4-6 years information security risk compliance experience
2+ years supporting iso 27001 isms operations
Practical experience with audits and nonconformity closure
The role involves supporting a major global program initiative to centralize security services across the PwC network while reducing the attack surface
Job Summary
The role involves supporting a major global program initiative to centralize security services across the PwC network while reducing the attack surface.
You will maintain the Information Security Management System (ISMS), sustain ISO 27001 certification, and perform day-to-day technology risk assessments.
PwC offers a competitive compensation package, inclusive employee benefits, and flexibility programs designed to help you thrive in work and life.
Matching Summary
The role involves supporting a major global program initiative to centralize security services across the PwC network while reducing the attack surface.
Skills & Requirements
Must-have
4-6 years information security risk compliance experience
2+ years supporting ISO 27001 ISMS operations
Practical experience with audits and nonconformity closure
Control testing and evidence management skills
Familiarity with risk frameworks like ISO 27005 or NIST
Nice-to-have
Strong communication and stakeholder management skills
Project management capabilities for deliverable tracking
Experience improving tooling and reporting processes
Knowledge of secure SDLC and enterprise cloud tech
Ability to engage business stakeholders effectively
Key Requirements
Degree in Information Security, Computer Science, Risk/Compliance, or equivalent
ISO 27001 Foundation or Implementer certification preferred
CISM, CRISC, CISSP, CISA, CIPM, or CIPT certifications nice to have
Regulatory knowledge such as GDPR or DORA is beneficial