Line of Service

Internal Firm Services

Industry/Sector

Not Applicable

Specialism

Operations

Management Level

Manager

Job Description & Summary

At PwC, our people in cybersecurity focus on protecting organisations from cyber threats through advanced technologies and strategies. They work to identify vulnerabilities, develop secure systems, and provide proactive solutions to safeguard sensitive data.

Those in application security at PwC will be responsible for providing security services to development teams including code scanning, readiness testing, and penetration testing to enable application teams to build and deploy secure applications in Production. You will utilise a risk-based methodology and "shift-left" approach to engage early in the software development lifecycle.

*Why PWC

At PwC, you will be part of a vibrant community of solvers that leads with trust and creates distinctive outcomes for our clients and communities. This purpose-led and values-driven work, powered by technology in an environment that drives innovation, will enable you to make a tangible impact in the real world. We reward your contributions, support your wellbeing, and offer inclusive benefits, flexibility programmes and mentorship that will help you thrive in work and life. Together, we grow, learn, care, collaborate, and create a future of infinite experiences for each other. Learn more about us.

At PwC, we believe in providing equal employment opportunities, without any discrimination on the grounds of gender, ethnic background, age, disability, marital status, sexual orientation, pregnancy, gender identity or expression, religion or other beliefs, perceived differences and status protected by law. We strive to create an environment where each one of our people can bring their true selves and contribute to their personal growth and the firm’s growth. To enable this, we have zero tolerance for any discrimination and harassment based on the above considerations. "

Responsibilities:

As a Manager-DPO office, you would be responsible for,

Ensure that the PwC staff, its employees and contractors are aware of  PwC India Data Protection Policy,  best practices on ongoing basis through awareness programsTo identify, document, test and improve controls to ensure Information Protection across business LinesBe the first subject matter expert for enquiries from staff on Data Protection and its requirements, providing them with appropriate advice and guidance.Ensure Compliance to Data Protection and Privacy regulations, achieving and monitoring compliance including any remedial measuresWorking closely with IT and Business lines, ensure that the Data Protection and Privacy requirements are part of operational procedures.Undertake proactive compliance check activities and implement measures that promote good Data Protection and Privacy working practices and compliance with regulatory requirements.Ensure that the principles, e.g. Privacy by design and DP by default is achievedCreate registers as required by legislation, e.g. the type of personal data that we hold, who processes it and who we share it with.Carry out DP audits and spot-checks to monitor compliance.Maintain a risk assessment process for personal data including Data Protection Risk Assessments and DP Impact Assessments Ensure that the documentation requirements(DPRA, DIPA) are reviewed and actions taken on the Data Protection related requirements for new Projects, implementations and during third party onboardingReview and provide feedback on Data Protection related clauses in the client contracts. Ensure that the third party contracts include appropriate Data Protection clauses during service introduction

Mandatory skill sets:

Maintain a risk assessment process for personal data including Data Protection Risk Assessments and DP Impact Assessments Ensure that the documentation requirements(DPRA, DIPA) are reviewed and actions taken on the Data Protection related requirements for new Projects, implementations and during third party onboardingReview and provide feedback on Data Protection related clauses in the client contracts. Ensure that the third party contracts include appropriate Data Protection clauses during service introductionGDPRExperience in conducting Data Protection Risk Assessment /Data Protection Impact Assessments

Preferred skill sets:

Deep Understanding of DPDP Act 2023 and  GDPR requirements and its implementationGood understanding of computer systems, databases and applications Security. Especially on how personal data is stored and processed

Years of experience required:

8 + years

Education qualification:

B.Tech

Education (if blank, degree and/or field of study not specified)

Degrees/Field of Study required: Bachelor of Engineering

Degrees/Field of Study preferred:

Certifications (if blank, certifications not specified)

Required Skills

Data Privacy

Optional Skills

Accepting Feedback, Accepting Feedback, Active Listening, Analytical Thinking, Application Security, Application Security Assessment, Azure Data Factory, Cloud Application Development, Cloud Security, Coaching and Feedback, Coding Standards, Communication, Creativity, Cybersecurity, DevOps Practices, Embracing Change, Emotional Regulation, Empathy, Endpoint Security, Forensic Investigation, Hosting Controllers, Inclusion, Information Security, Intellectual Curiosity, Learning Agility {+ 35 more}

Desired Languages (If blank, desired languages not specified)

Travel Requirements

0%

Available for Work Visa Sponsorship?

No

Government Clearance Required?

No

Job Posting End Date