About Us:

Grant Thornton is one of the world’s leading organizations of independent assurance, tax and advisory firms. With
more than 53,000 Grant Thornton people, across over 135 countries, we are focused on making a difference to
clients, colleagues, and the communities in which we live and work. We are ranked one of the top six firms in 88
markets around the world and we're well established in all major business centers and emerging markets.
We are one of the largest fully integrated Assurance, Tax and Advisory firms in the country. We aim to be the No. 1
firm in providing robust advisory and growth solutions to dynamic Indian global companies.
We run focused programmes in six key sectors: Automotive, Banking, Financial Services, and Insurance (BFSI),
Consumer Products, Healthcare and Life Sciences, Media, and Real Estate. We have a deep understanding of these
sectors, including emerging trends, challenges, disruptions, and issues faced by the companies we serve in these
sectors.
To know more about us: www.grantthornton.in

About Cyber and IT Risk (Trust & Transformation):

Our advisory services provide organization with the right recommendations and benchmarks to address their cyber
security concerns. IT consulting enables organization to identify and manage IT security risks to protect data, assets,
people and identities. Our IT advisory services help companies align with national and global regulatory compliance
requirements, IT Enabled Process Transformation and help identify, monitor and remediate IT & Cyber Security
Risks across IT infrastructure, ERP, networks in an organization.

Job Description and Requirements:

1) Cyber Security — Process & Audit requirements Role

— Consultant
Location — Delhi NCR
Education: MBA

Job Description: -

Roles & Responsibilities (essential functions and responsibilities of the job):

The tasks, roles and responsibilities concerned with the job will include the following:
• Executing various audit engagements as a support to field in-charge and
• Apply current knowledge of IT trends and systems to identify security and risk management issues, and other
opportunities for improvement
• Assist in the planning and execution of business process control reviews, information systems audits, and other
Assurance offerings across a variety of industries
• A good understanding of clients Business Risks, Audit Risks, IT Risks and the mitigating controls in addressing
these risks
• Gain strong comprehension of client operations, processes, and business objectives and utilize that knowledge
on engagements.
• Evaluate and test business processes and controls and identify areas of risks.
• Data Analysis using CAATs tool like Excel, ACL, SQL etc
Knowledge, Skills and Abilities
Required:
Education and Experience:
1) Cyber Security — Process & Audit requirements:
Role: Consultant
Others: CISA, CISSP, ISO 27001:2013 LA, CIPP, CIPM (Preferred)
Certifications: AWS, Azure, Google Cloud, CCNA, One Trust
Essential: Willing to relocate and travel based on business requirement
Good knowledge about Risks and Controls in Business processes and IT General Controls with preferred
experience between 0 – 3 years in the relevant area. Strong background in performing risk assessments as part of
ISMS implementations. Knowledge or past experience of BFSI or other industry and the nature of data handled is
preferred.
Excellent communication skills as the job profile would require the candidate to be in a client facing role.

2) Cyber Security -Technical profile

Role — Consultant
Others: CEH, OSCP(Preferred)
Certifications: AWS, Azure, Google Cloud, CCNA, CCSP
Job Description -
• Exposure to technology implementations and sustenance preferably DLP, SIEM, firewall, IDAM
• Willing to conduct Application Security testing for Web, Mobile, client Server application to assess the
vulnerabilities, Manual and Automated testing of Application, database.
• Well versed with security controls as per Open Source Security Testing Methodology Manual (OSSTMM),
OWASP, SANS.
• Willing to perform source code review of different application and to be aware of false positives and creating
Proof-of-concept (PoC) for reporting as required.
• Should have knowledge of database vulnerability assessment, issue reports on assigned application and
system scans.
• Should have the knowledge of Internet and Intranet Penetration Testing on IPs, URL’s, system vulnerabilities
 (previous experience preferred).
• Should be able to demonstrate vulnerabilities to application/system owners, and provide recommendations for
mitigation
• Should have strong technical knowledge such as network infrastructure, applications, system in BFSI and
technology industry.
• Build customized scripts using open source tools
• Should facilitate in custom client specific reports, custom reusable scripts, technology specific scanning profiles
• Should know how to build security configuration document based on best practices and CIS benchmarks
• Should build Knowledgebase and develop standard work instructions from Cyber technology perspective
• Carry out evaluation of technology and product solutions in areas of Security Testing
• Should perform client secure network infrastructure, conduct due diligence and suggest risk remedial and
mitigation action based on the testing results.

Academic Qualifications:
Full time MBA candidate
60% and above throughout academics (Xth, XIIth, Grad and PG)
No standing arrears

Essential Skills:
• Strong analytical ability
• A thorough understanding of business process, accounts, emerging IT Trends
• Ability to manage the field work and ability to work with cross functional team
• Strong communication & writing skills
• A good understanding of Internal Control Process
• A good understanding of Sarbanes Oxley requirements
• A good understanding of ISO 27001, ISO 22301, Privacy (GDPR, POPI), CERT-IN, etc.
Desirable Skills:
• Communicate with Impact & Empathy
• Develop Self & Others through Coaching
• Build & Sustain Relationships
• Be Passionate about Client Service
• Be Curious: Learn, Share & Innovate
• Lead & Contribute to Team Success
• Demonstrate Courage & Integrity
• Acquire and Apply Commercial & Technical Expertise
• Manage Projects & Economics
• Be Open Minded, Practical & Agile