Senior Associate - Strategy, Risk & Compliance - TPRM [US Client]

Line of Service

Advisory

Industry/Sector

Not Applicable

Specialism

Cybersecurity & Privacy

Management Level

Senior Associate

Job Description & Summary

At PwC, our people in risk and compliance focus on maintaining regulatory compliance and managing risks for clients, providing advice, and solutions. They help organisations navigate complex regulatory landscapes and enhance their internal controls to mitigate risks effectively.

As a risk management generalist at PwC, you will provide advisory and practical support to teams across a wide range of specialist risk and compliance areas.

Focused on relationships, you are building meaningful client connections, and learning how to manage and inspire others. Navigating increasingly complex situations, you are growing your personal brand, deepening technical expertise and awareness of your strengths. You are expected to anticipate the needs of your teams and clients, and to deliver quality. Embracing increased ambiguity, you are comfortable when the path forward isn’t clear, you ask questions, and you use these moments as opportunities to grow.

Examples of the skills, knowledge, and experiences you need to lead and deliver value at this level include but are not limited to:

• Respond effectively to the diverse perspectives, needs, and feelings of others.
• Use a broad range of tools, methodologies and techniques to generate new ideas and solve problems.
• Use critical thinking to break down complex concepts.
• Understand the broader objectives of your project or role and how your work fits into the overall strategy.
• Develop a deeper understanding of the business context and how it is changing.
• Use reflection to develop self awareness, enhance strengths and address development areas.
• Interpret data to inform insights and recommendations.
• Uphold and reinforce professional and technical standards (e.g. refer to specific PwC tax and audit guidance), the Firm's code of conduct, and independence requirements.

• Team members will assist territory engagement teams in performing  vendor assessment and managed services in accordance with  territorial reporting guidelines.   
• Team members would be expected to perform activities that will  include:  Preparation of vendor assessment reports which will include  an analysis of the business profiling questionnaire and due diligence questionnaire of the vendor, review supporting documentation, performing a research on the operations and other relevant information about the  vendor/supplier.  
• Assessment of compliance of vendors against set   standards/controls, SOC and PCI reports etc.  
• Communicate with the clients and vendors and get   clarification  
• Assist in the administrative requirements of the team  
• Team members would be required to apply learning from trainings and  on the job experience to work requests and support continuous process  improvement.  
• Team members would be required to handle multiple tasks at the same  time. Detailed focus when performing work and good project  management skills when managing workload and maintaining  timelines will be necessary.  

Minimum Degree

• Certifications (ISO 27001/ ISO 31000/ CISA/ CISSP/ITIL etc.)  
• Student or bachelor degree in System Field

Knowledge Required:  

▪ Strong knowledge of information security concepts, risk and controls  concepts   

▪ Sound knowledge on IT controls (especially IT risks)  

▪ Sound knowledge of Internal Controls and Compliance  

 

Skills Required: 

Experience with the Microsoft Office suite of products (i.e. Word,  Excel, PowerPoint, Visio, etc.),  

▪ Candidates should have strong verbal and written communication  skills   

▪ Knowledge / experience in fields of Vendor Risk Assessments, Internal Audit, External Audit / Statutory Audit projects  

▪ Candidates should exhibit good client service skill collaterals with a strong focus on building relationships. 

• Understand the importance of have a correct information management

• Knowledge of Information Security and Data Protection 

• Correct Information Security Management

• All qualified applicants will receive consideration for employment at PwC without regard to ethnicity; creed; color; religion; national origin; age; disability; sexual orientation; gender identity or expression; genetic predisposition or carrier status; marital; or any other status protected by law. PwC is proud to be an inclusive organization and equal opportunity employer.

Education (if blank, degree and/or field of study not specified)

Degrees/Field of Study required:

Degrees/Field of Study preferred:

Certifications (if blank, certifications not specified)

Required Skills

Optional Skills

Accepting Feedback, Accepting Feedback, Active Listening, Analytical Thinking, Anti-Money Laundering (AML), Coaching and Training, Communication, Compliance Advisement, Compliance Oversight, Compliance Program Implementation, Compliance Risk Assessment, Confidential Information Handling, Contract Review, Contractual Risk Mitigation, Contractual Risk Monitoring, Contract Writing, Creativity, Crisis Management, Data Loss Prevention (DLP), Data Security, Discretion and Business Ethics, Embracing Change, Emotional Regulation, Empathy, Financial Risk Management {+ 32 more}

Desired Languages (If blank, desired languages not specified)

English

Travel Requirements

Not Specified

Available for Work Visa Sponsorship?

No

Government Clearance Required?

No

Job Posting End Date