Information Security Client Interactions senior specialist

Job Description & Summary

About the team

PwC’s global cybersecurity strategy focuses on identifying, controlling, and reducing the attack surface across our member firm network and increasing our adversaries’ cost of attack. Our mission protects 370,000 PwC members across 149 member firms worldwide, as well as our global clients.  

The Client Interactions & Contracts (CI&C) team, under PwC’s global Network Information Security organisation (NIS) is a global team responsible for building and maintaining client trust in PwC’s information and cyber security control framework. We are seeking a Senior Associate to join our Global Operations team within CI&C.

Job description & summary

If you love security policy and assessments this is the place to be. Within IT GRC we provide a range of services to the PwC Network of Firms that identify, quantify, and reduce risks to the security of information. These services include IT risk assessment processes, management of IT security controls, information risk assessments, data privacy reviews, managing compliance assessments, supply chain risk management, security policy development, and IT risk due diligence. You will be:

• Contributing to the development of new subject matter and technical domain expertise in the context of client interactions and contract reviews 

• Supporting and leading initiatives to continually improve the service, and identify opportunities to improve both effectiveness and efficiency 

• Supporting and owning service governance initiatives, including providing support with metrics, and other reporting requirements 

• Supporting and leading security interactions with clients, including gathering of controls documentation and supporting evidence to facilitate client reviews, participating in or leading assessments 

• You will collaborate and manage relationships with contributors from multiple teams - including technical subject matter experts and business teams. 

• Contributing security content to Request for Proposals (RFPs), security questionnaires, and due diligence questionnaires 

• Translating and articulate complex technical messages into language that non-technical stakeholders will easily comprehend. 

Requirements of the role

• You have at least 3-4 years of experience in IT Security, GRC, Privacy or IT Audit roles 

• You understand cyber security management frameworks, such as ISO 27001, and how they are applied in the context related systems, processes, and technology 

• You demonstrate functional knowledge of cyber security audits and assessments, customer or client interactions in the context of providing assurance and building trust 

• You have some awareness of information security requirements within privacy laws and associated regulations 

• You can resolve complex issues and conflicting interests with diplomacy or recognising when issues need to be escalated 

• You are an effective cross cultural/region/country communicator and have experience working in an environment that crosses various regions and countries 

• You possess the ability to respond to challenging situations with a pragmatic approach towards solutions 

• You are motivated and able to work under your own initiative, and will take ownership and execute tasks with autonomy 

Our Benefits and Fun

• Concentrated experience and rapid career growth. It may sound like a platitude, but it really is.

• Fair salary and time off in lieu (toil)

• Paid time off 25 days, 3 well being days and 1 extra day off from the company at the end of the year.

• High-end Ultrabook and iPhone with unlimited data.

• The possibility to set your work schedule flexibly. We also offer part-time work from home

• Benefit program with 45.000 points that you can use for holidays, education, food vouchers, sports, health... Simply on what you enjoy. 

• Support for your education and development: we offer business and digital training and many other training and workshops to further develop your personal and professional skills. We pay for technical certifications and the time you spend studying them. 

• Regular feedback on your work, also consultation with a coach with whom you can address your further development and career direction.

PwC is the largest audit team in the Czech Republic, law, tax, consulting and technology, data or forensic teams. Find out how easy it is to combine this knowledge when you're in the right place. With us, you will get the opportunity to see how business is done in large companies. We are part of an international network of companies with more than 364,000 colleagues in 151 countries. At PwC, we create an inclusive work environment where everyone can be themselves and find their place and opportunity to develop.

This year, we have successfully maintained the prestigious Equal Pay Certification, making us one of only four companies in the Czech Republic (and the only one from the Big 4) that demonstrably implements fair compensation practices regardless of gender.

Are you interested in our offer? Let us know about yourself and we will discuss more details together!

Ochrana osobních údajů pro žadatele o zaměstnání  / Privacy Statement for Recruitment Applicants 

#LI-PN1