Cybersecurity Risk Associate

at PWC
Location San Antonio, TX
Date Posted April 17, 2021
Category Default
Job Type Full-time


Line of Service: Advisory
Specialty/Competency: Cybersecurity & Privacy
Industry/Sector: Not Applicable
Time Type: Full time
Government Clearance Required: No
Available for Work Sponsorship: No
Travel Requirements: Up to 20%

A career in our Cybersecurity, Privacy, & Forensics will provide you the opportunity to solve our clients most critical business and data protection related challenges. You will be part of a growing team driving strategic programs, data analytics, innovation, deals, cyber resilency, response, and technical implementation activities. You will have access to not only the top Cybersecurity, Privacy, and Forensics professionals at PwC, but at our clients and industry analysts across the globe. Our Advisory Acceleration Center is the natural extension of PwC’s leading class global delivery capabilities. We provide premium, cost effective, high quality services that support process quality and delivery capability in support for client engagements.

To really stand out and make us fit for the future in a constantly changing world, each and every one of us at PwC needs to be an authentic and inclusive leader, at all grades/levels and in all lines of service. To help us achieve this we have the PwC Professional; our global leadership development framework. It gives us a single set of expectations across our lines, geographies and career paths, and provides transparency on the skills we need as individuals to be successful and progress in our careers, now and in the future.

As an Associate, you'll work as part of a team of problem solvers, helping to solve complex business issues from strategy to execution. PwC Professional skills and responsibilities for this management level include but are not limited to:

  • Invite and provide evidence-based feedback in a timely and constructive manner.
  • Share and collaborate effectively with others.
  • Work with existing processes/systems whilst making constructive suggestions for improvements.
  • Validate data and analysis for accuracy and relevance.
  • Follow risk management and compliance procedures.
  • Keep up-to-date with technical developments for business area.
  • Communicate confidently in a clear, concise and articulate manner - verbally and in written form.
  • Seek opportunities to learn about other cultures and other parts of the business across the Network of PwC firms.
  • Uphold the firm's code of ethics and business conduct

Basic Qualifications:

Minimum Degree Required:
Bachelor Degree

Minimum Years of Experience:
3 year(s)

Preferred Qualifications:

Preferred Fields of Study:
Information CyberSecurity, Computer and Information Science, Information Technology, Management Information Systems

Certification(s) Preferred:

GSEC, SEC+, Network+

Preferred Knowledge/Skills:

Demonstrates some knowledge and/or a proven record of success in the following areas:

  • Qualitative and quantitative risk assessment methodologies;

  • Application of information security, information governance, compliance, assurance, and/or other security industry leading practices and principles;

  • Standard industry practices involving third party risk management regulations, risk assessments and business processes;

  • IoT frameworks;

  • Legal defensibility and frameworks to reduce liability; and,

  • Benchmarking methods.

Demonstrates some abilities and/or a proven record of success in the following areas:

  • Assessing cybersecurity program maturity and capabilities against industry frameworks;

  • Assessing compliance with regulatory requirements and deliver report that identifies compliance or gaps;

  • Assessing TPRM capabilities across the TPRM lifecycle, from initial planning and due diligence to ongoing monitoring and termination of vendors;

  • Executing privacy impact assessments through technology platforms;

  • Executing benchmarks using tools and reporting outcomes against industry standards;

  • Leveraging analytical and research skills in preparing materials;

  • Preparing materials (reports, presentations, spreadsheets, etc.) to help enable informed decision making;

  • Performing compliance / gap assessments against several industry standard frameworks and federal regulations;

  • Exhibiting business and global acumen by bringing business knowledge, innovation, and a global, cross-cultural mindset;

  • Managing time efficiently and meeting deadlines;

  • Addressing controls against of some of the common regulatory requirements such as GDPR, OCC HS, FFIEC, GLBA, NY DFS etc. as well as industry frameworks such as NIST CSF, COBIT, COSO, ISO, and PCI; and,

  • Participating in the development, review, ongoing maintenance and development of security policies, standards, processes, procedures and requirements.

All qualified applicants will receive consideration for employment at PwC without regard to race; creed; color; religion; national origin; sex; age; disability; sexual orientation; gender identity or expression; genetic predisposition or carrier status; veteran, marital, or citizenship status; or any other status protected by law. PwC is proud to be an affirmative action and equal opportunity employer.