CAREERS

Current Openings

Service Portfolio:
IT RISK ASSURANCE
Location:

Delhi-NCR/Mumbai/Bangalore/Hyderabad

Level:

Manager / Associate Dir

Experience: 7 - 14 years of overall experience in information security governance, risk management and compliance

You can send your resume on careers@datasecure.ind.in for applying this job

  • BE/B.Tech/ME/M.Tech/MCA/MS/MBA from a reputed institute
  • The candidate should have at least one or more of the following certifications –CISA/CISM/CISSP/ISO 27001 LA/ ISO 22301 LA/CBCP or any other relevant certification.
  • Manage the delivery of IT Advisory services offered by Grant Thornton to its clients including:
  • Disaster recovery and business continuity management
  • Information privacy
  • Information regulatory compliance (e.g. RBI, SEBI, SOC1, SOC2, PCI DSS, HITRUST, UIDAI)
  • Information risk management
  • Information security and information assurance
  • Information technology general controls for financial and other systems
  • Have a fair understanding on Business Continuity Planning and DR Drills
  • Could have conducted Information Life Cycle management reviews in the past
  • Should review the work papers, RCMs and reports drafted for ITGC reviews as part of statutory audits, IA, ISMS, SOX compliance audits
  • Should manage team members allotted and be responsible for their time, career and growth
  • Bring Vertical expertise in at least 2 ERPs (SAP, Oracle, Navision)
  • Should review, suggest and build team capabilities for conducting SSAE 18 SOC 1 SOC 2 audits
  • Manage the practice from following perspective for respective team
  • Proposals, Engagement Letters, Billing, Collection, Utilisation, Allocations
  • Manage Client communication and escalation
  • Make every attempt to guide the team and self to improve client satisfaction scores
  • Monitor RFP’s, participate in large bids and take lead on submissions and closure
  • Contribute to business development by scouting the market for potential Bring in revenue.
  • Have good market & client connects and should be able to introduce new relationships to the firm
  • Manage a team and support team members to grow in skills and professional outcome
  • Willingness to travel
Service Portfolio:
IT RISK ASSURANCE
Location:

Delhi-NCR/Mumbai/Bangalore/Hyderabad

Level:

Assistant / Associate / Associate / Assistant Manager

Experience: Consultant / AM – 1 to 8 Years of overall experience in information security governance, risk and compliance

You can send your resume on careers@datasecure.ind.in for applying this job

  • BE/B.Tech/ME/M.Tech/MCA/MS/MBA from a reputed institute
  • The candidate should have at least one of the following certifications –CISA/CISM/CISSP/ISO 27001 LA/ ISO 22301 LA/CBCP or any other relevant certification.
  • Support in IT Advisory services offered by Grant Thornton to its clients covering following domains:
  • Disaster recovery and business continuity management
  • Information privacy
  • Information regulatory compliance (e.g. RBI, SEBI, SOC1, SOC2, PCI DSS, HITRUST, IRDA, UIDAI)
  • Information risk management
  • Information security and information assurance
  • Information technology controls for financial and other systems
  • To identify processes and technologies to maintain and enhance the security architecture
  • Have a fair understanding on Business Continuity Planning and DR Drills
  • Could have conducted Information Life Cycle management reviews in the past
  • Perform risk assessment, controls and documentation with expected standards (Information technology / Business process)
  • Perform SOX compliance audits, SSAE 18 audits, testing and reporting
  • Perform control testing pertaining to Operating systems, Data base (Windows, Unix, Oracle, MSSQL, DB2)
  • Should be able to test basic and automated ERP ITGC controls (SAP, Oracle, )
  • Ability to draft BCP/DR policy, carry out testing of plan and procedures would be preferable
  • Ability to adapt to new scope areas and technologies
  • Bring Vertical expertise in at least 2 verticals such as BFSI, Manufacturing, or more
  • Manage Client communication and escalation
  • Make all attempts to guide the peers and self to improve client satisfaction scores
  • Participate in proposal preparation
  • Willingness to travel
Service Portfolio:
CYBER SECURITY PROCESS & GOVERNANCE
Location:

Delhi-NCR/Mumbai/Bangalore/Hyderabad/Pune

Level:

Consultant/ Assistant manager

Experience: Consultant / AM 1 to 8 Years- overall experience in cyber security process and governance, risk and compliance

You can send your resume on careers@datasecure.ind.in for applying this job

  • BE/B.Tech/ME/M.Tech/MCA/MS/MBA from a reputed institute
  • The candidate should have at least one of the following certifications –ISMS/BCMS/CISA/CISM/CISSP or any other relevant certification
  • Very good knowledge of Cyber Risk Governance Framework including:
  • Identification of gaps and report findings to Cyber Risk Management with recommendations for
  • Road Map of Controls and Risk Management Plan to mitigate any gaps identified between cyber risk and industry best practices (to include, but not limited to, NIST CSF, Cyber Resilience Framework (OICU-IOSCO), ) and current environment.
  • Evaluation of Cyber Policies (Global Cybersecurity Policy, Technology Policy, Technology Asset Inventory Policy)
  • Should have experience in ISMS audits and/or PCI-DSS audits
  • Having good understanding of IRDA, RBI, SEBI, NBFC cyber security circulars
  • Develop appropriate business cases for implementation of cyber
  • Proficiency in areas including Business Continuity management, Vendor Risk Management, Cyber Crisis Management, Cyber Insurance Consulting, Cyber
  • Should be able to conduct Information Security Audits, IT Infrastructure Reviews, Current State Assessments and bring out the gaps and suggest remedial
  • independently assess the organization risk based on risk governance frameworks
  • Manage Client communication and escalation
  • Guide peers and self to improve client satisfaction scores
  • Respond to client proposals and take lead on submissions and closure
  • Determine responsibility and accountability for cyber risk management and develop a governance model and threat intelligence
  • Should able to determine impact of change to the information system and environment and develop respective controls
  • Willingness to travel
Service Portfolio:
CYBERSECURITY TECHNOLOGY
Location:

Delhi-NCR/Mumbai/Bangalore/Hyderabad/Pune

Level:

Consultant OR Assistant Manager

Experience: CConsultant / Assistant Manager - 1 to 8 Years- of overall experience in Vulnerability assessment & Penetration testing, and Network Understanding on various areas of Cyber threat intelligence is a plus.

You can send your resume on careers@datasecure.ind.in for applying this job

  • BE/B.Tech/ME/M.Tech/MCA/MS/MBA from a reputed institute
  • The candidate should have at least one or more of the following certifications – OSCP/CEH/CCNA/CCNA Security /CISA/CISM/CISSP or any other relevant certification
  • Solid experience in conducting VAPT and App security testing for the clients
  • To perform technical security assessment for IT & Network components – Vulnerability assessment, Penetration testing, Opportunistic Hacking, Web application security testing, Security source code review, Mobile application security
  • To monitor and track the identified vulnerability/ issues and provide recommendations to mitigate the same
  • To drive the engagements and team for efficient delivery as per the engagement scope
  • To maintain client relationships and understand their requirements for future business opportunities
  • Technology forensics including acumen to solve cybercrime and cyber incident related issues
  • Working knowledge of security on SCADA / AI / IOT / PLCs are a plus.
  • Active contributor to Bug Bounty programs will be desirable
  • Should be able to conduct timely research on new vulnerabilities and adapt to new scope areas
  • Have a research focus and guide the team to build new services and solutions keeping upto date to the latest and Gen Next technologies with Cyber
  • Bring Vertical expertise in atleast 2 verticals such as BFSI, Manufacturing, or more
  • Manage Client communication and escalation
  • Make every attempt to guide the peers and self to improve client satisfaction scores
  • Participate in large bids and take lead on submissions and closure
  • Have good market and client connects and should be able to introduce new relationships to the firm
  • Willingness to travel
Service Portfolio:
CYBERSECURITY TECHNOLOGY
Location:

Delhi-NCR/Mumbai/Bangalore/Hyderabad/Pune

Level:

Manager OR Associate Director

Experience: 8 -14 years of overall experience in Vulnerability assessment & Penetration testing and Network security

You can send your resume on careers@datasecure.ind.in for applying this job

  • BE/B.Tech/ME/M.Tech/MCA/MS/MBA from a reputed institute
  • The candidate should have at least one or more of the following certifications – OSCP/CEH/CCNA/CCNA Security/CHFI/CISA/CISM/CISSP or any other relevant
  • To manage cyber security team conducting VAPT and App security testing for the clients
  • To perform technical security assessment for IT & Network components – Vulnerability assessment, Penetration testing, Opportunistic Hacking, Web application security testing, Security source code review
  • To monitor and track the identified vulnerability/ issues and provide recommendations to mitigate the same
  • Keep abreast of latest developments, zero day vulnerabilities, patch management,
  • To drive the engagements and team for efficient delivery as per the engagement scope
  • To maintain client relationships and understand their requirements for future business opportunities
  • Technology forensics including acumen to solve cybercrime and cyber incident related issues
  • Active contributor to Bug bounty programs
  • Have research focus and guide the team to build new services and solutions keeping upto date to the latest and Gen Next technologies with Cyber
  • Bring Vertical expertise in atleast 2 verticals such as BFSI, Manufacturing, Tech, Consumer or more
  • Manage the practise from following perspective for respective team
  • Monitoring & Responding to RFP’s, Implementation, Billing, Collection, Utilisation, Allocations
  • Manage Client communication and escalation
  • Make every attempt to guide the team and self to improve client satisfaction scores
  • Participate in large bids and take lead on submissions and closure
  • Have a business development approach to increase both topline and bottom line
  • Have good market & client connects and should be able to introduce new relationships to the firm
  • Manage a team and support team members to grow in skills and professional outcome
  • Willingness to travel
Service Portfolio:
CYBER SECURITY PROCESS AND GOVERNANCE
Location:

Delhi-NCR/Mumbai/Bangalore/Hyderabad/Pune

Level:

Manager/Associate Director

Experience: 8 - 14 years of overall experience in cyber security process and governance, risk and compliance

You can send your resume on careers@datasecure.ind.in for applying this job

  • BE/B.Tech/ME/M.Tech/MCA/MS/MBA from a reputed institute
  • The candidate should have at least one of the following certifications –CISA/CISM/CISSP/CRISIS/ISO 27001 LA/ ISO 22301 LA/CBCP or any other relevant
  • Support in IT Advisory services offered by Grant Thornton to its clients covering following domains:
  • Disaster recovery and business continuity management
  • Information privacy
  • Information regulatory compliance (e.g. RBI, SEBI, SOC1, SOC2, PCI DSS, HITRUST, UIDAI)
  • Information risk management
  • Information security and information assurance
  • Information technology controls for financial and other systems
  • To identify processes and technologies to maintain and enhance the security architecture
  • Have a fair understanding on Business Continuity Planning and DR Drills
  • Could have conducted Information Life Cycle management reviews in the past
  • Very good knowledge of Cyber Risk Governance Framework including:
  • Identification of gaps and report findings to Cyber Risk Management with recommendations for
  • Road Map of Controls and Risk Management Plan to mitigate any gaps identified between cyber risk and industry best practices (to include, but not limited to, NIST CSF, Cyber Resilience Framework (OICU-IOSCO), etc.) and current environment.
  • Evaluation of Cyber Policies (Global Cybersecurity Policy, Technology Policy, Technology Asset Inventory Policy)
  • Should have experience in ISMS audits and/or PCI-DSS audits
  • Having good understanding of Indian and Global regulatory compliances
  • Develop appropriate business cases for implementation of cyber solutions.
  • Should be able to think "out of the box". Possess ability to implement new attack approaches/vectors.
  • Willingness to travel
Designation :
Manager – Data Privacy, Cyber
Location:

All India

You can send your resume on careers@datasecure.ind.in for applying this job

  • To create privacy framework based on compliance requirements like GDPR, CCPA, PIPEDA, etc.
  • To map regulatory requirements as per the requirements of “data controller” and “data processor”, or similar terms used in respective regulations.
  • To conduct Privacy Impact Assessment (PIA) and Data Privacy Assessments / Audits.
  • To create and update security & privacy policies, procedure, good practices and notices
  • To assess applications, vendors, infrastructure, cloud services and processes for compliance as per security and privacy requirement
  • To identify the risks associated with the assessed solution or process and rate the same inline to the risk rating methodology as defined by the client organization. If required, to help the client with coming up with a risk rating.
  • To provide remediation recommendations including technical solutions regarding the gaps identified
  • To provide support for privacy related Data Breach management process, recommendations to incidents, to help in preparation of mitigation plan and to provide support in closing the incident
  • To prepare training material and provide training about maintaining required data privacy standards for information Lifecyle i.e. collecting, storing, processing and destruction of data
  • To help with the development of data classification guidelines, data masking and encryption guidelines.
  • To understand the business, to analyze the information life cycle and accordingly create data flow maps.
  • To implement data leakage prevention (DLP) tool based on defined business, security and regulatory requirements/li>
  • To provide assurance regarding Data Loss Prevention and other monitoring tools, efforts and related investigations and remediation actions
  • To provide support in monitoring of all loss mitigation systems and processes, detecting and addressing any system or process deficiencies
  • To assist in the process of identification and creation of inventory of sensitive information that is being stored, processed, or transmitted internally and to a variety of audiences, including customers, vendors, employees, etc.
  • To manage a team size of 4 or more members
  • To create project plan as per the agreed upon scope of work
  • To track the health of projects to ensure they are on track. To take necessary actions in case of any anticipated roadblocks or issues
  • To guide the team members to help them progress as per the project plan and to help them work on their annual goals
  • E/MBA/MCA/MCA or Equivalent
  • 7 - 10 years of experience.
  • Prior experience in a professional consultancy firm is preferred
  • Data Management, Governance or Data Protection experience considered.
  • IAPP – CIPM / CIPP/E/US, CIPT, FIP preferred. DSCI DCPP / DCPLA may apply
  • Executed the following types of engagements in the past:
  • Conducting Information Security audits
  • Internal audits, Privacy Audits / Assessments
  • ISO 27001 / 27701 Certifications & Surveillance audits
  • Strong inter-personal skills, communication - written and verbal
  • Good project management and team management skills
  • Strong analytical skills, Able to articulate and correlate
  • Sound Technical knowledge
  • Ability to effectively manage multiple, concurrent projects and meet deadlines while working both independently and in a team environment
  • Demonstrate integrity, values, principles, and work ethic and lead by example
  • Willingness to travel within India or abroad