PwC Cyber Risk Management and Compliance Senior Associate in New York, New York

PwC/LOS Overview

PwC is a network of firms committed to delivering quality in assurance, tax and advisory services.

We help resolve complex issues for our clients and identify opportunities. Learn more about us at www.pwc.com/us.

At PwC, we develop leaders at all levels. The distinctive leadership framework we call the PwC Professional (http://pwc.to/pwcpro) provides our people with a road map to grow their skills and build their careers. Our approach to ongoing development shapes employees into leaders, no matter the role or job title.

Are you ready to build a career in a rapidly changing world? Developing as a PwC Professional means that you will be ready

  • to create and capture opportunities to advance your career and fulfill your potential. To learn more, visit us at www.pwc.com/careers.

PwC Advisory helps our clients with their most challenging imperatives from strategy through execution. We combine the breadth of knowledge of over 48,000 global professionals with deep industry knowledge to deliver custom solutions for our clients. We work with the world's largest and most complex companies and understand the unique business issues and opportunities our clients face.

Job Description

As we aim to rapidly grow our Cybersecurity and Privacy practice, we are looking for consultants who are passionate about how strategy and technology can improve the role of cybersecurity, privacy and data protection in our digital world.

We are looking for consultants with extensive consulting, technological and industry experience who will help our clients solve their complex business issues from strategy through execution. A Cybersecurity and Privacy consulting career will provide the opportunity to grow and contribute to our clients' business issues every day, applying a collection of information and Cyber security capabilities, including security and privacy strategy and governance, IT risk, security testing, technology implementation/operations, and cybercrime and breach response.

Our Strategy and Transformation services help clients understand the current cybersecurity and privacy landscape, make cybersecurity a collective priority, and develop and implement solutions across people, processes, and technologies. We provide the foundations to design, manage and operate a cybersecurity program aligned to business strategy, and increase organizational resilience in the face of an ever-changing threat landscape.

Position/Program Requirements

Minimum Year(s) of Experience: 4

Minimum Degree Required: Bachelor's degree

Degree Preferred: Cybersecurity, Computer Science, Computer Engineering, Information Technology, Engineering, Computer Application, Business, Juris Doctor.

Certification(s) Preferred: Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), ISACA, Certified in Risk and Information Systems Control (CRISC).

Knowledge Preferred:

Demonstrates thorough knowledge and/or a proven record of success in cyber-risk management and compliance, including:

  • Demonstrating familiarity with common regulatory requirements such as OCC HS, FFIEC, GLBA, NY DFS, GDPR etc. as well as industry frameworks such as NIST CSF, COBIT, ISO, and PCI.

Skills Preferred:

Demonstrates thorough abilities and/or a proven record of success solving complex cyber-risk management issues, including the following areas:

  • Designing and developing IT Risk and Cyber security programs using industry frameworks and methodologies;

  • Designing KRIs and metrics to build risk reports for management;

­- Assessing enterprise-wide business risks and cyber threats;

­- Designing and implementing cyber risk management controls;

  • Monitoring and reporting of cyber risks, threats and vulnerabilities;

  • Using tools and technology to provide data analytics and business intelligence on cyber threats, risks and vulnerabilities;

  • Advising clients on complying with regulatory requirements such as OCC HS, FFIEC, GLBA, NY DFS, GDPR etc. as well as industry frameworks such as NIST CSF, COBIT, ISO and PCI; and,

  • Building and operationalizing complex IT risk management and cyber security programs for clients.

Demonstrates thorough abilities and/or a proven record of success delivering client engagements that identify and address client needs, including the following areas:

  • Participating actively in client discussions and meetings;

­- Preparing concise and accurate documents, leveraging and utilizing MS Office and Lotus Notes to complete related project deliverables; and,

­- Managing project financials in line with agreed-upon budgets.

All qualified applicants will receive consideration for employment at PwC without regard to race; creed; color; religion; national origin; sex; age; disability; sexual orientation; gender identity or expression; genetic predisposition or carrier status; veteran, marital, or citizenship status; or any other status protected by law.