Cybersecurity and Privacy GRC Specialist

Line of Service

Advisory

Industry/Sector

Not Applicable

Specialism

Cybersecurity & Privacy

Management Level

Senior Associate

Job Description & Summary

At PwC, our people in cybersecurity focus on protecting organisations from cyber threats through advanced technologies and strategies. They work to identify vulnerabilities, develop secure systems, and provide proactive solutions to safeguard sensitive data.

As a cybersecurity generalist at PwC, you will focus on providing comprehensive security solutions and experience across various domains, maintaining the protection of client systems and data. You will apply a broad understanding of cybersecurity principles and practices to address diverse security challenges effectively.

The Role

For our Cybersecurity & Privacy practice, we are looking for you as a Cybersecurity and Privacy GRC Specialist (f/m/d) to start as soon as possible.

This is what you can expect:

Areas of responsibility:
As part of the Cybersecurity and Privacy team of PwC Switzerland, you will work on a variety of cybersecurity and privacy GRC topics and on various types of client engagements.


Broad spectrum:
You will face exciting challenges at the crossroad between laws and regulations and information security. As part of our interdisciplinary team, you will advise our clients on the implementation of the relevant legal requirements. Your focus lies on DORA, the Cyber Resilience Act, NIS2, the EU AI Act and Data Privacy Laws (EU & CH).

You assess the maturity of clients with laws and regulations concerning cybersecurity, data privacy and/or other digital domains, perform gap assessments, assess risks and propose measures to reduce risks and draft recommendation.
You also assists with a pragmatic and practical approach to an efficient implementation of regulatory requirements for our clients.


Responsibility:
We will give you the opportunity to take responsibility and work independently within the scope of the tasks assigned to you.

• You have a Master's or bachelor's degree or an equivalent professional qualification in law, business administration or computer science. Additional certificates such as CIPP/E, CIPM, CIPT, AIGP, ISO/IEC 27001 Foundation or SSCP are a plus.

• You have at minimum 2 years of relevant experience with the topics described above.

• You are knowledgeable about laws and regulations on cybersecurity and privacy of the EU (and also ideally of Switzerland) and possibly other jurisdictions. You understand their impact on globally operating companies that have to comply with the requirements of multiple jurisdictions
• You have a solid foundational understanding of IT and Cybersecurity
• You can work from high-level legal requirements to detailed measures, operationalizable action and pragmatic implementation efforts

• You have a high degree of initiative, self-organization and sense of responsibility.
• You have strong verbal and written communication skills to interact effectively with all levels of management and staff.
• You are fluent in English and (ideally) also in German and/or French.

Education (if blank, degree and/or field of study not specified)

Degrees/Field of Study required:

Degrees/Field of Study preferred:

Certifications (if blank, certifications not specified)

Required Skills

Optional Skills

Accepting Feedback, Accepting Feedback, Active Listening, Agile Methodology, Analytical Thinking, Azure Data Factory, Communication, Creativity, Cybersecurity, Cybersecurity Framework, Cybersecurity Policy, Cybersecurity Requirements, Cybersecurity Strategy, Embracing Change, Emotional Regulation, Empathy, Encryption Technologies, Inclusion, Intellectual Curiosity, Learning Agility, Managed Services, Optimism, Privacy Compliance, Regulatory Response, Security Architecture {+ 8 more}

Desired Languages (If blank, desired languages not specified)

Travel Requirements

Not Specified

Available for Work Visa Sponsorship?

No

Government Clearance Required?

No

Job Posting End Date