Associate-BAS Cyber-Information Security-Mumbai

About Company

BDO is a global network of professional services firms with a presence in over 166 countries, revenue of over USD 14 billion, and experience of over 60 years. It's a leading service provider for the mid-markets with client service at its heart.BDO India Services Private Limited (or BDO India) is the India member firm of BDO International. BDO India offers strategic, operational, accounting and tax, and regulatory advisory & assistance for both domestic and international organizations across a range of industries. BDO India is led by more than 300+ Partners & Directors with a team of over 10,000 professionals operating across 14 cities and 20 offices. We expect to grow sizably in the coming 3-5 years, adding various dimensions to our business and multiplying and increasing the current team size multi-fold.

Roles & Responsibilities:

Candidate should have key understanding on technology, IT and governance aspects from Cyber Security perspective

Candidate should have understanding on performing gap assessment on organizations Cyber security landscape primarily to prevent them from cyber security threats

Candidate should have exposure to design, development, implementation, and maintenance information security framework aligned to framework like ISO 27001:2013

Candidate should have managed end-to-end Information security, cyber security for its organizations

Experience in performing the risk assessment from Cyber Security, Business Continuity and Privacy perspective

Experience on Data Privacy including design/development and review of privacy framework aligned with GDPR requirements and GAPP framework

Performing maturity assessment for cyber setup; Developing cyber strategy roadmap, helping in implementation

Consulting knowledge in overall cybersecurity domain with specific experience in engagements, such as NIST, BCP, ISO 27001, SSAE 18, ISAE3402, SOC 2 and regulatory compliances (RBI, SEBI, IRDA), data privacy audits.

Manage / Lead engagement for data privacy, regulatory compliance, cyber strategy, ISO 27001 BCP (ISO22301) & third-party risk management (TPRM)

Determine client needs, expectations & participate to develop, lead, and execute the overall client service plan

Work on proposals, thought leaderships, POVs as required

Demonstrate leadership, team management, problem solving and strong verbal and written communication skills

Consulting experience (preferred)

Certifications - ISO 27001, ISO22301, ISO 27701, CISSP, CISA (advantage)