Role: Senior Associate
Years of Experience: 46 Years
Location: Bangalore**
Educational Qualification
- Bachelor's degree in Computer Science, Information Technology, Electronics, Electrical Engineering, Cybersecurity, or a related discipline.
- Professional certifications strongly desirable:
- ISO/IEC 27001 Lead Implementer or Lead Auditor
- CISSP, CISM, or equivalent global certifications
- IEC 62443 Practitioner/Expert level certifications
Job Summary
The Senior Associate supports the delivery of cybersecurity consulting engagements across diverse client environments. The role involves conducting cybersecurity gap and risk assessments, supporting the implementation of leading global security frameworks, and developing structured, welldocumented security policies and procedures.
The position requires strong analytical capabilities, handson execution, and the ability to translate technical findings into businessrelevant insights. The Senior Associate will work closely with clients and internal teams, contribute to proposal development, and mentor junior team members. Exposure to complex, IPsensitive technology environments is an advantage. Semiconductor industry experience is preferred.
Key Responsibilities
- Conduct comprehensive cybersecurity gap assessments across client environments, evaluating governance, processes, and technical controls.
- Design, develop, and implement information security frameworks aligned with:
- ISO/IEC 27001:2022
- NIST Cybersecurity Framework (CSF) 2.0
- NIST SP 80053
- Other applicable industry standards
- Perform risk assessments covering:
- Cybersecurity and information security risks
- Business continuity and operational resilience
- Data protection and privacy risks
- Develop and document cybersecurity policies, standards, procedures, and guidelines aligned with global standards and contractual requirements.
- Lead thirdparty security assessments, audits, and maturity evaluations, delivering riskprioritized recommendations.
- Support organizations in improving security maturity, including risk management, control design, remediation planning, and continuous improvement.
- Manage endtoend client engagements including:
- Proposal development and RFP responses
- Engagement planning and execution
- Stakeholder communication, delivery, and reporting
- Collaborate effectively with crossfunctional teams such as IT, engineering, legal, compliance, and business leadership.
Required Skills & Experience
- Strong understanding of cybersecurity risk management, governance, and control frameworks.
- Ability to translate technical findings into clear business insights.
- Strong documentation and executivelevel reporting skills.
- Ability to work across diverse client environments and operating models.
- Capability to drive compliance maturity and build strong stakeholder relationships.
- Understanding of technology or IPdriven environments (e.g., advanced manufacturing, semiconductor) is a plus.
- Awareness of cybersecurity considerations in mixed IT and engineering/OT environments.
Competencies
Accountability | Customer Centricity | Collaboration | Integrity | Perseverance | Learning Mindset | Networking | Communication Skills
Keywords for Job Portals
- Cybersecurity Compliance
- Governance, Risk and Compliance (GRC)
- IEC 62443
- IoT Security
- NIST CSF
- NIST Gap Assessment
