Director - Cybersecurity and Risk Consulting

IN-Director_Cybersecurity _ Cyber as a Service_Advisory_Bangalore

Line of Service

Advisory

Industry/Sector

FS X-Sector

Specialism

Risk

Management Level

Director

Job Description & Summary

At PwC, our people in cybersecurity focus on protecting organisations from cyber threats through advanced technologies and strategies. They work to identify vulnerabilities, develop secure systems, and provide proactive solutions to safeguard sensitive data.

In threat intelligence and vulnerability management at PwC, you will focus on identifying and analysing potential threats to an organisation's security, as well as managing vulnerabilities to prevent cyber attacks. You will play a crucial role in safeguarding sensitive information and enabling the resilience of digital infrastructure.*Why PWCAt PwC, you will be part of a vibrant community of solvers that leads with trust and creates distinctive outcomes for our clients and communities. This purpose-led and values-driven work, powered by technology in an environment that drives innovation, will enable you to make a tangible impact in the real world. We reward your contributions, support your wellbeing, and offer inclusive benefits, flexibility programmes and mentorship that will help you thrive in work and life. Together, we grow, learn, care, collaborate, and create a future of infinite experiences for each other. Learn more about us.At PwC, we believe in providing equal employment opportunities, without any discrimination on the grounds of gender, ethnic background, age, disability, marital status, sexual orientation, pregnancy, gender identity or expression, religion or other beliefs, perceived differences and status protected by law. We strive to create an environment where each one of our people can bring their true selves and contribute to their personal growth and the firm’s growth. To enable this, we have zero tolerance for any discrimination and harassment based on the above considerations. "

Role Summary 

As a Director within the Cyber Security & Risk Consulting practice, you will lead large-scale cyber transformation, regulatory advisory, and security engineering programs across Financial Services institutions and Global Capability Centers (GCCs). 

This role requires deep cyber domain expertise, strong regulatory acumen, commercial ownership, and the ability to advise Boards and CXOs on complex cyber risk matters. The Director will drive revenue growth, lead strategic engagements, and position the firm as a trusted cyber advisor in the FS ecosystem. 

 

Responsibilities 

Cyber Strategy & Transformation Leadership 

• Define enterprise cyber security strategy aligned to business, digital, and cloud transformation objectives. 

• Design and implement security operating models (centralized, federated, hybrid). 

• Lead enterprise-wide cyber maturity assessments across governance, SOC, cloud, IAM, data security, and resilience. 

• Drive cyber transformation programs including: 

• SOC modernization & detection engineering maturity 

• Zero Trust architecture design 

• Cloud security transformation 

• Identity & Access Management strategy 

• Data protection & encryption frameworks 

• Threat intelligence & proactive defense programs 

• Advise on secure digital banking, API security, fintech integrations, and open banking security controls. 

 

Advanced Cyber Security Expertise 

Provide hands-on advisory and oversight across: 

• Security Operations & Threat Management 

• SOC strategy, transformation, and performance optimization. 

• Detection engineering and use-case maturity enhancement. 

• SIEM/SOAR/XDR architecture design and optimization. 

• Threat hunting frameworks aligned to MITRE ATT&CK. 

• Incident response, cyber forensics, and breach readiness. 

• Red team / purple team program advisory. 

• Cloud & Infrastructure Security 

• Cloud security governance (AWS, Azure, GCP). 

• Secure DevSecOps integration. 

• Container & Kubernetes security oversight. 

• Cloud posture management and configuration risk controls. 

• Network security architecture (segmentation, SASE, ZTNA). 

• Identity & Data Security 

• IAM and Privileged Access Management frameworks. 

• Zero Trust access models. 

• Data classification, encryption, and DLP strategy. 

• Privacy-by-design advisory. 

• Emerging Risk Areas 

• AI/ML security risk governance. 

• Ransomware resilience programs. 

• Third-party cyber risk and supply chain security. 

• Operational technology (where applicable in FS ecosystems). 

 

Regulatory & Compliance Advisory (FS Focused) 

• Lead regulatory transformation engagements aligned to RBI, SEBI CSCRF, IRDAI, and global FS regulations. 

• Support supervisory audits, thematic inspections, and remediation governance. 

• Build board-level cyber reporting frameworks. 

• Align cyber programs to NIST CSF, ISO 27001, COBIT, and global best practices. 

• Design operational resilience and crisis management frameworks for regulated entities. 

 

GCC & Cross-Border Cyber Programs 

• Design global cyber governance alignment between GCCs and parent institutions. 

• Establish centralized SOC and cyber command centers within GCC environments. 

• Drive cross-border cyber policy harmonization. 

• Build GCC cyber centers of excellence across threat management and risk governance. 

• Support global transformation programs with regional regulatory alignment. 

 

Revenue, Growth & Market Leadership 

• Own and grow a defined cyber security portfolio within FS. 

• Drive multi-million revenue targets and margin accountability. 

• Lead large RFP pursuits, solution design, and commercial structuring. 

• Develop sector-focused cyber propositions (e.g., Digital Banking Security, GCC SOC Optimization, Regulatory Remediation Programs). 

• Identify and capitalize on cross-service line opportunities. 

 

Required Qualifications & Skills 

• 15–20+ years of experience in Cyber Security & Risk Consulting within Financial Services. 

• Demonstrated expertise across both cyber governance and technical security domains. 

• Proven track record in: 

• Leading complex cyber transformation programs 

• Managing large portfolios and revenue targets 

• Advising CXOs and Board-level stakeholders 

• Deep regulatory knowledge (RBI, SEBI, IRDAI, global FS regulators). 

• Strong exposure to SOC architecture, detection engineering, cloud security, IAM, and resilience programs. 

 

Preferred Certifications: 

CISSP, CISM, CRISC, ISO 27001 LA/LI, CCSP, Cloud Security certifications. 

 

Leadership Attributes 

• Strong executive presence and commercial acumen. 

• Ability to translate cyber risk into measurable business impact. 

• Balanced strategic thinker with strong technical credibility. 

• Growth-oriented, market-driven, and delivery-accountable. 

• High integrity and strong governance mindset. 

Mandatory skill sets: GRC, Cyber Strategy

Preferred skill sets: GRC, Cyber Strategy

Years of experience required: 13+years

Education qualification: Any Graduation

Education (if blank, degree and/or field of study not specified)

Degrees/Field of Study required: MBA (Master of Business Administration), Bachelor of EngineeringDegrees/Field of Study preferred:

Certifications (if blank, certifications not specified)

Required Skills

Cybersecurity Strategy Development

Optional Skills

Accepting Feedback, Accepting Feedback, Active Listening, Analytical Thinking, Cloud Security, Coaching and Feedback, Communication, Conducting Research, Creativity, Cyber Defense, Cyber Threat Intelligence, Embracing Change, Emotional Regulation, Empathy, Encryption, Inclusion, Influence, Information Security, Innovation, Intellectual Curiosity, Intelligence Analysis, Intelligence Report, Intrusion Detection, Intrusion Detection System (IDS), IT Operations {+ 28 more}

Desired Languages (If blank, desired languages not specified)

Travel Requirements

Available for Work Visa Sponsorship?

Government Clearance Required?

Job Posting End Date

May 10, 2026

Experience Level

Executive Level