Senior Manager - Risk Consulting

Company:Marsh

Description:

We are seeking a talented individual to join our Risk Consulting team at Marsh Mc Lennan. This role will be based in Mumbai. This is a hybrid role that has a requirement of working at least three days a week in the office

Job Profile: Senior Manager, Cyber Risk Consulting, Marsh

The global Cyber Risk Consulting (CRC) practice of Marsh Advisory supports customers to understand, estimate and mitigate cyber risks. This role is open in Marsh McLennan Global Services (MMGS) a global in-house center for MMC Group. The MMGS in Mumbai has a function called ‘Knowledge Services’ which supports the MMC group by providing specialized services. Under the Knowledge Services function, there is Marsh Advisory team, which supports the global clients and colleagues, this role will initiate a new service line for Marsh Advisory team in Mumbai, which entails supporting the CRC colleagues in execution of the cyber consulting projects.

We will count on you to:

• Support the IMEA CRC practice, and be hands-on in delivery of the consulting projects and mentor the junior colleagues in their projects

• Prepare deliverables for cyber consulting practice under the guidance of the CRC practice

• Conduct research on the clients cybersecurity risk areas and prepare a point of view for consulting

• Support the team towards constant innovation of cybersecurity approach and go-to-market strategy

• Quick learner of the CRC practices’ procedures and policies, and is able to explain the same to non-technical clients/colleagues

• Understand different domains within cybersecurity space and demonstrate passion

• Is on track to build specialization to demonstrate specialist knowledge in cybersecurity 

• Contribute in research support for building a robust CRC practice deliverables

• Will be responsible to maintain key project track record and detailed process documentations

• Delivery of the projects would be done either remotely or onsite depending on the client requirement

• Ability to motivate the team members and take the high road to ensure client success

• Build proposals and pitch to potential clients, including developing compelling presentations and effectively communicating the value proposition of the Cyber Risk Consulting practice.

What you need to have:

The candidate must possess the following attributes:

• 6 to 8 years of professional experience in the cybersecurity consulting domain in Big 4 or boutique firms;

• At least one of the following Professional OT cyber security certifications (e.g. ISA/IEC 62443, EXIDA CACS, GICSP, ISO 27001 or Security+) would be mandatory;

• Expertise in OT security principles and controls. Candidate should ideally have hands-on experience in conducting OT Cyber risk assessments, designing cyber security frameworks (including policies, and procedures), implementations, audits, vendor risk management and user awareness training.

• knowledge of Cyber Security standards/regulations. E.g. ISA/IEC 62443, NIST 800-82, ISO 27001, etc.

• Knowledge of Industrial Automation control systems (e.g. PLCs, HMI, DCS, SCADA, etc.) and OT networking technologies.

• Knowledge of network security control devices/systems (e.g. Firewalls, IDS, IPS, etc.)

• Knowledge of the OSI layer and various OT protocols.

• Knowledge of OT incident response plan (IR) and business continuity plan (BCP).

• Ability to develop quality reports, presentations, and project trackers.

• Should be proficient in Ms. Office applications such as Word, PowerPoint, and Excel. Basic knowledge in Project, Teams, and Visio.

• Effective communicator who is able to share insights with clients/stakeholders

• Strong analytical problem solving skills and experience

• Smart, collaborative, relationship and outcome focused with the ability to make decisions where ambiguity exists;

• Ability to demonstrate sound judgment in the prioritization of competing work assignments, escalation of issues and the formulation of solutions;

• Effective organization skills with key attention to detail and delivery of high quality documentation with the ability to implement/influence change;

• Strong sense of business ethics and principles;

• Graduate degree in Electronics, Computer Science, Cybersecurity, or another related field.

• Excellent English language skills, both verbal and written with the ability to communicate technical matters to a non-technical audience.

• Fluency in additional foreign languages constitutes an advantage.

• Be able to travel globally or regionally on a need basis.

What makes you standout:

• Experience in data governance/data privacy

• Experience of internal or external IT audit

• Knowledge of technical assessments (VA/PT, WAPT, Config. Review etc.)

• Experience with developing cyber security strategies

• Experience in Ms. Visio, Ms. Project

• Fluency in foreign language constitutes an advantage.

Why join our team:

• We help you be your best through professional development opportunities, interesting work and supportive leaders.

• We foster a vibrant and inclusive culture where you can work with talented colleagues to create new solutions and have impact for colleagues, clients and communities.

• Our scale enables us to provide a range of career opportunities, as well as benefits and rewards to enhance your well-being.

Marsh, a business of Marsh McLennan (NYSE: MMC), is the world’s top insurance broker and risk advisor. Marsh McLennan is a global leader in risk, strategy and people, advising clients in 130 countries across four businesses: Marsh, Guy Carpenter, Mercer and Oliver Wyman. With annual revenue of $24 billion and more than 90,000 colleagues, Marsh McLennan helps build the confidence to thrive through the power of perspective. For more information, visit marsh.com, or follow on LinkedIn and X.Marsh McLennan is committed to embracing a diverse, inclusive and flexible work environment. We aim to attract and retain the best people and embrace diversity of age, background, caste, disability, ethnic origin, family duties, gender orientation or expression, gender reassignment, marital status, nationality, parental status, personal or social status, political affiliation, race, religion and beliefs, sex/gender, sexual orientation or expression, skin color, or any other characteristic protected by applicable law.

Marsh McLennan is committed to hybrid work, which includes the flexibility of working remotely and the collaboration, connections and professional development benefits of working together in the office. All Marsh McLennan colleagues are expected to be in their local office or working onsite with clients at least three days per week. Office-based teams will identify at least one “anchor day” per week on which their full team will be together in person.