IN-Director_Cybersecurity _ Cyber as a Service_Advisory_Bangalore

Role Summary 

As a Director within the Cyber Security & Risk Consulting practice, you will lead large-scale cyber transformation, regulatory advisory, and security engineering programs across Financial Services institutions and Global Capability Centers (GCCs). 

This role requires deep cyber domain expertise, strong regulatory acumen, commercial ownership, and the ability to advise Boards and CXOs on complex cyber risk matters. The Director will drive revenue growth, lead strategic engagements, and position the firm as a trusted cyber advisor in the FS ecosystem. 

Responsibilities 

Cyber Strategy & Transformation Leadership 

• Define enterprise cyber security strategy aligned to business, digital, and cloud transformation objectives. 

• Design and implement security operating models (centralized, federated, hybrid). 

• Lead enterprise-wide cyber maturity assessments across governance, SOC, cloud, IAM, data security, and resilience. 

• Drive cyber transformation programs including: 

• SOC modernization & detection engineering maturity 

• Zero Trust architecture design 

• Cloud security transformation 

• Identity & Access Management strategy 

• Data protection & encryption frameworks 

• Threat intelligence & proactive defense programs 

• Advise on secure digital banking, API security, fintech integrations, and open banking security controls. 

Advanced Cyber Security Expertise 

Provide hands-on advisory and oversight across: 

• Security Operations & Threat Management 

• SOC strategy, transformation, and performance optimization. 

• Detection engineering and use-case maturity enhancement. 

• SIEM/SOAR/XDR architecture design and optimization. 

• Threat hunting frameworks aligned to MITRE ATT&CK. 

• Incident response, cyber forensics, and breach readiness. 

• Red team / purple team program advisory. 

• Cloud & Infrastructure Security 

• Cloud security governance (AWS, Azure, GCP). 

• Secure DevSecOps integration. 

• Container & Kubernetes security oversight. 

• Cloud posture management and configuration risk controls. 

• Network security architecture (segmentation, SASE, ZTNA). 

• Identity & Data Security 

• IAM and Privileged Access Management frameworks. 

• Zero Trust access models. 

• Data classification, encryption, and DLP strategy. 

• Privacy-by-design advisory. 

• Emerging Risk Areas 

• AI/ML security risk governance. 

• Ransomware resilience programs. 

• Third-party cyber risk and supply chain security. 

• Operational technology (where applicable in FS ecosystems). 

Regulatory & Compliance Advisory (FS Focused) 

• Lead regulatory transformation engagements aligned to RBI, SEBI CSCRF, IRDAI, and global FS regulations. 

• Support supervisory audits, thematic inspections, and remediation governance. 

• Build board-level cyber reporting frameworks. 

• Align cyber programs to NIST CSF, ISO 27001, COBIT, and global best practices. 

• Design operational resilience and crisis management frameworks for regulated entities. 

GCC & Cross-Border Cyber Programs 

• Design global cyber governance alignment between GCCs and parent institutions. 

• Establish centralized SOC and cyber command centers within GCC environments. 

• Drive cross-border cyber policy harmonization. 

• Build GCC cyber centers of excellence across threat management and risk governance. 

• Support global transformation programs with regional regulatory alignment. 

Revenue, Growth & Market Leadership 

• Own and grow a defined cyber security portfolio within FS. 

• Drive multi-million revenue targets and margin accountability. 

• Lead large RFP pursuits, solution design, and commercial structuring. 

• Develop sector-focused cyber propositions (e.g., Digital Banking Security, GCC SOC Optimization, Regulatory Remediation Programs). 

• Identify and capitalize on cross-service line opportunities. 

Required Qualifications & Skills 

• 15–20+ years of experience in Cyber Security & Risk Consulting within Financial Services. 

• Demonstrated expertise across both cyber governance and technical security domains. 

• Proven track record in: 

• Leading complex cyber transformation programs 

• Managing large portfolios and revenue targets 

• Advising CXOs and Board-level stakeholders 

• Deep regulatory knowledge (RBI, SEBI, IRDAI, global FS regulators). 

• Strong exposure to SOC architecture, detection engineering, cloud security, IAM, and resilience programs. 

Preferred Certifications: 

CISSP, CISM, CRISC, ISO 27001 LA/LI, CCSP, Cloud Security certifications. 

Leadership Attributes 

• Strong executive presence and commercial acumen. 

• Ability to translate cyber risk into measurable business impact. 

• Balanced strategic thinker with strong technical credibility. 

• Growth-oriented, market-driven, and delivery-accountable. 

• High integrity and strong governance mindset.