T&T | Cyber: CST | Consultant | ISMS | Delhi

Consultant in Deloitte T&T Cyber Governance, Risk & Compliance (GRC) team in Delhi who will work with clients to strengthen cybersecurity governance, manage enterprise risks, and support regulatory compliance. Responsibilities include developing and implementing governance and risk management frameworks, performing cybersecurity maturity assessments using NIST CSF, NIST SP 800-53, ISO/IEC 27001, COBIT; planning and executing ITGC testing across access/change management, logical security, and operational controls; conducting IT/OT security audits; assisting with information security controls across IAM, incident management, backup & recovery, endpoint security, change management, physical security, and media handling; supporting RBI, SEBI, IRDAI, CERT-In, NCIIPC, PCI DSS regulatory initiatives; tracking evolving cybersecurity regulations and supporting remediation; participating in PCI DSS assessments, readiness reviews, and gap analyses; assessing application security governance including Secure SDLC, threat modeling, and secure coding standards; evaluating cloud governance and security controls across AWS, Azure, and GCP; preparing client deliverables such as risk assessment reports, audit observations, dashboards, and executive presentations; collaborating with internal teams and client stakeholders on cybersecurity transformation and compliance initiatives; conducting Third-Party Risk Management (TPRM) assessments and enhancing TPRM within enterprise risk programs.