Third Party Risk Management - Cyber jobs in India

Company: Deloitte

Location: Mumbai, Maharashtra, India

LinkedIn post

What impact will you make?

Every day, your work will make an impact that matters, while you thrive in a dynamic culture of

inclusion, collaboration and high performance. As the undisputed leader in professional services,

Deloitte is where you’ll find unrivaled opportunities to succeed and realize your full potential

Deloitte is where you’ll find unrivaled opportunities to succeed and realize your full

potential.

The Team

Deloitte helps organizations prevent cyberattacks and protect valuable assets. We believe in being

secure, vigilant, and resilient—not only by looking at how to prevent and respond to attacks, but

at how to manage cyber risk in a way that allows you to unleash new opportunities. Embed cyber

risk at the start of strategy development for more effective management of information and

technology risks.

Learn more about our Cyber Risk Practice.

Work you’ll do

As a part of our Risk Advisory team, you’ll build and nurture positive working relationships with

teams and clients with the intention to exceed client expectations. You’ll:

Role Description –

• ISMS or Third-Party Risk Assessments

• Ability to effectively liaise with clients and manage stakeholder expectations.

• Work with client teams from various depts. Such as compliance teams, auditing and

regulators to identify and document various requirements/obligations

• Conducting risk assessments and audits with respect to people, process and technology.

• Identification of gaps/observations, risks, opportunities and improvement of policies,

processes, procedures and standards.

• Documenting information security risk, recommendation and compensating controls in the

form of assessment/audit reports

• Collaborate with other members of the engagement team to plan and develop relevant

work papers/deliverables for vendor information security reviews, define approach for

vendor assessment and develop vendor evaluation model

• Handle key activities of assessment/ audit life cycle: planning, execution, reporting, quality

review and tracking

• Provide guidance and share knowledge with team members and participate in performing

procedures especially focusing on complex, judgmental and/or specialized issues

Qualifications :

1. 2-5 of experience in Third party risk management

2. Relevant years of experience in IT Audits, Cloud security

3. Experience with ISO22301 implementation and audits

Risk Advisory

Cyber Risk

4. Preferred certifications CBCI / CBCP / ISO22301 LI or LA Offensive Security Certified

Professional, CISA

Mode of working - Work from Office (5 days a week)

Your role as a leader

At Deloitte India, we believe in the importance of leadership at all levels. We expect our people to

embrace and live our purpose by challenging themselves to identify issues that are most important

for our clients, our people, and for society and make an impact that matters.

In addition to living our purpose, across our organization:

• Understanding of Third party/vendor/supplier risk management considerations

• Knowledge of Data Protection & Privacy related risks associated with Third-Party and

relevant control frameworks for Third party risk management

• Excellent written/verbal communication

• Excellent documentation and presentation skills

• Highly motivated and willing to work in local and global environments

• Security certifications like CISSP, CISA, CISM, CEH, ISO27001

• Work experience in Infrastructure / Application Security

• Work experience in IT Audit

• Work experience in Cloud Security

• Work experience in Information Risk Management

• Work experience in Information Security or Cyber Security domains

• GRC tool experience like Archer, ServiceNow, OneTrust, ProcessUnity, Security Scorecard

etc

How you’ll grow

At Deloitte, our professional development plan focuses on helping people at every level of their

career to identify and use their strengths to do their best work every day. From entry-level

employees to senior leaders, we believe there’s always room to learn. We offer opportunities to

help build world-class skills in addition to hands-on experience in the global, fast-changing

business world. From on-the-job learning experiences to formal development programs at Deloitte

University, our professionals have a variety of opportunities to continue to grow throughout their

career. Explore Deloitte University, The Leadership Center.

Benefits

At Deloitte, we know that great people make a great organization. We value our people and offer

employees a broad range of benefits. Learn more about what working at Deloitte can mean for

you.

Our purpose

Deloitte is led by a purpose: To make an impact that matters.

Every day, Deloitte people are making a real impact in the places they live and work. We pride

ourselves on doing not only what is good for clients, but also what is good for our people and the

Risk Advisory Cyber Risk communities in which we live and work—always striving to be an organization that is held up as a role model of quality, integrity, and positive change. Learn more about Deloitte's impact on the world

Recruiter tips

We want job seekers exploring opportunities at Deloitte to feel prepared and confident. To help

you with your interview, we suggest that you do your research: know some background about the

organization and the business area you’re applying to. Check out recruiting tips from Deloitte

professionals.