Director – Risk Advisory (Cybersecurity)

Job Title:

Director – Risk Advisory (Cybersecurity)

Location:

Experience Required:

Department:

Employment Type:

About the Role

Director – Risk Advisory (Cyber)

Key Responsibilities

Strategic Leadership & Practice Development

• Lead the cybersecurity risk advisory vertical with a focus on

  VAPT

  , threat management, and overall cyber resilience.
• Develop and drive strategies for cybersecurity consulting services aligned with business goals.
• Establish frameworks, methodologies, and innovative approaches for cybersecurity risk management.
• Manage P&L, business development, and client portfolio growth for the cyber risk practice.

Client Engagement & Delivery Management

• Lead end-to-end

  VAPT engagements

  including scoping, planning, execution, and reporting.
• Advise clients on threat detection, vulnerability remediation, and improving security posture.
• Build and maintain strong relationships with CXO-level stakeholders and technical teams.
• Ensure delivery excellence on all client engagements with measurable business outcomes.

Technical Expertise

• Provide subject matter expertise on

  VAPT, red teaming, threat modeling, and incident response

  .
• Oversee testing methodologies for

  web applications, mobile apps, cloud environments, APIs, IoT, and network infrastructure

  .
• Ensure timely identification of security vulnerabilities and recommend actionable mitigation strategies.
• Stay ahead of the evolving cybersecurity threat landscape and regulatory requirements.

Team Leadership

• Lead, mentor, and grow a high-performing cybersecurity consulting team.
• Conduct knowledge-sharing sessions, technical workshops, and training programs.
• Drive talent acquisition and capability building within the cybersecurity practice.

Required Skills & Qualifications

Education & Certifications

• Bachelor’s or Master’s degree in Computer Science, Information Security, or a related field.
• Preferred certifications:

  OSCP, OSWE, CREST, CEH, CISSP, CISM, ISO 27001 LA, CRTP, or equivalent

  .

Technical Expertise

• 12+ years

  of experience in

  cyber risk advisory, VAPT, and security consulting

  .
• Proven experience in handling

  enterprise-scale VAPT projects

  across BFSI, Telecom, and other domains.
• Hands-on understanding of tools like

  Burp Suite, Nessus, Qualys, Metasploit, Nmap, Kali Linux, Wireshark

  , etc.
• Deep knowledge of cloud security, container security, and emerging technologies.

Leadership & Business Skills

• Experience in managing large cybersecurity programs and multiple client portfolios.
• Strong business acumen with the ability to contribute to revenue growth.
• Excellent stakeholder management, negotiation, and presentation skills.