Line of Service
Advisory
Industry/Sector
Not Applicable
Specialism
Cybersecurity & Privacy
Management Level
Senior Associate
Job Description & Summary
A career in our Cybersecurity, Privacy and Forensics will provide you the opportunity to solve our clients most critical business and data protection related challenges. You will be part of a growing team driving strategic programs, data analytics, innovation, deals, cyber resilency, response, and technical implementation activities. You will have access to not only the top Cybersecurity, Privacy and Forensics professionals at PwC, but at our clients and industry analysts across the globe.
Our Regulatory Compliance team focuses on helping our clients understand their regulatory landscape on a domestic and global scale. You'll work with our clients aligning a number of different cyber, privacy and industry frameworks and requirements to their business. This includes, but is not limited to: NIST CSF, ITIL, HIPAA, PCI, FDA, FERC/NERC, OCC, FFIEC, ABAC, Cyber Executive Orders, etc. Our team designs, implements, and maintains an effective compliance program that helps our clients manage the risks against regulatory compliance obligations, as well as control framework commitments to their Board/stakeholders.
Our team also works with regulatory examiners, investigators, and industry leaders to continue to stay ahead of upcoming regulatory changes or enforcements. We help inform our clients on controls or requirements that require enhancements, and help with the compliance change management components driving new technical and business requirements out to their end users. You will be part of a team that not only assesses organizational compliance, but helps clients to strategically think through the best way to manage in a cost-effective, yet defensible manner.
To really stand out and make us fit for the future in a constantly changing world, each and every one of us at PwC needs to be an authentic and inclusive leader, at all grades/levels and in all lines of service. To help us achieve this we have the PwC Professional; our global leadership development framework. It gives us a single set of expectations across our lines, geographies and career paths, and provides transparency on the skills we need as individuals to be successful and progress in our careers, now and in the future.
As a Senior Associate, you'll work as part of a team of problem solvers, helping to solve complex business issues from strategy to execution. PwC Professional skills and responsibilities for this management level include but are not limited to:
- Use feedback and reflection to develop self awareness, personal strengths and address development areas.
- Delegate to others to provide stretch opportunities and coach to help deliver results.
- Develop new ideas and propose innovative solutions to problems.
- Use a broad range of tools and techniques to extract insights from from current trends in business area.
- Review your work and that of others for quality, accuracy and relevance.
- Share relevant thought leadership.
- Use straightforward communication, in a structured way, when influencing others.
- Able to read situations and modify behavior to build quality, diverse relationships.
- Uphold the firm's code of ethics and business conduct.
Meaningful work you’ll be part of
As a Senior Associate, you’ll work as part of a team of problem solvers, helping to solve complex business issues from strategy to execution. Responsibilities include but are not limited to::
- Developing cyber risk strategies
- Identifying cyber risks and developing cyber risk registers
- Developing and maintaining cyber risk management and reporting frameworks.
- Conducting various cyber risk assessments.
- Developing and delivering comprehensive risk reports to provide detailed insights of the current state of its cyber risks.
- Performing cyber threat modeling and business impact analyses to ensure cyber assets are adequately protected with proper cybersecurity measures and controls.
- Managing cyber risk using GRC platforms.
- Developing KRIs and identifying how to measure and report on KRIs.
- Collaborating with key client business stakeholders to facilitate cyber risk analysis and informed decision-making.
- Ensuring that risk-based management choices align with laws and regulations that are applicable to our clients
Experiences and skills you’ll use to solve.
`
- Technical designations such as CISSP, CRISC, CISA preferred.
- A firm understanding of cyber security frameworks such as those published by leading organizations (e.g. NIST, SANS, ISO etc.). Ability to translate framework to practical advice to clients.
- Good mix of business and technical capabilities, and the ability to communicate on current cyber risk issues to senior executives within the context of their business.
- Being able to design and deliver cyber security strategies, operating models, assessments and reports to meet Canadian, US and global regulatory requirements.
- Ability to identify cyber risk management opportunities with clients and propose solutions that meet the client’s needs.
- Clear and articulate written and verbal communication skills along with strong presentation and report writing skills.
- The ability to work on a number of projects, meet deadlines and manage stakeholder expectations.
Professional and Educational Background
• Bachelor's Degree Preferred.
Education (if blank, degree and/or field of study not specified)
Degrees/Field of Study required:Degrees/Field of Study preferred:
Certifications (if blank, certifications not specified)
Required Skills
Optional Skills
Desired Languages (If blank, desired languages not specified)
Travel Requirements
0%
Available for Work Visa Sponsorship?
No
Government Clearance Required?
No
Job Posting End Date