Line of Service
AdvisoryIndustry/Sector
FS X-SectorSpecialism
RiskManagement Level
Senior AssociateJob Description & Summary
A career within Cybersecurity and Privacy services, will provide you with the opportunity to help our clients implement an effective cybersecurity programme that protects against threats, propels transformation, and drives growth. As companies pivot toward a digital business model, exponentially more data is generated and shared among organisations, partners and customers. We play an integral role in helping our clients ensure they are protected by developing transformation strategies focused on security, efficiently integrate and manage new or existing technology systems to deliver continuous operational improvements and increase their cybersecurity investment, and detect, respond, and remediate threats.*Why PWC
At PwC, you will be part of a vibrant community of solvers that leads with trust and creates distinctive outcomes for our clients and communities. This purpose-led and values-driven work, powered by technology in an environment that drives innovation, will enable you to make a tangible impact in the real world. We reward your contributions, support your wellbeing, and offer inclusive benefits, flexibility programmes and mentorship that will help you thrive in work and life. Together, we grow, learn, care, collaborate, and create a future of infinite experiences for each other. Learn more about us.
At PwC, we believe in providing equal employment opportunities, without any discrimination on the grounds of gender, ethnic background, age, disability, marital status, sexual orientation, pregnancy, gender identity or expression, religion or other beliefs, perceived differences and status protected by law. We strive to create an environment where each one of our people can bring their true selves and contribute to their personal growth and the firm’s growth. To enable this, we have zero tolerance for any discrimination and harassment based on the above considerations. "
Responsibilities:
Strong understanding of IT General Controls domains such as Change Management, User Access Management, IT Operations, Back and Recovery Management etcStrong understanding of the third-party risk managementImplementation and assessment knowledge of various industry standards, frameworks, and compliances such as ISO 27001, HIPAA, HITRUST, ISO 22301, ISO 27701 etcUnderstanding of the IT Risk Assessment methodologies and ability to comprehend and apply the knowledge during IT assessment lifecycleInterview client stakeholders and conducts walkthrough meetings and develop assessment artifactsShould understand complete assessment lifecycle from assessment scoping to project deliverablesGreat communication skills and the ability to break down and explain complex data security problemsExcellent presentation skills and ability to effectively communicate proposals and point of view at senior management levelsEducation:
Minimum Qualification: BE/ BTech/MBA/Mtech/MCAPostgraduates in any stream would be preferred (not mandatory)Prior Big 4 experience would be an added advantageExperience in IT Risk Advisory/ Assurance for varied industry segments preferredExcellent communication skills - both written and oralCertifications:
CIA/CISA/CISM will be added advantageMandatory skill sets:
ITGC Reviews, IT Internal Audits, Controls Testing, Compliance Reviews, ISO 27001 Reviews, HIPAA/ HITRUST Reviews
Preferred skill sets:
ISO 27001 Reviews, HIPAA/ HITRUST Reviews
Years of experience required:
2-8
Education qualification:
BE, B.tech, ME, M.tech, MCA, MBA, Mcom, CA, CS
Education (if blank, degree and/or field of study not specified)
Degrees/Field of Study required: Chartered Accountant Diploma, Master of Business Administration, Master of Engineering, Bachelor of EngineeringDegrees/Field of Study preferred:Certifications (if blank, certifications not specified)
Required Skills
ITGCOptional Skills
Desired Languages (If blank, desired languages not specified)
Travel Requirements
Available for Work Visa Sponsorship?
Government Clearance Required?
Job Posting End Date