Assistant Manager | ISO:27001 | Pune | Cyber Strategy & Transformation

Deloitte is seeking a Cybersecurity GRC Specialist to support the implementation and management of governance, risk, and compliance initiatives within the organization. This role involves assisting with risk assessments, policy development, internal audits, and data monitoring, aiming to ensure cybersecurity is integrated throughout the value chain. The ideal candidate will have a strong understanding of security frameworks and a collaborative approach to risk management.

Requirements

• Support the implementation of GRC frameworks (ISO 27001, NIST, SOC 2) across various functions.
• Assist in drafting and updating cybersecurity policies, procedures, and control documentation.
• Conduct and document basic IT/cybersecurity risk assessments and internal control reviews.
• Maintain portions of the risk register and track mitigation plans.
• Support audit activities, control testing, and evidence collection.
• Perform initial third-party risk reviews.

Benefits

• Competitive salary
• Opportunities for professional development
• Inclusive work environment
• Flexible work arrangements