Cybersecurity Audit Manager

Role Overview

We are seeking a highly skilled and self-driven Cybersecurity Audit Manager to establish and grow our cybersecurity and IT audit practice in Ahmedabad. This is a leadership role in a new geography where the individual will work independently, managing client relationships end-to-end, driving engagements, leading audits, and contributing significantly to business development and practice growth.

The ideal candidate should possess a strong understanding of Cybersecurity, ITGC, and IT Risk Management, with hands-on exposure to application, network, and API security. This role demands a blend of technical acumen, stakeholder management, and entrepreneurial drive.

Key Responsibilities

1. Client & Engagement Management

• Independently lead cybersecurity and IT audit engagements for clients across BFSI, telecom, manufacturing, and GCC sectors.

• Manage client expectations, build trusted relationships with CXOs, CISOs, and internal audit heads.

• Plan, scope, and execute IT and cybersecurity audits aligned to global standards (e.g., ISO 27001, NIST CSF, COBIT).

• Review audit workpapers, findings, and ensure quality and timely deliverables.

• Act as a single point of contact for clients in the Ahmedabad region.

2. Technical & Audit Delivery

• Conduct risk-based cybersecurity audits, vulnerability reviews, configuration assessments, and ITGC testing.

• Evaluate areas including:

• Application Security: authentication controls, API vulnerabilities, secure SDLC practices.

• Network Security: firewalls, IDS/IPS, endpoint controls, and patch management.

• Infrastructure & Cloud Security: access control, backup, DR/BCM, and cloud posture assessments.

• Cyber Resilience: SOC, incident response, and log management.

• Collaborate with remote teams for specialist reviews such as red teaming, penetration testing, and data privacy assessments.

3. Stakeholder & Team Leadership

• Build relationships with internal stakeholders including partners, service line leaders, and delivery teams across other regions.

• Provide mentoring and technical guidance to junior consultants (onsite or remote).

• Represent the Ahmedabad location in regional leadership discussions and capability growth initiatives.

4. Business Development & Market Growth

• Identify new opportunities with existing and potential clients for cybersecurity, IT risk, and digital trust services.

• Participate in proposal writing, RFP responses, and client presentations.

• Engage in networking events, roundtables, and thought leadership campaigns to enhance firm visibility in the Gujarat market.

• Drive regional revenue targets and build a local client portfolio.

Qualifications & Experience

• Education: B.E./B.Tech in Computer Science, Information Technology, or related field; MBA preferred.

• Certifications (preferred): CISA, CISSP, CISM, ISO 27001 LA, CEH.

• Experience:

• 7–10 years of experience in cybersecurity, IT audit, or technology risk consulting.

• Hands-on audit experience in Cybersecurity, ITGC, Application Security, and Network Security.

• Proven track record of managing end-to-end client engagements independently.

• Prior exposure to business development and client acquisition is highly desirable.

Core Skills

• Strong understanding of security domains – application, network, endpoint, and cloud.

• Familiarity with frameworks such as ISO 27001, NIST CSF, CIS Controls, COBIT, and ITIL.

• Ability to interpret technical vulnerabilities and translate them into business risks.

• Excellent communication, presentation, and stakeholder management skills.

• Entrepreneurial mindset with a drive to build and expand a new market.