Job Title: TPRM Consultant Location: Mumbai – Work from the Office Experience: 2+ Years Job Overview: We are seeking a dedicated and detail-oriented Third-Party Risk Management (TPRM) GRC Specialist to join our team in Mumbai. The ideal candidate will have hands-on experience in managing vendor risks, executing GRC processes, and ensuring compliance with internal and external risk frameworks. You will collaborate with internal teams and external vendors to assess, monitor, and report on third-party risks to strengthen our overall risk posture. Key Responsibilities: Support the end-to-end third-party risk management lifecycle, including onboarding, due diligence, risk assessments, periodic reviews, and offboarding. Conduct third-party control evaluations based on established frameworks (e.g., ISO 27001, SOC 2, NIST). Collaborate with internal stakeholders such as Legal, Procurement, IT Security, and Compliance to ensure vendor alignment with organizational policies. Maintain and update the third-party risk register, capturing key risks, mitigation plans, and remediation actions. Prepare risk reports and dashboards for internal stakeholders and leadership. Assist in audits and compliance checks related to vendor risk management. Help improve TPRM processes and leverage GRC tools for automation and efficiency. Required Skills and Qualifications: Minimum 2 years of experience in Third-Party Risk Management, GRC, or related risk/compliance roles. Working knowledge of regulatory standards such as ISO 27001, SOC 2, GDPR, and NIST. Familiarity with GRC platforms (e.g., Archer, MetricStream, ServiceNow) is an advantage. Strong communication and interpersonal skills to effectively interact with internal teams and external vendors. Good analytical and documentation skills with attention to detail. Ability to prioritize tasks and manage time effectively in a fast-paced environment. Educational Qualifications: Bachelor’s degree in Information Security, Risk Management, Business Administration, or a related field. Relevant certifications (e.g., ISO 27001 Lead Auditor, CISA, CRISC) are a plus. Show more Show less

Job Title: Endpoint Security Engineer Locations: Mohali & Gurgaon Experience: 2+ Years Role Overview: We are looking for a passionate and skilled Endpoint Security Engineer with hands-on experience in Microsoft Defender , CrowdStrike , and SentinelOne . The ideal candidate will be responsible for implementing, monitoring, and optimizing endpoint protection platforms to safeguard our IT infrastructure from modern threats. Key Responsibilities: Deploy, configure, and manage endpoint security tools such as Microsoft Defender for Endpoint , CrowdStrike Falcon , and SentinelOne . Monitor and respond to endpoint-related security alerts and incidents. Investigate suspicious activity and coordinate with SOC/IT teams to perform root cause analysis. Assist in tuning policies, rules, and detection logic to reduce false positives and enhance threat visibility. Support day-to-day operations including patching, EDR tool maintenance, and threat hunting. Maintain documentation for configurations, SOPs, incident reports, and remediation actions. Stay current with the latest threats, vulnerabilities, and EDR technology updates. Preferred Qualifications: Experience with Microsoft Defender for Endpoint , CrowdStrike , and/or SentinelOne . Familiarity with SIEM platforms like Microsoft Sentinel or similar tools. Understanding of endpoint threat vectors, malware behavior, and basic forensic techniques. Exposure to compliance frameworks (e.g., ISO 27001, NIST) is a plus. Soft Skills: Strong problem-solving and analytical skills. Good communication and coordination capabilities. Detail-oriented with the ability to work independently and as part of a team. Ability to document findings and present security insights clearly. Show more Show less

Job Title : Deputy Manager / Manager / Senior Manager – IT Audit Location : Bangalore / Mumbai Experience : 4+ Years Department : Risk Advisory / Information Security / IT Audit Key Responsibilities : ITGC & IT Audit Perform end-to-end audits of IT General Controls (ITGC), IT Application Controls, and automated business controls across various systems (SAP, Oracle, etc.). Evaluate IT policies, procedures, and processes against regulatory and compliance requirements (SOX, SSAE18/SOC1, SOC2). Execute risk-based IT audits and assess IT risk and controls in the areas of access controls, change management, backup & recovery, and incident management. Prepare detailed audit reports, highlighting key issues and action plans for remediation. Network Security Assess network and infrastructure controls, including firewalls, intrusion detection/prevention systems (IDS/IPS), routers, and VPNs. Conduct vulnerability assessments and review patch management processes. Collaborate with cybersecurity teams to identify threats and ensure compliance with security best practices and standards (ISO 27001, NIST, CIS, etc.). Third Party Risk Management (TPRM) Conduct third-party/vendor risk assessments focused on cybersecurity, data privacy, regulatory compliance, and business continuity. Assess security posture and compliance of vendors through document review, questionnaires, and due diligence tools. Maintain vendor risk profiles and ensure ongoing monitoring and reassessment based on criticality. Coordinate with business units, procurement, and legal teams to review contracts and SLAs for security and compliance obligations. Key Requirements : Education : Bachelor’s/Master’s degree in Information Technology, Computer Science, or a related field. Certifications (preferred) : CISA, CISSP, ISO 27001 LA, CRISC, CEH, or similar. Strong understanding of IT controls, audit processes, and network security protocols. Familiarity with control frameworks such as COBIT, NIST, ISO 27001, and SOC. Excellent communication skills to interact with internal and external stakeholders. Ability to manage multiple audits/projects and lead teams depending on the role level. Experience Level : Deputy Manager : 4–6 years, with hands-on audit/testing experience. Manager : 6–9 years, with project leadership, team handling, and reporting responsibilities. Senior Manager : 9+ years, with strategic oversight, client engagement, and practice development experience. Show more Show less

Job Description: TPRM GRC Specialist Location: Mohali Experience: 2+ years Role Overview: We are seeking a dedicated and detail-oriented Third-Party Risk Management (TPRM) Governance, Risk, and Compliance (GRC) Specialist to join our team. The ideal candidate will have hands-on experience in TPRM, GRC processes, and a strong understanding of risk management frameworks. This role is essential in ensuring that our organization’s third-party relationships are compliant with internal policies and external regulations, mitigating potential risks. Key Responsibilities: Assist in managing the third-party risk management lifecycle, including identifying, assessing, and mitigating risks associated with third-party relationships. Support the development and implementation of TPRM policies and procedures. Conduct risk assessments of third-party vendors, evaluating their security, compliance, and operational capabilities. Maintain and update the third-party risk register and ensure it is aligned with the organization’s risk management framework. Assist in developing and delivering risk reporting to key stakeholders, including senior leadership. Work closely with cross-functional teams, including legal, compliance, procurement, and IT security, to ensure comprehensive risk management across third-party relationships. Monitor and review third-party contracts and service level agreements (SLAs) to ensure compliance with organizational policies. Participate in internal and external audits related to third-party risk management. Support the GRC toolset, ensuring effective implementation and use of technology to streamline processes. Provide training and awareness programs to staff on third-party risk management best practices and policies. Skills & Qualifications: 2+ years of experience in TPRM, GRC, risk management, or a related field. Strong understanding of risk management principles, frameworks, and standards (e.g., ISO 27001, NIST, etc.). Experience with GRC tools and platforms (e.g., RSA Archer, MetricStream). Excellent communication skills, with the ability to interact effectively with stakeholders at all levels. Ability to conduct risk assessments and evaluate vendor security/compliance postures. Strong problem-solving skills and attention to detail. Ability to work independently and manage multiple priorities in a fast-paced environment. Knowledge of legal and regulatory requirements related to third-party risk management is a plus. If you have the required experience and are eager to make a significant impact in managing third-party risks, apply today! Show more Show less

Job Title: Statutory Auditor Consultant o Senior Manager Experience: 1 to 10+ Years Qualification: Chartered Accountant (CA) – Mandatory Location: Gurgaon, Bangalore - India Practice: India Practice Job Summary: We are seeking a qualified Chartered Accountant with at least 1 to 10+ years of experience in Statutory Audit. The ideal candidate should have strong technical knowledge of audit procedures, accounting standards, and regulatory requirements. This role involves conducting statutory audits for clients across various industries, ensuring compliance with applicable laws, and providing high-quality audit deliverables. Key Responsibilities: Execute and manage statutory audits in compliance with Indian Accounting Standards (Ind AS), Companies Act, and other regulatory requirements. Prepare and review financial statements, audit reports, and supporting documentation. Assess internal controls, identify areas of risk, and recommend improvements. Ensure timely completion of audits and adherence to firm and professional standards. Coordinate with clients to obtain necessary information and clarify audit queries. Stay updated with regulatory changes and accounting pronouncements. Work closely with senior auditors and partners to execute audit engagements efficiently. Assist in training and mentoring junior team members. Key Skills & Qualifications: Mandatory: Chartered Accountant (CA) qualification. 1 to 10+ years of experience in statutory audits, preferably in a reputed audit firm. Strong understanding of Ind AS, Companies Act, and auditing standards. Experience in handling audit documentation, working papers, and financial reporting. Proficiency in Microsoft Excel, Word, and audit tools. Excellent analytical, communication, and client management skills. Ability to work independently and manage multiple audit engagements. Preferred Experience: Exposure to audits of listed and private companies. Experience with data analytics in audit procedures. Knowledge of Tax Audit and Limited Review engagements is an added advantage. Show more Show less

Job Title: VAPT From Consult to Associate Director Location: Gurgaon, Mohali Experience: 1 to 10+ years Work Mode: Onsite Role Overview: We are seeking a highly skilled Vulnerability Assessment and Penetration Testing (VAPT) Manager / Senior Manager to lead and manage end-to-end security assessment projects across applications, infrastructure, networks, and cloud environments. This role involves both hands-on technical execution and oversight of team deliverables, with a focus on client delivery, quality assurance, and stakeholder communication. Key Responsibilities: Lead and execute VAPT engagements across web apps, mobile apps, infrastructure, networks, cloud platforms , and source code reviews . Conduct detailed manual and automated vulnerability assessments and penetration testing. Review and validate test reports, ensuring clear and actionable remediation guidance. Mentor and guide junior team members, supporting their technical and professional development. Coordinate with clients, internal teams, and management to deliver secure, compliant, and high-quality solutions. Stay updated with emerging threats, tools, and techniques in the cybersecurity domain. Ensure adherence to industry standards such as OWASP, NIST, ISO 27001, PCI-DSS, and RBI guidelines . Desired Skills & Experience: 1 to 10+ years of experience in VAPT with strong expertise in manual testing beyond automated scanners. Hands-on experience with tools such as Burp Suite, Metasploit, Nessus, Nmap, Wireshark, Fortify, AppScan , etc. Proficiency in secure coding practices and at least one programming language (e.g., Python, Java, JavaScript). Strong report writing, presentation, and communication skills. Familiarity with cloud security (AWS, Azure, GCP) is a plus. OSCP certification is an added advantage, but not mandatory . Experience managing security projects and small teams preferred. Why Join Us? Work on high-impact cybersecurity projects. Opportunity to lead and grow a team of security professionals. Collaborative work environment with cutting-edge tools and training. Competitive salary and benefits. Priority consideration for immediate joiners . Show more Show less

Job Title: Consultant / Associate – Statutory Audit Location: Gurgaon Experience: CA Fresher or 1 to 3 years of post-qualification experience Qualification: Chartered Accountant (CA) – Mandatory Practice: India Practice Availability: Immediate joiners preferred Job Summary: We are looking for Chartered Accountants with 0 to 3 years of relevant experience in Statutory Audit for our India Practice based in Gurgaon . Candidates with prior articleship experience in statutory audit will be given strong preference. This role offers hands-on exposure to audits across various sectors and provides an excellent foundation for long-term growth in assurance services. Key Responsibilities: Assist and execute statutory audits for Indian clients in line with Ind AS , Indian GAAP , and the Companies Act . Prepare and review financial statements, working papers, and audit documentation. Conduct walkthroughs, identify control gaps, and support audit planning and execution. Coordinate with client teams for data requests and audit clarifications. Stay updated with recent developments in accounting and auditing standards. Support the senior audit team in managing deliverables and meeting deadlines. Key Requirements: CA qualification is mandatory. 0 to 3 years of post-qualification experience OR articleship experience specifically in Statutory Audit – India Practice . Strong understanding of Indian Accounting Standards (Ind AS) and Companies Act, 2013 . Good communication, analytical, and documentation skills. Ability to work effectively in a team and handle multiple engagements. Proficient in Microsoft Excel, Word, and audit tools. Show more Show less

Job Title: Consultant / Senior Consultant – Third-Party Risk Management (TPRM) Location: Coimbatore (Work from Office) Experience: 3+ years Employment Type: Full-Time Job Summary: We are seeking a Consultant / Senior Consultant with a strong foundation in Third-Party Risk Management (TPRM) and cybersecurity compliance to join our team in Coimbatore . The ideal candidate will have at least 3 years of experience in conducting vendor security assessments, identifying and mitigating risks, and ensuring compliance with industry standards such as PCI DSS, ISO 27001, and NIST . This is an onsite role with exciting growth potential in a fast-paced and evolving risk environment. Key Responsibilities: Conduct third-party/vendor risk assessments to evaluate cybersecurity posture and compliance with applicable frameworks. Review and assess vendor documentation , including SOC reports, penetration test results, policies, and data protection measures. Identify control gaps and support the development of risk mitigation strategies and remediation plans. Ensure vendor compliance with PCI DSS, ISO 27001, NIST, SOC 2 , and other relevant security standards. Maintain detailed risk records, documentation, and reporting dashboards . Collaborate with internal stakeholders including IT, Legal, Procurement, and Risk teams to support the third-party onboarding and monitoring process. Stay updated on emerging cybersecurity threats, compliance trends, and third-party risk practices. Support process improvements and standardization efforts in the TPRM lifecycle. Qualifications and Skills: Minimum 3 years of experience in Third-Party Risk Management , cyber risk assessments, or IT compliance. Strong knowledge of PCI DSS, ISO 27001, SOC 2, NIST, and vendor governance frameworks . Bachelor’s degree in Information Security, Computer Science, Risk Management , or a related field. Relevant certifications such as CISA, ISO 27001 Lead Auditor, or CISSP are preferred. Excellent analytical, problem-solving, and communication skills. Ability to work in a structured and deadline-driven environment. Must be willing to work onsite from the Coimbatore office . Why Join Us? Be a part of a growing cybersecurity & risk management team . Onsite exposure to real-world third-party security programs and frameworks. Competitive salary and clear career progression for high performers. Work environment that fosters learning, innovation, and collaboration . Show more Show less

Job Title: Consultant / Senior Consultant – ISMS Audit – Cyber Security Location: Mumbai & Coimbatore Experience: 2+ Years Joining: Immediate Joiners Preferred Job Summary: We are looking for dynamic and driven professionals for the role of Consultant / Senior Consultant in ISMS Audit – Cyber Security . The ideal candidate should have hands-on experience in ISO 27001 implementation/audit , network security , and IT audits , with a solid understanding of information security risk management and regulatory compliance. Key Responsibilities: Conduct end-to-end ISMS audits in alignment with ISO 27001 standards. Review and assess network security controls , identify gaps, and recommend improvements. Support in performing IT general controls (ITGC) and IT audits . Prepare detailed audit reports, risk assessments, and remediation plans. Assist clients in developing, implementing, and maintaining ISMS frameworks . Ensure compliance with applicable information security standards and regulatory requirements. Communicate effectively with client stakeholders including CIOs/CISOs and IT Heads. Support pre-sales and proposal activities as needed. Required Skills & Qualifications: Minimum 2+ years of experience in ISMS audits, ISO 27001, network security, and IT audits . Strong understanding of cybersecurity principles and network architectures . Experience in performing ISO 27001 implementation and/or certification audits . Familiarity with risk assessment methodologies and security governance frameworks. Certifications such as ISO 27001 LA/LI, CEH, CISA, or equivalent would be a plus. Strong analytical, documentation, and communication skills. Ability to work independently and in teams, and manage multiple client engagements. Preferred Candidates: Candidates currently located in or willing to relocate to Mumbai or Coimbatore . Immediate joiners will be given preference. Show more Show less

Job Title: Consultant / Manager / Senior Manager – VAPT Location: Gurgaon Experience Required: 2 to 10 years Work Mode: Onsite (Gurgaon) Certification: OSCP – Mandatory Role Overview: We are looking for skilled cybersecurity professionals across levels ( Consultant to Senior Manager ) to join our Vulnerability Assessment & Penetration Testing (VAPT) team in Gurgaon . You will play a critical role in executing and leading security assessments across applications, infrastructure, network, and source code to identify vulnerabilities and recommend effective remediation. Key Responsibilities: For All Levels: Perform end-to-end VAPT on web applications, mobile applications, network, infrastructure, cloud, and source code . Identify, exploit, and document vulnerabilities with clear technical and business impact. Use both manual and automated tools to conduct deep-dive penetration testing. Prepare and present technical reports with actionable recommendations. Ensure adherence to OWASP, NIST, ISO 27001, PCI-DSS, and RBI cybersecurity guidelines . Additional Responsibilities Based on Experience Level: Manager / Senior Manager: Lead a team of consultants and guide them through complex assessments. Oversee project timelines, quality, and client deliverables. Engage with senior stakeholders (CIOs, CISOs, Security Heads) to discuss findings and mitigation strategies. Support practice development, training initiatives, and RFP support. Consultants / Senior Consultants: Execute hands-on penetration testing under guidance from seniors. Maintain high-quality documentation and assist in tool integration. Continuously upgrade skills through research and certification prep. Required Skills & Qualifications: 2 to 10 years of hands-on experience in penetration testing and vulnerability assessment . Strong knowledge of manual testing techniques beyond automated scanners. Expertise with tools such as Burp Suite, Metasploit, Nmap, Nessus, Qualys, AppScan, Fortify, Wireshark , etc. OSCP certification is mandatory. Familiarity with secure coding , scripting, and one or more programming languages (e.g., Python, Java, JavaScript). Good understanding of cloud security testing (AWS, Azure, GCP) is a plus. Strong analytical, communication, and report-writing skills. Show more Show less

Job Title: Consultant / Senior Consultant – ISMS Audit – Cyber Security Location: Mumbai & Coimbatore Experience: 2+ Years Joining: Immediate Joiners Preferred Job Summary: We are looking for dynamic and driven professionals for the role of Consultant / Senior Consultant in ISMS Audit – Cyber Security . The ideal candidate should have hands-on experience in ISO 27001 implementation/audit , network security , and IT audits , with a solid understanding of information security risk management and regulatory compliance. Key Responsibilities: Conduct end-to-end ISMS audits in alignment with ISO 27001 standards. Review and assess network security controls , identify gaps, and recommend improvements. Support in performing IT general controls (ITGC) and IT audits . Prepare detailed audit reports, risk assessments, and remediation plans. Assist clients in developing, implementing, and maintaining ISMS frameworks . Ensure compliance with applicable information security standards and regulatory requirements. Communicate effectively with client stakeholders including CIOs/CISOs and IT Heads. Support pre-sales and proposal activities as needed. Required Skills & Qualifications: Minimum 2+ years of experience in ISMS audits, ISO 27001, network security, and IT audits . Strong understanding of cybersecurity principles and network architectures . Experience in performing ISO 27001 implementation and/or certification audits . Familiarity with risk assessment methodologies and security governance frameworks. Certifications such as ISO 27001 LA/LI, CEH, CISA, or equivalent would be a plus. Strong analytical, documentation, and communication skills. Ability to work independently and in teams, and manage multiple client engagements. Preferred Candidates: Candidates currently located in or willing to relocate to Mumbai or Coimbatore . Immediate joiners will be given preference. Show more Show less

Job Title: Consultant / Senior Consultant – Third-Party Risk Management (TPRM) Location: Remote – India Experience: 3+ years Shift Timing: Evening Shift (Start time: 5–6 PM IST, aligned with US hours) Industry: Cybersecurity, Risk Management Employment Type: Full-Time Job Summary: We are hiring a Consultant / Senior Consultant with 3+ years of experience in Third-Party Risk Management (TPRM) to work remotely with our global clients , primarily in the US region . This role requires solid knowledge of cybersecurity standards such as PCI DSS, ISO 27001, SOC 2, and NIST , as well as hands-on experience in conducting vendor risk assessments and ensuring compliance. Key Responsibilities: Perform third-party/vendor security risk assessments , evaluating information security practices of external vendors. Assess vendor compliance with PCI DSS, ISO 27001, SOC 2, NIST, and other regulatory frameworks . Review vendor documentation, including policies, audit reports, penetration test results, and risk assessments. Identify cybersecurity risks and assist in drafting risk reports and remediation plans . Liaise with internal stakeholders and vendor contacts to ensure timely risk issue resolution and follow-up . Support ongoing monitoring of vendors through risk ratings, reassessments, and tracking regulatory obligations. Maintain accurate records and dashboards related to TPRM activities. Participate in process improvement initiatives to enhance the effectiveness of the TPRM program. Collaborate with global teams, particularly in the US time zone . Qualifications and Skills: Minimum 3+ years of experience in TPRM, cyber risk assessments, compliance audits, or related cybersecurity domains. Strong understanding of regulatory and industry frameworks like PCI DSS, ISO 27001, NIST, SOC 2 , etc. Familiarity with tools used for TPRM, compliance tracking, and risk assessments. Bachelor’s degree in Information Security, Computer Science, Risk Management , or related field. Relevant certifications such as CISA, ISO 27001 LA, or CISSP (preferred but not mandatory). Excellent communication skills, with the ability to present risk findings and collaborate with international stakeholders. Must be comfortable working in evening shifts starting around 5–6 PM IST . Why Join Us? Opportunity to work with global clients and gain exposure to world-class cybersecurity standards. 100% remote role with flexibility in working from anywhere in India. Attractive compensation and career growth potential . Inclusive and collaborative team culture with a focus on learning and development . Show more Show less

Job Title: GRC Professional Location: Mohali Experience: 3+ Years Employment Type: Full-Time Job Summary: We are seeking a skilled and proactive GRC Professional to join our team in Mohali. The ideal candidate will play a pivotal role in developing and maintaining the organization’s Governance, Risk, and Compliance (GRC) framework, with a strong emphasis on Business Continuity Management (BCM) and the governance of security tools . This role serves as a bridge between security operations and compliance requirements, ensuring a resilient and well-governed IT environment. Key Responsibilities: GRC & Compliance Governance: Develop, implement, and maintain GRC policies, procedures, and standards aligned with industry best practices (e.g., ISO 27001, NIST) and applicable regulatory frameworks. Conduct regular assessments of internal controls, identify gaps, and recommend improvements. Support internal and external audit processes by preparing documentation and evidence of compliance. Business Continuity Management (BCM): Govern and continuously improve the organization's Business Continuity Management System (BCMS) . Lead efforts in Business Impact Analysis (BIA) , Business Continuity Planning (BCP) , and Disaster Recovery Planning (DRP) . Coordinate testing and review of continuity plans to ensure organizational resilience. Security Tool Governance: Oversee the governance of critical security tools including SIEM, DLP, EDR, IAM, and Firewalls . Define and enforce policies for the effective configuration, deployment, and monitoring of these tools. Establish accountability frameworks for tool ownership, usage, and compliance. Performance Metrics & Reporting: Develop and maintain dashboards and reports to track GRC, BCM, and security tool effectiveness. Present insights and recommendations to senior stakeholders. Cross-Functional Collaboration: Work closely with IT security, infrastructure, and business units to embed GRC practices into daily operations. Ensure security governance is aligned with business and IT strategies. Qualifications: Bachelor’s degree in Computer Science, Information Technology, Cybersecurity, or a related discipline. Minimum of 3 years of hands-on experience in GRC, with strong exposure to BCM and security tool governance . Sound understanding of security frameworks and regulatory requirements. Experience with tools such as SIEM, DLP, IAM, EDR, and firewalls. Strong analytical, documentation, and communication skills. Preferred Skills (Nice to Have): Relevant certifications such as ISO 27001 Lead Implementer/Auditor , CBCP , CISA , or CISSP . Experience in managing third-party risk or vendor assessments. Immediate joiners preferred. Show more Show less

You will be responsible for conducting third-party risk assessments in alignment with ISO 27001:2022 and ISO 22301:2019 frameworks. Your duties will include identifying, assessing, and mitigating risks related to information security, business continuity, and third-party vendors. Collaboration with cross-functional teams and external stakeholders to drive risk mitigation strategies will be a key aspect of your role. Additionally, drafting and reviewing policies, procedures, and audit reports will be part of your responsibilities. As a TPRM Consultant / Senior Consultant, you will need to effectively communicate complex risks and findings to both technical and non-technical audiences. Strong verbal and written communication skills will be essential for this. Furthermore, you will be expected to solve complex problems using structured critical thinking and issue-resolution approaches. Ensuring adherence to internal standards and client requirements at every phase of the engagement will be crucial. Excellent stakeholder management, critical thinking, and problem-solving abilities are key skills required for this role. Language proficiency in English is mandatory for this position. Additionally, fluency in Tamil and Hindi would be considered a plus. Certifications in ISO 27001:2022 or ISO 22301:2019 are mandatory for this role. Possessing certifications such as CEH, CISA, CISM, CompTIA Security+, or GISF would be advantageous.,