Position Summary


We are seeking a dedicated and experienced Assistant Manager to join our Cyber Governance, Risk, and Compliance team. The successful candidate will support cybersecurity risk oversight, control testing, and compliance activities across the organization, with a focus on incident response governance, risk management, security exceptions, and third-party risk management.

Work you'll do

As a GRC Assistant Manager on the Cyber Governance, Risk, and Compliance team, you will be responsible for:

  • Lead cybersecurity risk governance activities, including risk assessments across applications, platforms, and infrastructure, and maintain the cyber risk register.
  • Design and execute security control testing aligned to established cybersecurity frameworks and organizational requirements.
  • Track remediation activities, perform compliance reviews, and report control effectiveness and risk issues to stakeholders.
  • Conduct vendor cyber risk assessments and support third-party risk monitoring activities across the supplier lifecycle.
  • Support incident response governance and exception management activities, including post-incident reviews, risk evaluations, and compensating control reviews.

The team

Cyber Governance, Risk, and Compliance (GRC) team. The successful candidate will play a pivotal role in managing cybersecurity risks, conducting control testing, and enhancing our overall cybersecurity posture, with a focus on incident response, risk management, security exception and third-party risk management.

Location: Hyderabad

Shift Timings: 6:30 AM to 3:30 PM

Qualifications

Required:

  • Bachelor’s degree in Information Security, Cybersecurity, Computer Science, or a related field.
  • 6-8 years of experience in cybersecurity governance, risk management, compliance, or control testing.
  • Experience performing cyber risk assessments across applications, infrastructure, or technology platforms.
  • Experience executing security control testing or compliance assessment activities.
  • Experience with cybersecurity frameworks such as International Organization for Standardization (ISO) 27001, National Institute of Standards and Technology (NIST) Cybersecurity Framework, or Center for Internet Security (CIS) Controls.
  • Experience managing remediation tracking, risk registers, exception management, or third-party risk assessment activities.

Preferred:

  • Experience supporting incident response governance or post-incident review processes.
  • Experience with third-party risk management programs and vendor security assessments.
  • Experience with governance, risk, and compliance tools such as ServiceNow.
  • Experience with cloud security, application security, or security architecture reviews.
  • Experience applying Open Worldwide Application Security Project (OWASP) standards or DevSecOps practices.
  • Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), or Certified in Risk and Information Systems Control (CRISC) certification.
Our purpose

Deloitte’s purpose is to make an impact that matters for our people, clients, and communities. At Deloitte, purpose is synonymous with how we work every day. It defines who we are. Our purpose comes through in our work with clients that enables impact and value in their organizations, as well as through our own investments, commitments, and actions across areas that help drive positive outcomes for our communities. 
Our people and culture

Our inclusive culture empowers our people to be who they are, contribute their unique perspectives, and make a difference individually and collectively. It enables us to leverage different ways of thinking, ideas and perspectives, and bring more creativity and innovation to help solve our clients’ most complex challenges. This makes Deloitte one of the most rewarding places to work.
Professional development

At Deloitte, professionals have the opportunity to work with some of the best and discover what works best for them. Here, we prioritize professional growth, offering diverse learning and networking opportunities to help accelerate careers and enhance leadership skills. Our state-of-the-art DU: The Leadership Center in India, located in Hyderabad, represents a tangible symbol of our commitment to the holistic growth and development of our people. Explore DU: The Leadership Center in India.
Benefits to help you thrive

At Deloitte, we know that great people make a great organization. Our comprehensive rewards program helps us deliver a distinctly Deloitte experience that helps that empowers our professionals to thrive mentally, physically, and financially—and live their purpose. To support our professionals and their loved ones, we offer a broad range of benefits. Eligibility requirements may be based on role, tenure, type of employment and/ or other criteria. Learn more about what working at Deloitte can mean for you.
Recruiting tips

From developing a stand out resume to putting your best foot forward in the interview, we want you to feel prepared and confident as you explore opportunities at Deloitte. Check out recruiting tips from Deloitte recruiters.

Requisition code: 355941