Director - Cyber Security (Government Consulting)

About KPMG in India

KPMG entities in India are professional services firm(s). These Indian member firms are affiliated with KPMG International Limited. KPMG was established in India in August 1993. Our professionals leverage the global network of firms, and are conversant with local laws, regulations, markets and competition. KPMG has offices across India in Ahmedabad, Bengaluru, Chandigarh, Chennai, Gurugram, Jaipur, Hyderabad, Jaipur, Kochi, Kolkata, Mumbai, Noida, Pune, Vadodara and Vijayawada.

KPMG entities in India offer services to national and international clients in India across sectors. We strive to provide rapid, performance-based, industry-focused and technology-enabled services, which reflect a shared knowledge of global and local industries and our experience of the Indian business environment.

>>About KPMG

KPMG is a global network of professional services firms providing Audit, Tax, and Advisory services. We operate in 143 countries and territories and have over 265,000 people working in member firms around the world. At KPMG in India, we are committed to delivering high-quality services that help our clients navigate complex challenges and drive sustainable growth.

>>About the Digital Government Advisory Team

KPMG India's Digital Government Advisory (DGA) practice helps government bodies modernize public services through technology. It offers strategic consulting, digital architecture, and sector-specific solutions across areas like transport, water, justice, and finance. The team enables large-scale e-Governance, data analytics, and automation to improve efficiency and citizen experience.

>>About the Role:

The Cyber Security Lead will play a pivotal role in defining and executing enterprise-wide cybersecurity strategies for largescale government and public sector projects. This position requires a seasoned leader who can establish governance models,ensure compliance with global security standardsand oversee risk management across multiple programs. You will lead incident response and crisis management efforts, collaborate with senior IT leadership to secure hybrid infrastructures, and drive cybersecurity awareness initiatives. Additionally, you will mentor and build a highperforming team while acting as a trusted advisor toexecutive stakeholders, ensuring the organization remains resilient against evolving cyber threats.

>>Key Responsibilities:

• Develop and implement enterprisewide cybersecurity strategies and frameworks for large-scale projects, with a focus on government and public sector engagements.
• Ensure compliance with global standards and regulatory requirements (NIST, ISO 27001, COBIT, GDPR, IT Act, etc.).
• Drive business development initiatives, including proposal creation, client
• presentations, and revenue growth in the cybersecurity consulting space.
• Serve as a trusted advisor to clients, ensuring delivery excellence and long-term relationships.
• Lead incident response and crisis management, ensuring rapid containment and recovery from security breaches.
• Prepare and present executivelevel reports, dashboards, and risk posture reviews for boards and regulatory bodies.
• Drive cybersecurity awareness and training programs for leadership and employees.
• Build and mentor a highperforming cybersecurity team, fostering innovation and capability development.
• Collaborate with CIOs, CTOs, and senior IT leadership to secure infrastructure,
• applications, and data across hybrid environments.
• Define governance models for risk management, compliance, and regulatory adherence across multiple programs.

Required Skills & Qualifications:

Education: MCA / B.Tech / M.Tech in IT or related field.

Mandatory Certifications: CISSP / CCSP / CISA / CISM.

Preferred Certifications: CEH, ISO 27001 Lead Auditor, or similar.

Experience:

• Minimum 15+ years in cybersecurity or information security.
• Familiarity with data privacy regulations (GDPR, IT Act, etc.).
• Ability to design and implement security policies, procedures, and governance models.
• Strong understanding of security frameworks (NIST, ISO 27001, COBIT).
• Expertise in risk assessment, vulnerability management, compliance audits, and
• incident response planning.
• Demonstrated experience in managing and mentoring high-performing cybersecurity teams, including resource planning, capability development, and leadership coaching.

KPMG India has a policy of providing equal opportunity for all applicants and employees regardless of their color, caste, religion, age, sex/gender, national origin, citizenship, sexual orientation, gender identity or expression, disability, or other legally protected status. As an equal opportunity employer, KPMG is committed to fostering a culture where everyone feels welcomed and is treated fairly. If you have any reasonable accessibility or accommodation requirement that will make you more comfortable during the assessment and recruitment process, please let us know and our Talent Acquisition colleague will connect with you.