| Company | Deloitte Touche Tohmatsu India LLP |
| Job Title | T&T | Cyber: CST | Manager | ISO:27001 |
| Job Requisition ID | 104179 |
| Designation | Manager |
| Location | Mumbai |
| Education | Any Graduate |
| Experience Required | 7+ years in Cyber Security or IT Audit |
| Domain | Cyber Security, IT Audit, Information Security, Cyber Strategy & Transformation (CST) |
| Frameworks & Standards | ISO 27001, NIST, CSA, ITGC, RBI Guidelines, NPCI, SEBI, IRDAI |
| Cloud Platforms | AWS, Microsoft Azure, Google Cloud Platform (GCP) |
| Security Technologies | Firewalls, IDS/IPS, DLP, Proxy, SIEM, VPN, EDR |
| Key Responsibilities | Conduct cyber security and IT audits, perform cyber risk assessments, evaluate IT General Controls (ITGC), assess cloud security, prepare audit documentation (RCM, workpapers, reports), identify security vulnerabilities, recommend remediation, manage cybersecurity projects, guide project teams, present audit findings to senior management, ensure compliance with regulatory guidelines |
| Required Skills | Cyber Security, IT Audit, Risk Assessment, Information Security, Cloud Security, Network Security, Security Controls, Project Management, Team Leadership, Technical Documentation, Analytical Skills, Communication Skills |
| Preferred Certifications | CISSP, CISA, CCSP, GICSP, or equivalent cybersecurity certifications |
| Industry | Cyber Security Consulting, IT Consulting, Risk Advisory |
| Client Interaction | Very High – Client consulting, audit discussions, risk assessments, senior stakeholder presentations |
| Leadership Requirement | Lead project teams, mentor consultants, manage client engagements, and ensure successful project delivery |
| Interview Difficulty | Very High ⭐⭐⭐⭐⭐ |
| Competition Level | Very High |
| Best Suited For | Cyber Security Managers, IT Audit Managers, Information Security Consultants, Risk Advisory Professionals, GRC Specialists, and Cyber Compliance Experts |
| Not Ideal For | Candidates without Cyber Security, IT Audit, or Information Security experience, or those lacking hands-on knowledge of ISO 27001 and security frameworks |
| Overall Recommendation | An excellent opportunity for experienced Cyber Security and IT Audit professionals with 7+ years of experience, strong knowledge of ISO 27001, NIST, cloud security, regulatory compliance, and cybersecurity risk management. Professional certifications such as CISSP, CISA, or CCSP will significantly strengthen a candidate’s profile. |