PwC is a network of firms committed to delivering quality in assurance, tax and advisory services.
We help resolve complex issues for our clients and identify opportunities. Learn more about us at www.pwc.com/us.
At PwC, we develop leaders at all levels. The distinctive leadership framework we call the PwC Professional (http://pwc.to/pwcpro) provides our people with a road map to grow their skills and build their careers. Our approach to ongoing development shapes employees into leaders, no matter the role or job title.
Are you ready to build a career in a rapidly changing world? Developing as a PwC Professional means that you will be ready
- to create and capture opportunities to advance your career and fulfill your potential. To learn more, visit us at www.pwc.com/careers.
It takes talented people to support the US firm of the largest professional services organization in the world. Not all of us work directly with external clients. Some of our best people choose to apply their talents inside PwC.
As part of Internal Firm Services, you're serving an organization on par with many of our external clients. Our Internal Firm Services team consists of first-rate marketers, human resource professionals, computer technologists, knowledge managers, accountants, financial planners, administrators and leaders. Internal Firm Services staff are the people who make it work for the people who make it work for our clients.Job Description
The PwC Member Firm Information Security team is responsible for providing comprehensive information security services and routine coordination internally to PwC. The team works closely with engagement teams across the member firm on information security matters and coordinates with other functional groups as needed.
The team provides advice and informs engagement and member firm/line of service teams about various contractual requirements and government laws and regulations as they pertain to information security.
The team leverages functional expertise to help client service teams solve problems.Position/Program Requirements
Minimum Year(s) of Experience: 6 years of proven success in roles involving leveraging information technology to provide recommendations for new projects and or initiatives.
Minimum Degree Required: High School Diploma or GED
Degree Preferred: Bachelor's degree in Computer Science or Information Services
Certification(s) Preferred: CISSP, CISM, CISA, CCIE, CCNA, CCNP, CCSA
Demonstrates intimate knowledge and/or proven record of success in managing IT security management projects, solutions, and its impact on an overall business IT infrastructure profile, preferably for a global network of professional services consulting firms, emphasizing the following areas:
- Driving team management concepts and principles, including facilitation, diplomacy, negotiation with and influence of others, creativity, and organization; and,
- Contributing to the decision-making process for the broader scope of an IT organization.
Demonstrates intimate knowledge and/or proven record of success in managerial roles involving, managing new and existing IT programs and projects to identify, track and remediate applications and infrastructure vulnerabilities where needed, including the assessment of vulnerabilities, sources of threats and current security state to determine the overall risk rating of a business technical environment in order to prioritize necessary remediation activities in these areas:
- New security technologies, their implementation requirements, and
integration of those into a larger solution;
- Web hosting architecture and principles, including network,
infrastructure and application security solutions;
- Risk assessment/acceptance factors that can affect business and
security decisions as well as system designs;
- Data classification and its impact on the security design of networking
- Innovation, new solutions and processes; incorporating new
technologies when warranted.
Demonstrates intimate-level abilities and/or proven record of success with influencing the risk preparedness of a global network of professional
services consulting firms' IT infrastructure, networks and applications,
emphasizing the following areas:
- Collaborating with personnel to develop network security solutions
consistent with the current network security strategy and contributing new intellectual capital in the form of new security standards, tools and
methodologies to protect the firm's IT assets;
- Analyzing new solutions, identifying potential security concerns,
developing remediation plans to mitigate identified risks, and
collaborating with members of a business IT organization to implement
recommendations and its various IT teams to assess and/or enhance the
firm's information security posture by leading remediation efforts of
- Performing research on pertinent technical matters, especially leading
and independently reviewing application threat vulnerability assessments;
- Leveraging creative solutions when problem-solving, collaborating
effectively as part of a team, yet functioning well with independent
responsibilities, especially multitasking and extreme attention to detail;
- Writing, communicating, facilitating, and presenting cogently to and/or
for all levels of industry audiences, clients and internal staff and
management on technical concepts and issues, including translating
technical security verbiage to non-technical verbiage to various business
- Collaborating with functional teams to identify opportunities and provide
recommendations on how security can be built into projects and/or
products that are being developed. Interacts others on projects that
impact the security profile of the network firm's infrastructure; and,
- Adapting to ever-changing schedules and work assignments, including
willingness to travel domestically and globally, when required, and
extended work hours.
PwC is a network of firms in 157 countries with more than 184,000 people committed to delivering quality in assurance, tax and advisory services.