Risk & Controls (Non-US) - Technology Internal Audit (Cyber Security) - BLR/HYD/KOL

Line of Service

Advisory

Industry/Sector

Not Applicable

Specialism

Business Controls

Management Level

Senior Associate

Job Description & Summary

A career within Internal Audit services, will provide you with an opportunity to gain an understanding of an organisation’s objectives, regulatory and risk management environment, and the diverse needs of their critical stakeholders. We focus on helping organisations look deeper and see further considering areas like culture and behaviours to help improve and embed controls. In short, we seek to address the right risks and ultimately add value to their organisation.

To really stand out and make us fit for the future in a constantly changing world, each and every one of us at PwC needs to be a purpose-led and values-driven leader at every level. To help us achieve this we have the PwC Professional; our global leadership development framework. It gives us a single set of expectations across our lines, geographies and career paths, and provides transparency on the skills we need as individuals to be successful and progress in our careers, now and in the future.

As a Senior Associate, you'll work as part of a team of problem solvers, helping to solve complex business issues from strategy to execution. PwC Professional skills and responsibilities for this management level include but are not limited to:

• Use feedback and reflection to develop self awareness, personal strengths and address development areas.

• Delegate to others to provide stretch opportunities, coaching them to deliver results.

• Demonstrate critical thinking and the ability to bring order to unstructured problems.

• Use a broad range of tools and techniques to extract insights from current industry or sector trends.

• Review your work and that of others for quality, accuracy and relevance.

• Know how and when to use tools available for a given situation and can explain the reasons for this choice.

• Seek and embrace opportunities which give exposure to different situations, environments and perspectives.

• Use straightforward communication, in a structured way, when influencing and connecting with others.

• Able to read situations and modify behavior to build quality relationships.

• Uphold the firm's code of ethics and business conduct.

Reporting:

• This position reports to the FS Technology Internal Audit - Manager/ Senior Manager 

Essential Duties and Responsibilities:

• Deliver technology focused internal audit reviews within the financial service sector in the areas of cyber, cloud computing, IT governance, risk and compliance, etc. 

• Review test findings, facilitate the remediation of IT control gaps,

• and escalate possible critical issues to senior management within the team.

• Mentor and develop peer and associates, monitor their work, and

• take corrective action when necessary.

• Build and maintain strong peer relationships within the team and across the organisation.

• Stay updated on emerging technology risks, trends. Stay informed on industry best practices and regulatory requirements related to technology controls.

• Ensure compliance with engagement plans and internal quality & risk management procedures.

Interpersonal Skills:

• Excellent analytical and problem-solving skills.

• Strong written and verbal communication skills.

• Ability to work independently and collaboratively in a team environment.

• Attention to detail and ability to meet deadlines.

• Build and maintain client relationships by understanding and being responsive to client needs and ensuring high quality of deliverables.

• Ability to research and understand complex processes and effectively communicate them to interested parties.

• Ability to apply analytics, process automation and develop a data driven internal audit approach.

• Comfortable working on multiple projects simultaneously.

Minimum Qualifications and experience:

• Bachelor's degree in information technology, computer science, or a related field.

• Candidates with 3-5 years of relevant experience in similar roles, preferably with a “Big 4” or equivalent.

• Experience in internal audit, external audit, or a related field.

• Experience in technology and cybersecurity controls testing.

• Experience in 1 or more of the following areas is essential:

  • IT general controls testings, 

  • Security strategy, governance, risk and compliance,

  • Security policies, procedures, standards and controls in line with regulation and/or current standards, ISO27001, NIST, SANS etc.,

  • Data privacy and data protection controls,

  • Cloud technologies and cloud security,

  • Third party security, 

  • Vulnerability management,

  • Incident response. 

• Knowledge of regulations and standards relating to protection of data and cybersecurity (PCI, GDPR, SWIFT, etc.).

• Experience using industry best practice frameworks (e.g. NIST CSF, ISO 27001, CIS, SANS, etc.)

• Experience designing continuous auditing and monitoring tools and techniques is a plus.

Certification(s) preferred: 

• Professional certification such as CISA / CISM / CRISC / CISSP / ISO 27001 certifications or equivalent.

Education (if blank, degree and/or field of study not specified)

Degrees/Field of Study required:

Degrees/Field of Study preferred:

Certifications (if blank, certifications not specified)

Required Skills

Optional Skills

Desired Languages (If blank, desired languages not specified)

Travel Requirements

Not Specified

Available for Work Visa Sponsorship?

No

Government Clearance Required?

Yes

Job Posting End Date

October 31, 2024