PwC NIS - Information Security Compliance/Audit Senior Associate in Washington, District Of Columbia
Specialty/Competency: IFS - Information Technology (IT)
Industry/Sector: Not Applicable
Time Type: Full time
Travel Requirements: Up to 20%
A career in Information Security, within Internal Firm Services, will provide you with the opportunity to develop and support our internal security technologies and services across the entire global and local PwC network. You’ll focus on being the forefront of designing, developing, and implementing information technology including hardware, software, and networks that enhances security of internal information and protect our firms intellectual assets.
As a Senior Associate, you'll work as part of a team of problem solvers, helping to solve complex business issues from strategy to execution. PwC Professional skills and responsibilities for this management level include but are not limited to:
Use feedback and reflection to develop self awareness, personal strengths and address development areas.
Delegate to others to provide stretch opportunities, coaching them to deliver results.
Demonstrate critical thinking and the ability to bring order to unstructured problems.
Use a broad range of tools and techniques to extract insights from current industry or sector trends.
Review your work and that of others for quality, accuracy and relevance.
Know how and when to use tools available for a given situation and can explain the reasons for this choice.
Seek and embrace opportunities which give exposure to different situations, environments and perspectives.
Use straightforward communication, in a structured way, when influencing and connecting with others.
Able to read situations and modify behavior to build quality relationships.
Uphold the firm's code of ethics and business conduct.
Job Requirements and Preferences :
Basic Qualifications :
Minimum Degree Required :
High School Diploma
Minimum Years of Experience :
2 year(s) of progressive professional roles involving Project Management, Risk Management, Information Security, or IT Controls Auditing.
Certification(s) Required :
CPA, CISA, CAP, or CRISC
CISSP, CSSLP, or CCSP
Preferred Qualifications :
Degree Preferred :
Preferred Knowledge/Skills :
Demonstrates intimate knowledge of Security domains such as Security and Risk Management, Asset Security, Security Architecture and Engineering, Communication and Network Security, Identity and Access Management (IAM), Security Assessment and Testing, Security Operations, and Software Development Security; and Security, IT, and risk management frameworks, standards, and guidelines (e.g., NIST, COBIT, ISO 2700x, CMMC).
Demonstrates abilities and a proven record of success:
Assessing new global products and services and at defined SDLC toll gates using auditing techniques, available data/reporting, and security assessment tools to facilitate Security by Design;
Assessing existing global products and services to identify gaps using predefined security controls; best practices, and industry standards;
Auditing controls around information security, compliance, and operational processes including current and emerging technologies (e.g., cloud-computing, OneAD, web development tools, Internet of Things (IoT), management consoles, network security, PAM, and *nix-based systems; and,
Reviewing mandatory configuration settings and verifying implementation in accordance with current industry standards.
Demonstrates leadership and management qualities in the following areas:
Creating a positive and motivating environment;
Respecting the work-life quality of team members;
Providing candid, meaningful feedback in a timely manner; and
Keeping leadership informed of progress.
For positions in Colorado, visit the following link for information related to Colorado's Equal Pay for Equal Work Act: https://pwc.to/coloradoifsseniorassociate.