Cybersecurity & Privacy-Strategy & Risk-Manager-Location Flexible

Pwc San Francisco , CA 94118

Posted 1 week ago

A career in our Risk and Compliance Management practice, within Cybersecurity and Privacy services, will provide you with the opportunity to help our clients implement an effective cybersecurity programme that protects against threats, propels transformation, and drives growth. As companies pivot toward a digital business model, exponentially more data is generated and shared among organisations, partners and customers. You'll play an integral role in helping our clients ensure they are protected by developing transformation strategies focused on security, efficiently integrate and manage new or existing technology systems to deliver continuous operational improvements and increase their cybersecurity investment, and detect, respond, and remediate threats.Our team helps organisations transform their governance, risk, and compliance activities into a tool that is able to anticipate and mitigate risk to drive business performance. In joining, you'll develop risk management solutions, compliance and ethics controls, business continuity planning, internal audit procedures, and a compliance framework.


As a Manager, you'll work as part of a team of problem solvers with extensive consulting and industry experience, helping our clients solve their complex business issues from strategy to execution. Specific responsibilities include but are not limited to:

  • Proactively assist in the management of a portfolio of clients, while reporting to Senior Managers and above

  • Be involved in the financial management of clients

  • Be actively involved in business development activities to help identify and research opportunities on new/existing clients

  • Contribute to the development of your own and team's technical acumen

  • Develop strategies to solve complex technical challenges

  • Assist in the management and delivering of large projects

  • Train, coach, and supervise staff

  • Keep up to date with local and national business and economic issues

  • Continue to develop internal relationships and your PwC brand

Job Requirements and Preferences:

Basic Qualifications:

Minimum Degree Required:

Bachelor Degree

Minimum Years of Experience:
6 year(s)

Preferred Qualifications:

Certification(s) Preferred:

Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), ISACA, Certified in Risk and Information Systems Control (CRISC)

Preferred Knowledge/Skills:

Demonstrates proven extensive knowledge and success in roles managing cyber-risk management, including the following areas: - Being recognized as an industry leader, providing industry-leading practices in cyber-risk management and the financial services industry; and, - Managing and overseeing large projects involving information security, technology risk management, cybersecurity or cyber-risk management.

  • Familiarity with common regulatory requirements such as OCC HS, FFIEC, GLBA, NY DFS etc. as well as industry frameworks such as NIST CSF, COBIT, COSO and PCI

Demonstrates proven and extensive abilities solving complex cyber-risk management issues, including the following areas:

  • Design and development of IT Risk and Cyber security programs using industry frameworks and methodologies;

  • Designing KRIs and metrics to build risk reports for management

  • Implementation and maintenance of enterprise-wide cyber risk governance frameworks;
  • Assessment of enterprise-wide business risks and cyber threats;

  • Development of detailed business risk scenarios and cyber threat models; Design and implementation of cyber risk management controls;

  • Monitoring and reporting of cyber risks, threats and vulnerabilities;

  • Development, implementation and periodic testing of cyber resiliency plans;

  • Use of tools and technology to provide data analytics and business intelligence on cyber threats, risks and vulnerabilities;

  • Advising clients on complying with regulatory requirements such as OCC HS, FFIEC, GLBA, NY DFS etc. as well as industry frameworks such as NIST CSF, COBIT, COSO and PCI;

  • Developing frameworks, strategies, and operating models on IT risk management and cyber security for clients;

  • Building and operationalizing complex IT risk management and cyber security programs for clients. Demonstrates proven extensive abilities to manage and deliver client engagements that identify and address client needs, including the following areas:

  • Leading project workstreams and associated staff on complex cyber risk management engagements;

  • Participating actively in client discussions and meetings; - Managing and overseeing engagements;

  • Preparing concise and accurate documents, leveraging and utilizing MS Office and Lotus Notes to complete related project deliverables; and,

  • Managing project financials in line with agreed-upon budgets Demonstrates proven extensive abilities, competency and success with managing business functions and teams, including:

  • Creating a positive working environment by monitoring and managing workloads of the team balancing client expectations with the work-life quality of team members;

  • Providing candid, meaningful feedback in a timely manner to team members;

  • Keeping leadership and engagement management informed of progress and issues.

All qualified applicants will receive consideration for employment at PwC without regard to race; creed; color; religion; national origin; sex; age; disability; sexual orientation; gender identity or expression; genetic predisposition or carrier status; veteran, marital, or citizenship status; or any other status protected by law. PwC is proud to be an affirmative action and equal opportunity employer.

For positions based in San Francisco, consideration of qualified candidates with arrest and conviction records will be in a manner consistent with the San Francisco Fair Chance Ordinance.

See if you are a match!

See how well your resume matches up to this job - upload your resume now.

Find your dream job anywhere
with the LiveCareer app.
Download the
LiveCareer app and find
your dream job anywhere

Boost your job search productivity with our
free Chrome Extension!

lc_apply_tool GET EXTENSION

Similar Jobs

Want to see jobs matched to your resume? Upload One Now! Remove
Senior Managing Director Global Risk And Investigations Cybersecurity

FTI Consulting, Inc.

Posted 7 days ago

VIEW JOBS 11/9/2018 12:00:00 AM 2019-02-07T00:00 About FTI Consulting FTI Consulting, Inc. is a global business advisory firm dedicated to helping organizations manage change, mitigate risk and resolve disputes: financial, legal, operational, political & regulatory, reputational and transactional. With more than 4,600 employees located in 28 countries, FTI Consulting professionals work closely with clients to anticipate, illuminate and overcome complex business challenges and make the most of opportunities. The Company generated $1.81 billion in revenues during fiscal year 2017. For more information, visit and connect with us on Twitter (@FTIConsulting), Facebook and LinkedIn. FTI Consulting continually strives to offer employees and eligible dependents, including domestic partners and eligible domestic partner children, a competitive and comprehensive benefits package. Please click here for more information. FTI Consulting does not accept unsolicited resumes from external firms or agencies. FTI Consulting will not be responsible for placement fees associated with unsolicited resumes. FTI Consulting is an equal opportunity employer and does not discriminate on the basis of race, color, national origin, ancestry, citizenship status, protected veteran status, religion, physical or mental disability, marital status, sex, sexual orientation, gender identity or expression, age, or any other basis protected by law, ordinance, or regulation. About Forensic & Litigation Consulting The Forensic and Litigation Consulting practice at FTI Consulting provides multidisciplinary, independent dispute advisory, investigative, data acquisition/analysis and forensic accounting services to the global business and legal community. Our team supports clients facing high stakes litigation, arbitration and compliance investigations, and regulatory scrutiny. About The Opportunity: We are currently looking for a Senior Managing Director to join our growing Cybersecurity team ( The position involves managing and conducting cybersecurity investigations in our Global Risk and Investigations Practice. This practice gathers and analyzes critical information, enabling clients to make informed decisions, maximize opportunities and protect assets. Our superior expertise in complex factual and complex investigations, including litigation support, investigative due diligence, and insider threat related investigations, combines teams of former federal prosecutors and regulators, law enforcement, intelligence, and government officials, forensic accountants, business researchers, and computer forensic specialists. More specifically, we are looking for technical cybersecurity leaders with experience in all or some of the following: intelligence collection, government, incident response, insider threat analysis, network operations, emerging cyber policy, security operations (malware analysis, specialized cloud expertise, forensic experts, penetration, and application testing). With offices worldwide, we are able to uncover and analyze critical information wherever a need exists—no matter how intricate the investigation may be. Primary Duties: Primary duties will include: business development, scoping, budgeting, conducting and managing in-depth investigative research and analysis on individuals and corporate entities in a fast-paced, deadline-sensitive environment; summarizing the results accurately and concisely in written reports for a sophisticated client base consisting of top-tier law firms, financial institutions and corporations; managing consultants on engagements which involve teams of investigative researchers; and providing oral reports to clients, when appropriate. Basic Qualifications: * Bachelor's degree * 12+ years of experience at a law firm, regulatory, government, law enforcement agency, or similar organization Preferred Skills: * Specialized experience in cyber incident response and cyber incident management * Analytical ability - The applicant should have experience identifying red flags, validating sources, and making judgment calls about the completeness and accuracy of open source information * Excellent writing skills - The applicant should be familiar with legal and financial nomenclature and be able to draft accurate, concise summaries. * Strategic planning and resourcefulness - The applicant will be responsible for developing investigative plans and strategies for engagements and producing creative solutions to challenging research problems * Experience identifying and managing work performed by subcontractors, including negotiating budgets and deadlines * Experience conducting investigative interviews * Experience working with international colleagues and coordinating investigations across time zones is a plus * Experience managing junior members of the investigative team * Experience in financial analysis and the preparation of spreadsheets is a plus * Travel may be required, depending on nature of assignment Position Classification: Exempt FTI Consulting, Inc. San Francisco CA

Cybersecurity & Privacy-Strategy & Risk-Manager-Location Flexible