- Serve as Subject matter Expert (SME) in at least one or more cybersecurity domains such as IAM, SOC, vulnerability management, Secure SDLC, Business Continuity & Disaster recovery, Threat Protection, Security Architecture & Engineering, Role Based access control, Zero trust principles, Multi Factor Authentication, Threat intelligence and Incident management
- Demonstrate strong working knowledge across complementary cybersecurity domains and lead modernization efforts including the automation of vulnerability management, Penetration Testing, Red Teaming and patching across systems, while ensuring integration with SOC and IAM teams, etc.
- Architect and implement security frameworks including Zero Trust and multi-cloud security for AWS/Azure/GCP, etc.
- Demonstrate strong understanding of Network security and architecture
- Build and scale cybersecurity capabilities in global delivery models and enterprise environments, with experience navigating dynamic, fast evolving environments (e.g., Worked at GCC of a global bank, supporting operations across multiple countries).
- Exhibit strong cultural alignment and interpersonal skills to work effectively with global leadership and cross-functional teams (e.g., Led weekly cross-functional sync-ups with different teams, ensuring seamless communication and delivery across cultural and time zone differences).
- Demonstrate hands-on experience in securing cloud-based infrastructures and implementing modern architectural frameworks such as Zero Trust (e.g., Designed and implemented Zero Trust architecture for a multi-cloud (AWS, Azure) environment, including integration of Identity-Aware Proxy, continuous authentication, and segmentation)
- Experience in scaling up cybersecurity capabilities in global delivery models and managing geographically distributed teams of about 200 professionals (e.g., Built and scaled a global security operations center (SOC) across multiple countries)
- Lead and mentor a global technical team, setting performance standards and guiding career development (e.g. Managed and mentored a team of 15+ security engineers across multiple regions, conducting performance reviews, setting KPIs, and developing customized training plans etc.)
- Experience with security tool stack including DLP, Proxy, NAC, Firewall, EDR, SIEM, SOC, IDS/IPS, APT, WAF, Firewall rule reviews, etc.
- Experience in optimizing security architecture integration and resolving implementation challengesExperience with intrusion detection systems, PKI implementation, digital forensics, and advanced security tools.
- Develop and implement staffing and operational plans, leveraging global workforce models (e.g., Designing a hybrid staffing model leveraging internal employees and managed service partners. Creating operational runbooks, 24x7 shift rotations, skill matrices for optimized resource deployment etc).
- Demonstrate understanding of site security requirements for Indian operations including CERT-In, ISO standards, IT Act etc. (e.g., Lead implementation and periodic audits of security controls to maintain regulatory readiness and mitigate compliance risks for India-based operations to ensure alignement with national standards such as CERT-In Advisories, ISO frameworks, and provisions under the IT Act .
- Drive continuous improvement initiatives and implement technologies that enhance cyber delivery (e.g., Developed and tracked cyber delivery KPIs to identify improvement areas, standardized security engineering processes to improve service delivery consistency etc.).
- Develop and implement staffing and operational plans. Leverage various staffing options and manages a global workforce. Set short and long term department goals and ensures alignment with the overall strategy. Monitor service delivery metrics and overall performance.
- Design and implement changes to department policies and procedures to meet changing business needs and to achieve department objectives. Identify opportunities for continuous improvement and implement appropriate strategies and technologies for building products and delivering services.
- Lead quality initiatives to improve the delivery of service levels. Plan, develop, and execute short and long-range goals to ensure divisional success.
- Build and maintain relationships with key stakeholders to provide long-term collaborations and deliver successful business outcomes.
- Monitor expenses to ensure department operates within budgetary guidelines. Lead the strategy and execution to build, buy, and integrate business technology solutions.
- Ensure complies with information technology and information security policies and procedures, and verifies that deliverables meet requirements.
- Participate in special projects and performs other duties as assigned.
- Oversee the planning, execution, and delivery of IT projects, ensuring alignment with the organizations business objectives and strategic goals.
- Develop comprehensive project plans, sets timelines, allocates resources efficiently, and manages budgets to ensure successful project delivery.
- Lead cross-functional teams, fostering collaboration and effectively communicating project progress and updates to stakeholders.
- Identify potential risks throughout the project lifecycle and implements strategies to mitigate them, ensuring smooth project delivery.
- Manage vendor relationships and third-party service providers, ensuring timely and quality deliverables within project scope.
Skills and attributes for success
- A team player with strong analytical, communication and interpersonal skills
- Constantly updating yourself about new technologies in the market
- A winning personality and the ability to become a trusted advisor to the stakeholders
To qualify for the role, you must have
- Minimum 18 years of experience in IT delivery, project management, or technology leadership roles, with expertise in software implementation and team management.
- Bachelor s degree (B.E./B.Tech) in Computer Science, Information Technology, or related field; Master s degree in Technology, Business Administration, or equivalent preferred.
- Proven experience in IT project planning, software development lifecycle (SDLC), and enterprise software delivery.
- Strong knowledge in vendor management, risk mitigation, and budget control.
- Experience in cybersecurity principles and integrating security best practices into IT solutions.
- Proven experience in managing large-scale projects within the GCC region, demonstrating deep understanding of local regulations, cultural dynamics, and stakeholder engagement.
- Strong communication and leadership skills for managing cross-functional teams and external vendors.
Ideally, you ll also have
- Strong verbal and written communication, facilitation, relationship-building, presentation and negotiation skills.
- Be highly flexible, adaptable, and creative.
- Comfortable interacting with senior executives (within the firm and at the client)
- Strong teamwork, work ethic, product mindset, client centricity and a relentless commitment to EY values.
