Risk Assessment - PCI DSS / NIST / ISO Standard / Hippa

ROLE & RESPONSIBILTY:

• Conduct thorough and detailed cyber risk assessments for our clients, analyzing their digital infrastructure, systems, and security controls.
• Collaborate with cross-functional teams to gather essential information and data required for comprehensive risk assessments.
• Evaluate and interpret assessment results to identify potential vulnerabilities and risks, and provide actionable recommendations for risk mitigation.
• Stay up-to-date with the latest cyber threats, attack vectors, and industry best practices to enhance the effectiveness of risk assessments.
• Prepare and deliver clear and concise reports summarizing the findings of risk assessments to clients and internal stakeholders.
• Provide expert advice and consultancy to clients, guiding them in implementing robust cybersecurity risk management strategies.
• Mentor and support junior team members to foster their professional growth and skills in cyber risk assessments.

Risk Consulting

IT Advisory Cyber Security:

Cyber Risk Assessments

The information contained herein is of a general nature and is not intended to address the circumstances of any particular individual or entity. Although

we endeavour to provide accurate and timely information, there can be no guarantee that such information is accurate as of the date it is received or

that it will continue to be accurate in the future. No one should act on such information without appropriate professional advice after a thorough

examination of the particular situation.

2020 KPMG, an Indian Registered Partnership and a member firm of the KPMG network of independent member firms affiliated with KPMG

International Cooperative (“KPMG International”), a Swiss entity. All rights reserved. The KPMG name and logo are registered trademarks or

trademarks of KPMG International.

REQUIREMENTS:

• Bachelor's or Master's degree in Computer Science, Cybersecurity, Information Technology, or related fields.
• A minimum of 5+ years of hands-on experience in conducting cyber risk assessments and related security assessments.•Industry certifications such as CISSP, CCSP, CISA, CISM, CRISC, ISO/IEC:27001/22301/20000 LI/LA or equivalent are highly valued.
• Profound knowledge of cybersecurity frameworks, industry standards, and best practices.•Proficiency in using various security assessment and techniques.
• Strong analytical and problem-solving skills, with the ability to think critically and strategically.
• Excellent communication and presentation skills, capable of effectively communicating technical concepts to both technical and non-technical audiences.
• Demonstrated experience in project management and handling multiple assessments simultaneously.
• A proactive and self-motivated approach to work, with a commitment to continuous learning and professional development.
• Network Security, infrastructure assessment and network architecture design review.
• Conceptual knowledge of OT Security/ISA 62443 standard is preferable.

>>CRITERIA

oEducation 60% above throughout academicsoOne 3 years (at least) regular course is must either Diploma or GraduationoCourse: B.E. / B. Tech / MCA / M. Tech / MBA degree or equivalentoCertification: CISM / CISSP / CCSP / CISA / CRISC / ITIL / ISO 27001/22301/20000 LI/LA (At least one)oCCNA (Mandatory), CCNP or equivalent(optional).