D
Cyber - Operate - Consultant- TPRM
Deloitte(Other)
Job Publish Date: 19 hours ago
Hyderabad, IndiaFull Time3 - 5 YearsWork From OfficeSource : Foundit
Job Description
Summary
Position Summary
Level: Consultant
Work you'll do
As a Consultant on the Third Party Risk Management team, you will be responsible for supporting ongoing third-party cyber risk assessment delivery for client engagements.
Cyber Operate : Third Party Risk Management (TPRM) capability is part of the wider Cyber Operate Practice. The TPRM team is focused on helping our clients identify and manage the cyber risks arising from their association with third parties or service providers. We help our clients to define their overall third-party cyber risk strategy, design and implement enterprise-wide programs and technology that focus on identifying and reducing risks; help them evaluate their objectives, priorities, strengths and weaknesses and roll out large scale organizational changes to achieve goals.
Location: Bengaluru / Hyderabad / Pune
Shift Timings: 2:00 PM to 11:00 PM IST, with flexibility required based on client expectations, engagement demands, time zone coverage, on-call support, and after-hours operational needs
Qualifications
Required:
Our purpose
Deloitte's purpose is to make an impact that matters for our people, clients, and communities. At Deloitte, purpose is synonymous with how we work every day. It defines who we are. Our purpose comes through in our work with clients that enables impact and value in their organizations, as well as through our own investments, commitments, and actions across areas that help drive positive outcomes for our communities.
Our people and culture
Our inclusive culture empowers our people to be who they are, contribute their unique perspectives, and make a difference individually and collectively. It enables us to leverage different ways of thinking, ideas and perspectives, and bring more creativity and innovation to help solve our clients most complex challenges. This makes Deloitte one of the most rewarding places to work.
Professional development
At Deloitte, professionals have the opportunity to work with some of the best and discover what works best for them. Here, we prioritize professional growth, offering diverse learning and networking opportunities to help accelerate careers and enhance leadership skills. Our state-of-the-art DU: The Leadership Center in India, located in Hyderabad, represents a tangible symbol of our commitment to the holistic growth and development of our people. Explore DU: The Leadership Center in India .
Benefits To Help You Thrive
At Deloitte, we know that great people make a great organization. Our comprehensive rewards program helps us deliver a distinctly Deloitte experience that helps that empowers our professionals to thrive mentally, physically, and financially—and live their purpose. To support our professionals and their loved ones, we offer a broad range of benefits. Eligibility requirements may be based on role, tenure, type of employment and/ or other criteria. Learn more about what working at Deloitte can mean for you.
Recruiting tips
From developing a stand out resume to putting your best foot forward in the interview, we want you to feel prepared and confident as you explore opportunities at Deloitte. Check out recruiting tips from Deloitte recruiters.
Requisition code: 351629
Position Summary
Level: Consultant
Work you'll do
As a Consultant on the Third Party Risk Management team, you will be responsible for supporting ongoing third-party cyber risk assessment delivery for client engagements.
- Perform ongoing third-party cyber risk assessments to identify and evaluate business and technology risks associated with third parties and service providers
- Provide recommendations to help clients manage cyber risks arising from third-party relationships
- Assist in the selection and tailoring of third-party cyber risk management approaches, methods, and tools to support assessment delivery
- Prepare periodic status updates, including potential risks and delays, for project managers and clients
- Support engagement delivery by documenting findings and contributing to project execution against client requirements and timelines
Cyber Operate : Third Party Risk Management (TPRM) capability is part of the wider Cyber Operate Practice. The TPRM team is focused on helping our clients identify and manage the cyber risks arising from their association with third parties or service providers. We help our clients to define their overall third-party cyber risk strategy, design and implement enterprise-wide programs and technology that focus on identifying and reducing risks; help them evaluate their objectives, priorities, strengths and weaknesses and roll out large scale organizational changes to achieve goals.
Location: Bengaluru / Hyderabad / Pune
Shift Timings: 2:00 PM to 11:00 PM IST, with flexibility required based on client expectations, engagement demands, time zone coverage, on-call support, and after-hours operational needs
Qualifications
Required:
- 3-5 years of experience in information security
- Experience applying information security and risk frameworks or standards, including ISO 27001/2, National Institute of Standards and Technology 800 series, or Payment Card Industry Data Security Standard
- Experience performing cyber risk, compliance risk, or regulatory risk assessments
- Experience in one or more cyber risk domains, including security governance and management, application security controls, access controls, network security operations, security architectures, identity management, disaster recovery and business continuity, incident response, privacy and data protection, or encryption
- Experience with internal controls, risk assessments, business process reviews, internal information technology control testing, or operational auditing
- Experience preparing project status updates, including risks and delays, for project managers or clients
- Bachelor's or Master's degree in information technology or a related field
- Certification such as Certified Information Systems Security Professional or Certified Information Systems Auditor
- Experience with legal and regulatory requirements related to information security and data privacy, including Office of the Comptroller of the Currency Bulletin 2013-29, Federal Financial Institutions Examination Council guidance, or Health Insurance Portability and Accountability Act requirements
- Experience in a consulting environment
- Experience supporting third-party cyber risk management programs or assessments
Our purpose
Deloitte's purpose is to make an impact that matters for our people, clients, and communities. At Deloitte, purpose is synonymous with how we work every day. It defines who we are. Our purpose comes through in our work with clients that enables impact and value in their organizations, as well as through our own investments, commitments, and actions across areas that help drive positive outcomes for our communities.
Our people and culture
Our inclusive culture empowers our people to be who they are, contribute their unique perspectives, and make a difference individually and collectively. It enables us to leverage different ways of thinking, ideas and perspectives, and bring more creativity and innovation to help solve our clients most complex challenges. This makes Deloitte one of the most rewarding places to work.
Professional development
At Deloitte, professionals have the opportunity to work with some of the best and discover what works best for them. Here, we prioritize professional growth, offering diverse learning and networking opportunities to help accelerate careers and enhance leadership skills. Our state-of-the-art DU: The Leadership Center in India, located in Hyderabad, represents a tangible symbol of our commitment to the holistic growth and development of our people. Explore DU: The Leadership Center in India .
Benefits To Help You Thrive
At Deloitte, we know that great people make a great organization. Our comprehensive rewards program helps us deliver a distinctly Deloitte experience that helps that empowers our professionals to thrive mentally, physically, and financially—and live their purpose. To support our professionals and their loved ones, we offer a broad range of benefits. Eligibility requirements may be based on role, tenure, type of employment and/ or other criteria. Learn more about what working at Deloitte can mean for you.
Recruiting tips
From developing a stand out resume to putting your best foot forward in the interview, we want you to feel prepared and confident as you explore opportunities at Deloitte. Check out recruiting tips from Deloitte recruiters.
Requisition code: 351629
Key Skills
access controlsapplication security controlsbusiness continuitybusiness process reviewscyber risk complianceDisaster RecoveryEncryptionIdentity ManagementIncident ResponseInformation Securityinternal controls risk assessmentsIso 27001network securityoperational auditingoperations securityprivacy and data protectionrisk frameworksSecurity Architecturessecurity governance
Maximize your interview chances
Create tailored professional resumes in minutes using AI