PwC NIS - Technology Risk and Data Security Strategist Director in Harrisburg, Pennsylvania
Specialty/Competency: IFS - Information Technology (IT)
Industry/Sector: Not Applicable
Time Type: Full time
Travel Requirements: Up to 20%
A career in Information Security, within Internal Firm Services, will provide you with the opportunity to develop and support our internal security technologies and services across the entire global and local PwC network. You’ll focus on being the forefront of designing, developing, and implementing information technology including hardware, software, and networks that enhances security of internal information and protect our firms intellectual assets.
As a Director, you'll work as part of a team of problem solvers, helping to solve complex business issues from strategy to execution. PwC Professional skills and responsibilities for this management level include but are not limited to:
Support team to disrupt, improve and evolve ways of working when necessary.
Arrange and sponsor appropriate assignments and experiences to help people realise their potential and support their long-term aspirations.
Identify gaps in the market and spot opportunities to create value propositions.
Look for opportunities to scale efficiencies and new ways of working across multiple projects and environments.
Create an environment where people and technology thrive together to accomplish more than they could apart.
I promote and encourage others to value difference when working in diverse teams.
Drive and take ownership for developing connections that help deliver what is best for our people and stakeholders.
Influence and facilitate the creation of long-term relationships which add value to the firm.
Uphold the firm's code of ethics and business conduct.
Job Requirements and Preferences :
Basic Qualifications :
Minimum Degree Required :
High School Diploma
Minimum Years of Experience :
8 year(s) in progressive professional roles involving information security and/or IT Risk management.
Preferred Qualifications :
Degree Preferred :
Preferred Fields of Study :
Information CyberSecurity, Information Technology
Preferred Knowledge/Skills :
Demonstrates thought leader-level abilities as a team leader, emphasizing the following areas:
Understanding Information Security Policy and Risk Management principles as they are applied in the support of and integration with key business and strategic priorities;
Leading and managing others and performing work with significant independence;
Developing perspectives on technology and data security risks and drafting white-papers or position statements on how to address;
Developing security strategies to address evolving risks and regulatory requirements around IT and data security and data sovereignty, or providing input to same;
Engaging business, security and technology stakeholders at all levels to understand requirements, find solutions, and improve buy-in;
Collaborating with Chief Data Officers to define and develop data protection policies to keep pace with emerging threats and drive data quality;
Developing a risk-based and data-driven strategy and outcome-driven roadmap for enterprise network security solutions, in partnership with engineering, cybersecurity and operations leaders, customers, and other stakeholders;
Anticipating resistors and actively converting them to advocates with roles to play;
Translating requirements, assessing risks and identifying gaps to recommend solutions that guide enterprise security technology decision-making;
Assessing the robustness of cybersecurity architectures, technologies, and procedures being implemented within organization;
Providing thought leadership and influencing the security architecture design and development of technologies, services, tools and processes that reduce risks and align to a global central service environment;
Mapping long term business requirements to security architecture frameworks such as TOGAF, SABSA, Zachman;
Assisting in planning and executing activities related to risk, control, compliance and internal audit, internal stakeholder engagements in the following areas: IT strategy and governance, IT operations, business continuity and disaster recovery, network and infrastructure security, cybersecurity, cloud and third parties, data management and analytics, emerging technology and digital solutions, IT and transformation programs and projects, application controls, and regulatory/compliance requirements;
Working closely with the Chief Technology Risk Officer in the coordination and alignment of the above activities;
Possessing ability to strategically think, assess risks/gaps/opportunities, and recommend solutions;
Possessing effective leadership, analytical and problem-solving skills;
Understanding of the cybersecurity threat landscape;
Willing to take initiative, solve problems, and work under tight deadlines;
Possessing highly effective written, verbal and presentation skills;
Demonstrating the self-motivated driven mindset with ability to get results;
Possessing the ability to work well with all levels of the organization in a fast paced, dynamic environment;
Possessing effective progression in a global organization; and,
Developing, assessing, and/ or implementing IT Security strategies, architectures, controls, processes.
At PwC, our work model includes three ways of working: virtual, in-person, and flex (a hybrid of in-person and virtual). Visit the following link to learn more: https://pwc.to/ways-we-work.
PwC does not intend to hire experienced or entry level job seekers who will need, now or in the future, PwC sponsorship through the H-1B lottery, except as set forth within the following policy: https://pwc.to/H-1B-Lottery-Policy.
For positions in Colorado, visit the following link for information related to Colorado's Equal Pay for Equal Work Act: https://pwc.to/coloradoifsdirector.