Information Security Client Interactions - Senior Associate

Job Description & Summary

PwC’s global cybersecurity strategy focuses on identifying, controlling, and reducing the attack surface across our member firm network and increasing our adversaries’ cost of attack. Our mission protects 370,000 PwC members across 149 member firms worldwide, as well as our global clients.  

The Client Interactions & Contracts (CI&C) team, under PwC’s global Network Information Security organisation (NIS) is a global team responsible for building and maintaining client trust in PwC’s information and cyber security control framework. We are seeking a Senior Associate to join our Global Operations team within CI&C. 

Key Responsibilities 

• Contributing to the development of new subject matter and technical domain expertise in the context of client interactions and contract reviews 
• Supporting and leading initiatives to continually improve the service, and identify opportunities to improve both effectiveness and efficiency 
• Supporting and owning service governance initiatives, including providing support with metrics, and other reporting requirements 
• Supporting and leading security interactions with clients, including gathering of controls documentation and supporting evidence to facilitate client reviews, participating in or leading assessments 
• You will collaborate and manage relationships with contributors from multiple teams - including technical subject matter experts and business teams. 
• Contributing security content to Request for Proposals (RFPs), security questionnaires, and due diligence questionnaires 
• Translating and articulate complex technical messages into language that non-technical stakeholders will easily comprehend. 

The skills and experience we’re looking for: 

• You have at least 3-4 years of experience in IT Security, GRC, Privacy or IT Audit roles 
• You understand cyber security management frameworks, such as ISO 27001, and how they are applied in the context related systems, processes, and technology 
• You demonstrate functional knowledge of cyber security audits and assessments, customer or client interactions in the context of providing assurance and building trust 
• You have some awareness of information security requirements within privacy laws and associated regulations 
• You can resolve complex issues and conflicting interests with diplomacy or recognising when issues need to be escalated 
• You are an effective cross cultural/region/country communicator and have experience working in an environment that crosses various regions and countries 
• You possess the ability to respond to challenging situations with a pragmatic approach towards solutions 
• You are motivated and able to work under your own initiative, and will take ownership and execute tasks with autonomy