PwC Singapore

Parent Category: Job Listings - Public Domain Listings Category: Security Engineers Published: Monday, 14 September 2020
NOTE: The following job description was extracted from public domain and published here as a value added service to BizLINKS Resources members. We are currently not a direct vendor to the above organisation and would be interested to work with the above through a internal organisation referral
 Employer Referral

Information Security Analyst at PwC Singapore

Job Description & Summary PwC is driving major change across information and cyber security by building a centralized model to provide security services across the entire global network of member firms. Mandated at the global network level, Network Information Security (NIS) operates outside Information Technology (IT) and is responsible for this major program initiative, from definition of the security strategy to the execution of the global Cyber Readiness Program, moving from local to globally-provided services. Our mission is to identify, control, and reduce the attack surface across the network of member firms while increasing our adversaries’ cost of attack. NIS is redefining cyber security on a global scale at PwC. Our mission protects 223,000 PwC staff and partners across 157 member firms worldwide, as well as our global clients. If you are seeking an exciting career with the scope to grow your cyber security skills through major change on a global scale, then NIS will empower you to do so. Scope of Responsibility: Core skills for this role will consist of: Managing the Singapore member firm application security activity, enabling information security compliance for the firm application portfolio. Support application security remediation effort and track open issues and follow up to ensure remediation Assessing the requirements and managing the legal, regulatory and policy compliance risks pertaining to Network Information Security and the firm’s use of technology; Leveraging technology and processes to enable the Singapore member firm to mitigate information security risk Collaborate with PwC IT to align security processes and tools; Responsible for the technical and process support of Network Information Security-related audits. Strong understanding of information security controls and ISMS standards such as ISO27001/2, CobIT, CRISC etc People management and coaching (interns) Manage security awareness activity for the firm Strategic and Technical Orientation / Job Content: Individuals selected for this role are expected to have knowledge related to the following aspects of the Information Security skills: Experience managing multiple relationships and stakeholders throughout major disruptive transformation; Detailed understanding of risk management; Experience in a role balanced between business stakeholders and a central technology service organization; Experience navigating a matrix organization; Experience collaborating with multiple stakeholders across functional and technical skillsets; and Experience in a global professional services organization, preferably in the financial services industry. Network Collaboration: Collaborates with Network Information Security Compliance team leaders to implement common processes and tools Collaborates with local stakeholder to deliver the network information security strategy Working knowledge of three or more of the following: 3+ years experience in application security or application development penetration testing IT Security; principles of risk management 3+ years exp in Security Architecture Security Awareness (presentation, phishing campaign delivery, training) Project Management Quality Service Delivery: Responsible of Network Information Security application and vulnerabilites management for the firm Responsible for response to Network Information Security related audit responses Education Level: Required: High school diploma or G.E.D. Preferred: Undergraduate Degree (e.g., BA, BS) or Master degree in Information technology or related field of study and/or completed certifications involving cybersecurity including CISA, CISM, CIA, CIPP, CISSP, or CFE Experience Level: 3-5 years’ of relevant experience Other Details: An effective NIS senior associate candidate will also possess the following skills: Analytical: Inquisitive nature and intuition regarding what questions to ask, when, and their relative significance. Technical: Broad understanding of security technology and related risk and compliance issues related to them Business: High level understanding of PwC’s business model, service offerings, and business operating environment as it pertains to the firm’s threat landscape. Ability to frame threats and exposures in a business context recognized by non-technical staff and executives. Domain landscape: Knowledge of information risk and compliance principles Communication: Ability to leverage business communication skills to inform, persuade, and teach stakeholders across a global network of member firms’ staff and leadership to enable effective information security activities and processes in line with the cyber readiness program *Only shortlisted candidates will be notified due to the high number of applicants for this role. Show more

Original Joblink: ---------------------------------------------------------------------------------------------------------

to BizLINKS Resources

via BizLINKS Resources
Hits: 334
Country: Singapore
Employment Type: Full time
Salary: Open