We are seeking a talented individual to join our Risk Consulting team at Marsh. This role will be based in Mumbai/Pune. This is a hybrid role that has a requirement of working at least three days a week in the office.
Marsh is a global leader in insurance broking and risk management. In more than 130 countries, our experts in every facet of risk and across industries help clients to anticipate, quantify, and more fully understand the range of risks they face.
We will count on you to:
- Support the IMEA CRC practice, and be hands-on in delivery of the consulting projects and mentor the junior colleagues in their projects
- Prepare deliverables for cyber consulting practice under the guidance of the CRC practice
- Conduct research on the clients cybersecurity risk areas and prepare a point of view for consulting
- Support the team towards constant innovation of cybersecurity approach and go-to-market strategy
- Quick learner of the CRC practices procedures and policies, and is able to explain the same to non-technical clients/colleagues
- Understand different domains within cybersecurity space and demonstrate passion
- Is on track to build specialization to demonstrate specialist knowledge in cybersecurity
- Contribute in research support for building a robust CRC practice deliverables
- Will be responsible to maintain key project track record and detailed process documentations
- Delivery of the projects would be done either remotely or onsite depending on the client requirement
- Ability to motivate the team members and take the high road to ensure client success
- Build proposals and pitch to potential clients, including developing compelling presentations and effectively communicating the value proposition of the Cyber Risk Consulting practice.
What you need to have:
The candidate must possess the following attributes:
- 6 to 8 years of professional experience in the cybersecurity consulting domain in Big 4 or boutique firms;
- At least one of the following Professional OT cyber security certifications (e.g. ISA/IEC 62443, EXIDA CACS, GICSP, ISO 27001 or Security+) would be mandatory;
- Expertise in OT security principles and controls. Candidate should ideally have hands-on experience in conducting OT Cyber risk assessments, designing cyber security frameworks (including policies, and procedures), implementations, audits, vendor risk management and user awareness training.
- knowledge of Cyber Security standards/regulations. E.g. ISA/IEC 62443, NIST 800-82, ISO 27001, etc.
- Knowledge of Industrial Automation control systems (e.g. PLCs, HMI, DCS, SCADA, etc.) and OT networking technologies.
- Knowledge of network security control devices/systems (e.g. Firewalls, IDS, IPS, etc.)
- Knowledge of the OSI layer and various OT protocols.
- Knowledge of OT incident response plan (IR) and business continuity plan (BCP).
- Ability to develop quality reports, presentations, and project trackers.
- Should be proficient in Ms. Office applications such as Word, PowerPoint, and Excel. Basic knowledge in Project, Teams, and Visio.
- Effective communicator who is able to share insights with clients/stakeholders
- Strong analytical problem solving skills and experience
- Smart, collaborative, relationship and outcome focused with the ability to make decisions where ambiguity exists;
- Ability to demonstrate sound judgment in the prioritization of competing work assignments, escalation of issues and the formulation of solutions;
- Effective organization skills with key attention to detail and delivery of high quality documentation with the ability to implement/influence change;
- Strong sense of business ethics and principles;
- Graduate degree in Electronics, Computer Science, Cybersecurity, or another related field.
- Excellent English language skills, both verbal and written with the ability to communicate technical matters to a non-technical audience.
- Fluency in additional foreign languages constitutes an advantage.
- Be able to travel globally or regionally on a need basis.
What makes you stand out
- Experience in data governance/data privacy
- Experience of internal or external IT audit
- Knowledge of technical assessments (VA/PT, WAPT, Config. Review etc.)
- Experience with developing cyber security strategies
- Experience in Ms. Visio, Ms. Project
- Fluency in foreign language constitutes an advantage
Why join our team:
- We help you be your best through professional development opportunities, interesting work and supportive leaders.
- We foster a vibrant and inclusive culture where you can work with talented colleagues to create new solutions and have impact for colleagues, clients and communities.
- Our scale enables us to provide a range of career opportunities, as well as benefits and rewards to enhance your well-being
Marsh (NYSE: MRSH) is a global leader in risk, reinsurance and capital, people and investments, and management consulting, advising clients in 130 countries. With annual revenue of over $24 billion and more than 90,000 colleagues, Marsh helps build the confidence to thrive through the power of perspective. For more information, visit corporate.marsh.com, or follow us on LinkedIn and X.
Marsh is committed to embracing a diverse, inclusive and flexible work environment. We aim to attract and retain the best people regardless of their sex/gender, marital or parental status, ethnic origin, nationality, age, background, disability, sexual orientation, caste, gender identity or any other characteristic protected by applicable law.
Marsh is committed to hybrid work, which includes the flexibility of working remotely and the collaboration, connections and professional development benefits of working together in the office. All Marsh McLennan colleagues are expected to be in their local office or working onsite with clients at least three days per week. Office-based teams will identify at least one anchor day per week on which their full team will be together in person
