Feb 19, 2020
PricewaterhouseCoopers A career in our Strategy, Governance and Management practice, within Cybersecurity and Privacy services, will provide you with the opportunity to help our clients implement an effective cybersecurity programme that protects against threats, propels transformation, and drives growth. As companies pivot toward a digital business model, exponentially more data is generated and shared among organisations, partners and customers. You'll play an integral role in helping our clients ensure they are protected by developing transformation strategies focused on security, efficiently integrate and manage new or existing technology systems to deliver continuous operational improvements and increase their cybersecurity investment, and detect, respond, and remediate threats. Our team helps organisations develop a strategy or governance structure to improve the effectiveness of Information Technology operations. In joining our team, you'll design a blueprint of our clients future operating model as well as a roadmap outlining the various initiatives required to get there. Additionally, you'll help design and implement organisational, reporting and risk management changes necessary to execute strategy. To really stand out and make us fit for the future in a constantly changing world, each and every one of us at PwC needs to be an authentic and inclusive leader, at all grades/levels and in all lines of service. To help us achieve this we have the PwC Professional; our global leadership development framework. It gives us a single set of expectations across our lines, geographies and career paths, and provides transparency on the skills we need as individuals to be successful and progress in our careers, now and in the future. As a Manager, you'll work as part of a team of problem solvers, helping to solve complex business issues from strategy to execution. PwC Professional skills and responsibilities for this management level include but are not limited to: Pursue opportunities to develop existing and new skills outside of comfort zone. Act to resolve issues which prevent effective team working, even during times of change and uncertainty. Coach others and encourage them to take ownership of their development. Analyse complex ideas or proposals and build a range of meaningful recommendations. Use multiple sources of information including broader stakeholder views to develop solutions and recommendations. Address sub-standard work or work that does not meet firm's/client's expectations. Develop a perspective on key global trends, including globalisation, and how they impact the firm and our clients. Manage a variety of viewpoints to build consensus and create positive outcomes for all parties. Focus on building trusted relationships. Uphold the firm's code of ethics and business conduct. Basic Qualifications : Minimum Degree Required : Bachelor Degree Minimum Years of Experience : 6 year(s) Preferred Qualifications : Degree Preferred : Bachelor Degree Preferred Fields of Study : Computer and Information Science, Computer Engineering, Computer Systems Analysis, Information CyberSecurity, Information CyberSecurity & Accounting Additional Educational Preferences : Juris Doctorate will also be considered. Certification(s) Preferred : Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), ISACA, Certified in Risk and Information Systems Control (CRISC). Preferred Knowledge/Skills : Demonstrates extensive knowledge and/or a proven record of success managing cyber-risk management and compliance, including the following areas: - Being recognized as an industry leader, providing industry-leading practices in cyber-risk management and compliance; - Managing and overseeing large projects involving information security, technology risk management, cybersecurity or cyber-risk management; and, - Demonstrating familiarity with common regulatory requirements such as OCC HS, FFIEC, GLBA, NY DFS, GDPR etc. as well as industry frameworks such as NIST CSF, COBIT, ISO, and PCI. Demonstrates extensive abilities and/or a proven record of success solving complex cyber-risk management issues, including the following areas: - Designing and developing IT Risk and Cyber security programs using industry frameworks and methodologies; - Designing KRIs and metrics to build risk reports for management - Implementing and maintaining enterprise-wide cyber risk governance frameworks; - Assessing enterprise-wide business risks and cyber threats; - Developing detailed business risk scenarios and cyber threat models; - Designing and implementing cyber risk management controls; - Monitoring and reporting of cyber risks, threats and vulnerabilities; - Developing, implementing and periodic testing of cyber resiliency plans; - Using tools and technology to provide data analytics and business intelligence on cyber threats, risks and vulnerabilities; - Advising clients on complying with regulatory requirements such as OCC HS, FFIEC, GLBA, NY DFS, GDPR etc. as well as industry frameworks such as NIST CSF, COBIT, ISO and PCI; - Developing frameworks, strategies, and operating models on IT risk management and cyber security for clients; and, - Building and operationalizing complex IT risk management and cyber security programs for clients. Demonstrates extensive abilities and/or a proven record of success managing and delivering client engagements that identify and address client needs, including the following areas: - Leading project workstreams and associated staff on complex cyber risk management engagements; - Managing and overseeing engagements; - Preparing concise and accurate documents, leveraging and utilizing MS Office and Lotus Notes to complete related project deliverables; and, - Managing project financials in line with agreed-upon budgets. Demonstrates extensive abilities and/or a proven record of success managing business functions and teams, including: - Creating a positive working environment by monitoring and managing workloads of the team, balancing client expectations with the work-life quality of team members; - Providing candid, meaningful feedback in a timely manner to team members; and, - Keeping leadership and engagement management informed of progress and issues. All qualified applicants will receive consideration for employment at PwC without regard to race; creed; color; religion; national origin; sex; age; disability; sexual orientation; gender identity or expression; genetic predisposition or carrier status; veteran, marital, or citizenship status; or any other status protected by law. PwC is proud to be an affirmative action and equal opportunity employer. For positions based in San Francisco, consideration of qualified candidates with arrest and conviction records will be in a manner consistent with the San Francisco Fair Chance Ordinance.
Professional Diversity Network New York, NY, USA Full-Time