PwC Cybersecurity TPRM Manager in New York, New York
PwC is a network of firms committed to delivering quality in assurance, tax and advisory services.
We help resolve complex issues for our clients and identify opportunities. Learn more about us at www.pwc.com/us.
At PwC, we develop leaders at all levels. The distinctive leadership framework we call the PwC Professional (http://pwc.to/pwcpro) provides our people with a road map to grow their skills and build their careers. Our approach to ongoing development shapes employees into leaders, no matter the role or job title.
Are you ready to build a career in a rapidly changing world? Developing as a PwC Professional means that you will be ready
- to create and capture opportunities to advance your career and fulfill your potential. To learn more, visit us at www.pwc.com/careers.
PwC Advisory helps our clients with their most challenging imperatives from strategy through execution. We combine the breadth of knowledge of over 48,000 global professionals with deep industry knowledge to deliver custom solutions for our clients. We work with the world's largest and most complex companies and understand the unique business issues and opportunities our clients face.
As we aim to rapidly grow our Cybersecurity and Privacy practice, we are looking for consultants who are passionate about how strategy and technology can improve the role of cybersecurity, privacy and data protection in our digital world.
We are looking for consultants with extensive consulting, technological and industry experience who will help our clients solve their complex business issues from strategy through execution. A Cybersecurity and Privacy consulting career will provide the opportunity to grow and contribute to our clients' business issues every day, applying a collection of information and Cyber security capabilities, including security and privacy strategy and governance, IT risk, security testing, technology implementation/operations, and cybercrime and breach response.
Our Strategy and Transformation services help clients understand the current cybersecurity and privacy landscape, make cybersecurity a collective priority, and develop and implement solutions across people, processes, and technologies. We provide the foundations to design, manage and operate a cybersecurity program aligned to business strategy, and increase organizational resilience in the face of an ever-changing threat landscape.
Minimum Year(s) of Experience: 6 6+ years of experience in Third Party Risk Management or Audit.
Minimum Degree Required: Bachelor's degree
Demonstrates extensive knowledge and/or a proven record of success developing and implementing enterprise and third party risk strategies for common third party risk issues/challenges facing clients who provide products and services in several sectors, preferably for a global network of professional services firm, with emphasis in the following areas:
Writing, communicating, facilitating, and presenting cogently to and/or for all levels of industry audiences, clients and internal staff/management;
Possessing technical and operational third party risk and/or standard industry practices relating to third party risk, in order to assist clients with assessing their posture and improving their program;
Understanding of common third party risk industry standards/ regulations/regulators (e.g. GDPR, HIPAA / HITECH, EU GDPR, OCC, FRB, HKMA, PRA, APRA, JFSA, RBI, BaFin, CFPB, SEC etc.), especially as it relates to building a program and/or managing internal controls, risk assessments, business process or operational auditing; and,
Consulting and implementing projects in third party risk-related areas such as third party origination and inherent risk measurement, segmentation and residual risk models, policy and procedures design and development, due diligence and on-going monitoring assessment execution, oversight and governance, data modeling and technology enablement, Issue and exception management.
Demonstrates extensive knowledge and/or a proven record of success in emerging technologies, such as Governance Risk and Compliance (GRC) technologies.
Demonstrates extensive knowledge and/or a proven record of success in understanding principles and industry leading practices (industry certifications preferred) in Risk Assessment skills,
Audit background, including familiarity with SOC I (SSAE16) and SOC II, ISO 27001, etc.
Demonstrates extensive abilities and/or a proven record of success assisting in client-facing engagement delivery, practice development, business development and thought leadership, preferably for a global network of professional services firms, including the following areas:
Managing and/or contributing to project planning, engagement administration, budget management, and successful completion of engagement workstream(s);
Communicating in an organized and knowledgeable manner in written and verbal formats, including delivering clear requests for information and communicating potential conflicts, assisting business development teams responsible for writing and presenting proposals to prospective clients, and fostering and maintaining lasting relationships with senior executives;
Identifying and addressing client needs while displaying the ability to contribute to the development of a business vision and manage implementation efforts with complex project management capabilities;
Managing client and account relationships, identifying opportunities and developing the appropriate approach to successfully close and deliver the engagement;
Configuring, managing and deploying enterprise GRC technologies;
Managing teams in a fast paced environment;
Communicating and working with senior level stakeholders on a regular basis; and,
Independently managing and prioritizing work load.
All qualified applicants will receive consideration for employment at PwC without regard to race; creed; color; religion; national origin; sex; age; disability; sexual orientation; gender identity or expression; genetic predisposition or carrier status; veteran, marital, or citizenship status; or any other status protected by law.