Job Title:  RA- Cyber-AM-Compliance framework

Job requisition ID ::  4144
Date:  Nov 5, 2021
Location:  Delhi
Designation:  Assistant Manager
Entity:  Deloitte Touche Tohmatsu India LLP

What You Will Do

  • Contribute under the supervision and mentorship of the GCC Strategy Leader and drive technology compliance activities across Cisco
  • Perform Information Security related assessments to cover domains like User Access management, Network, OS & Application Security, Vulnerability Management, Encryption, SDLC, Backup Management, Disaster Recovery, Physical Security, Training & Awareness etc.
  • Draft compliance reports to summarize the compliance objectives, key findings, and work with teams to remediate key findings
  • Own the liaising with external auditors and customers to help them gain comfort with regard to Cisco's GCC program
  • Assist in Compliance testing as and when required. Identify internal controls issues, ensure they are well-defined and root causes are identified
  • Develop, automate and maintain audit/compliance tasks in GRC as well as other related tools
  • Build and maintain compliance dashboards to provide a holistic view of the compliance posture of the organization
  • Develop and maintain the GCC Intranet, SharePoint, Wiki and other portals
  • Collaborate and co-ordinate activities with the GCC team based across geographies.

This role calls for an individual who understands all aspects of performance which impacts both internal and external Compliance posture. The individual will work with other team members to drive various initiatives necessary to improve it. It requires an individual to showcase in-depth knowledge and decision making skills based on risk to build long term sustainable process paths to improve our Compliance and Security posture.

What you need to Succeed

  • Bachelors / master's Degree with a focus in Information Technology / Computer Science or related field
  • Minimum 4-6 years of related cybersecurity compliance experience
  • Knowledge of Compliance frameworks (e.g. SOC 2, FedRAMP, ISO, PCI, etc.)
  • Knowledge of common IT systems (Operating Systems, network devices, applications), Core IT processes / services such as SDLC, Identity and Access management, Vulnerability Management, Backup and DR processes will be useful
  • Hand on experience with AWS & Azure environments
  • Experience designing and maintaining websites, SharePoint sites etc is a plus.
  • Good interpersonal, verbal and written communication skills. It is important that the candidate is a team-player and possesses strong organizational and planning skills.
  • Ability to connect and communicate with both business and IT technical staff including IT and Business management.
  • Requires the ability to multi-task, be focussed, and tackle problems analytically