IFS | Associate Information Security Office

Job Description & Summary

PwC is driving major change across information and cyber security by building a centralized model to provide security services across the entire network of member firms.  Mandated at the network level, Network Information Security (NIS) operates outside Information Technology (IT) and is responsible for this major program initiative, from definition of the security strategy to the execution of the global Cyber Readiness Program, moving from local to globally provided services.

Our mission is to identify, control, and reduce the attack surface across the network of member firms while increasing our adversaries’ cost of attack.

NIS is redefining cyber security on a global scale at PwC. Our mission protects 223,000 PwC members across 157 member firms worldwide, as well as our global clients.

If you are seeking an exciting career with the scope to grow your information and cyber security skills, then NIS will empower you to do so.

What does your work look like?

This role is part of the PwC Iberia Chief Information Security Office (CISO) team.  This team enables local and regional security effectiveness and helps remove roadblocks and barriers from Cyber Readiness Program journey.

Your skills and responsibilities include but are not limited to:

• You will collaborate with both the NIS global, regional and local teams to support issue resolution and drive progress against better adoption of our Cyber Readiness Program
• Incident oversight - providing advice, direction and escalation where applicable
• Support, initiate and run regular Cybersecurity Hygiene activities
• Risk Identification and follow up on remediation
• Policy & Standards Compliance
• Vulnerability management
• Information Security Management Systems maintenance and compliance audits
• Education and coaching stakeholders

What we expect from the candidate

• Possess a growth mindset and be able to adapt to operate in different environments.
• Understanding of technical and non-technical information security risks
• Interest in Information Security and a broad understanding of its ability to act as a differentiator
• Creative problem solving and communication skills.
• Ability to influence stakeholders.
• Bachelor or Master’s degree, or equivalent Industry certification
• CISSP or similar professional certification is an advantage