Cybersecurity Audit Manager

Role Overview

We are seeking a highly skilled and self-driven Cybersecurity Audit Manager to establish and grow our cybersecurity and IT audit practice in Ahmedabad. This is a leadership role in a new geography where the individual will work independently, managing client relationships end-to-end, driving engagements, leading audits, and contributing significantly to business development and practice growth.

The ideal candidate should possess a strong understanding of Cybersecurity, ITGC, and IT Risk Management, with hands-on exposure to application, network, and API security. This role demands a blend of technical acumen, stakeholder management, and entrepreneurial drive.

Key Responsibilities

1. Client & Engagement Management

Independently lead cybersecurity and IT audit engagements for clients across BFSI, telecom, manufacturing, and GCC sectors.

Manage client expectations, build trusted relationships with CXOs, CISOs, and internal audit heads.

Plan, scope, and execute IT and cybersecurity audits aligned to global standards (e.g., ISO 27001, NIST CSF, COBIT).

Review audit workpapers, findings, and ensure quality and timely deliverables.

Act as a single point of contact for clients in the Ahmedabad region.

2. Technical & Audit Delivery

Conduct risk-based cybersecurity audits, vulnerability reviews, configuration assessments, and ITGC testing.

Evaluate areas including:

Application Security: authentication controls, API vulnerabilities, secure SDLC practices.

Network Security: firewalls, IDS/IPS, endpoint controls, and patch management.

Infrastructure & Cloud Security: access control, backup, DR/BCM, and cloud posture assessments.

Cyber Resilience: SOC, incident response, and log management.

Collaborate with remote teams for specialist reviews such as red teaming, penetration testing, and data privacy assessments.

3. Stakeholder & Team Leadership

Build relationships with internal stakeholders including partners, service line leaders, and delivery teams across other regions.

Provide mentoring and technical guidance to junior consultants (onsite or remote).

Represent the Ahmedabad location in regional leadership discussions and capability growth initiatives.

4. Business Development & Market Growth

Identify new opportunities with existing and potential clients for cybersecurity, IT risk, and digital trust services.

Participate in proposal writing, RFP responses, and client presentations.

Engage in networking events, roundtables, and thought leadership campaigns to enhance firm visibility in the Gujarat market.

Drive regional revenue targets and build a local client portfolio.

Qualifications & Experience

Education: B.E./B.Tech in Computer Science, Information Technology, or related field; MBA preferred.

Certifications (preferred): CISA, CISSP, CISM, ISO 27001 LA, CEH.

Experience:

710 years of experience in cybersecurity, IT audit, or technology risk consulting.

Hands-on audit experience in Cybersecurity, ITGC, Application Security, and Network Security.

Proven track record of managing end-to-end client engagements independently.

Prior exposure to business development and client acquisition is highly desirable.

Core Skills

Strong understanding of security domains application, network, endpoint, and cloud.

Familiarity with frameworks such as ISO 27001, NIST CSF, CIS Controls, COBIT, and ITIL.

Ability to interpret technical vulnerabilities and translate them into business risks.

Excellent communication, presentation, and stakeholder management skills.

Entrepreneurial mindset with a drive to build and expand a new market.