About Deloitte :
- Deloitte- is the brand under which tens of thousands of dedicated professionals in independent firms throughout the world collaborate to provide audit, consulting, financial advisory, risk management, and tax services to selected clients. These firms are members of Deloitte Touche Tohmatsu Limited (DTTL), a UK private company limited by guarantee. Each member firm provides services in a particular geographic area and is subject to the laws and professional regulations of the particular country or countries in which it operates. DTTL and each DTTL member firm are separate and distinct legal entities. Each
DTTL member firm is structured differently in accordance with national laws, regulations, customary practice, and other factors and may secure the provision of professional services in their territories through subsidiaries, affiliates, and/or other entities.
In the United States, Deloitte LLP is the member firm of DTTL. Services are primarily provided by the subsidiaries of
Deloitte LLP, including:
- Deloitte & Touche LLP
- Deloitte Consulting LLP
- Deloitte Financial Advisory Services LLP
- Deloitte Tax LLP
- In India, Deloitte LLP has the following indirect subsidiaries: Deloitte & Touche Assurance & Enterprise Risk Services India Private Limited, Deloitte Consulting India Private Limited, Deloitte Financial Advisory Services India Private Limited, Deloitte Tax Services India Private Limited, and Deloitte Support Services India Private Limited. These entities primarily render services to their respective U.S.-based parents and are collectively referred to as - Deloitte U.S. India- or - U.S. India- .
- Deloitte & Touche Assurance & Enterprise Risk Services India Private Limited (- U.S. India AERS- ) The Deloitte & Touche Assurance & Enterprise Risk Services (AERS) practice assists U.S. and DTTL member firm engagement teams under remote service delivery model and is dedicated to helping organizations manage risk, improve operational performance, and maximize enterprise value. The professionals bring in a business mindset combined with deep technical knowledge and extensive industry experience to creatively address business issues across the full spectrum of accounting, financial instrument valuation, security and privacy, governance, process improvement, data analytics, and risk advisory disciplines.
U.S. India Technology Risk - Security and Privacy (S&P) Services S&P professionals design, develop, and implement industry-leading information security solutions to help organizations protect their information and confidential data and to facilitate ongoing, secure, and reliable operations of their businesses and supporting technologies.
Deloitte helps organizations address a wide range of security requirements, using proven methodologies to design and implement programs and solutions around policies and standards, governance and strategy, metrics, automated dashboards, and automated risk and compliance solutions. Deloitte member firms have the scale, skills, and experience to support clients throughout the transformation journey, from defining a security strategy right through to implementing it.
We offer particular expertise in the areas of :
- Governance and strategy
- International and industry standards
- Risk management and compliance
- Training and awareness
- Effective assurance
- Metrics
Now your role in Deloitte
About Deloitte :
- Deloitte refers to one or more of Deloitte Touche Tohmatsu Limited, a UK private company limited by guarantee, and its network of member firms, each of which is a legally separate and independent entity. Please see www.deloitte.com/about for a detailed description of the legal structure of Deloitte Touche Tohmatsu Limited and its member firms.
- Please see www.deloitte.com/us/about for a detailed description of the legal structure of Deloitte LLP and its subsidiaries. Certain services may not be available to attest clients under the rules and regulations of public accounting.
Member of Deloitte Touche Tohmatsu Limited
Job description :
Function : Deloitte & Touche Assurance & Enterprise Risk Services India Private Limited
Service line Technology Risk - Security and Privacy Services
Designation : Senior Consultant
Role : GRC Architect
Specific skill set required GRC Requirements Analysis and Design, GRC Implementation
Graduation : B.E. Any graduate
Professional qualification : CISSP (Preferred), RSA Archer Certified Administrator (Preferred), IBM OpenPages
Developer (Preferred) :
Work experience : 4+ years
The key skills and job responsibilities include the following :
- Experience in architecting GRC solutions using tools like RSA Archer, IBM OpenPages, MetricStream, RSAM etc.
- Hands on GRC implementation experience for at least 2-3 years
- Understanding of typical risk and compliance process flows like risk management, compliance management, issue and corrective action plan management, exception management, policy lifecycle management, third party risk management, audit management, security operations management etc.
- Ability to document GRC functional, technical and reporting specifications
- Ability to design data/object models, technical workflows diagrams, access control models etc.
- Understanding and knowledge of industry standards and industry frameworks (e.g., COBIT, COSO, ISO 27001, PCI, NIST).
- Functional and nonfunctional security requirements definition and documentation experience is desirable.
- Excellent documentation and communication skills.
- Ability to cross skill and work with teams across geographies
Technical Specifications :
- Demonstrated competence with GRC tools like RSA Archer, IBM OpenPages, Metric Stream, RSAM etc.
- Experience of Integration with tools like SIEM, UCMDB, Vulnerability Scan tools, Configuration Check tools, LDAP etc.
- Experience in Web services and API is desirable
- Experience in .NET, Java is desirable
Other details :
Work timing 9:00 a.m. to 6:00 p.m. (expected to stretch during peak periods)
Location - Hyderabad, Mumbai, Bangalore, Gurgaon
Didn’t find the job appropriate? Report this Job