A career in Information Security, within Internal Firm Services, will provide you with the opportunity to develop and support our internal security technologies and services across the entire global and local PwC network. You'll focus on being the forefront of designing, developing, and implementing information technology including hardware, software, and networks that enhances security of internal information and protect our firms intellectual assets.
To really stand out and make us fit for the future in a constantly changing world, each and every one of us at PwC needs to be an authentic and inclusive leader, at all grades/levels and in all lines of service. To help us achieve this we have the PwC Professional; our global leadership development framework. It gives us a single set of expectations across our lines, geographies and career paths, and provides transparency on the skills we need as individuals to be successful and progress in our careers, now and in the future.
As a Senior Manager, you'll work as part of a team of problem solvers, helping to solve complex business issues from strategy to execution. PwC Professional skills and responsibilities for this management level include but are not limited to:
Take action to ensure everyone has a voice, inviting opinion from all.
Establish the root causes of issues and tackle them, rather than just the symptoms.
Initiate open and honest coaching conversations at all levels.
Move easily between big picture thinking and managing relevant detail.
Anticipate stakeholder needs, and develop and discuss potential solutions, even before the stakeholder realises they are required.
Develop specialised expertise in one or more areas.
Advise stakeholders on relevant technical issues for their business area.
Navigate the complexities of global teams and engagements.
Build trust with teams and stakeholders through open and honest conversation.
Uphold the firm's code of ethics and business conduct.
Job Requirements and Preferences:
Minimum Degree Required:
High School Diploma
Minimum Years of Experience:
6 year(s) in IT architecture and 2+ years experience with operating system security for Windows, UNIX, Middleware or Oracle/SQL databases.
Preferred Fields of Study:
Information Technology, Computer Systems Analysis, Management Information Systems, Computer Engineering, Computer Programming
CISSP, Certified Information Systems Security Professional, International Information Systems Security Certification Consortium (ISC2) Certification
Microsoft Azure Solutions Architect, or AWS Solutions Architect
Demonstrates intimate abilities and/or a proven record of success in understanding effective control implementation in the following domains:
Cloud & Services Hosting;
Identity and Access Management;
Endpoint Security; and,
Cyber Security Operations.
Demonstrates intimate knowledge and/or a proven record of success in security technology in the following areas:
Understanding of migration or development experience in one of the major cloud platforms;
Possessing extensive experience in security design review and recommendations;
Being conversant with ISO 27002:2005/2013 information security standard;
Having a working knowledge of user and data driven design approaches as well as understanding industry leading practices for key management
Demonstrating architectural domain knowledge including cloud application architecture and container-based deployment;
Understanding established Software Development Lifecycles and methodologies including agile, scrum, iterative and waterfall;
Analyzing Identity access management integration for projects to assure security;
Identifying complex security vulnerabilities and design compensatory controls;
Analyzing network security controls, including firewall and router security configuration;
Working in a complex and matrixed organization;
Partnering with and enabling the development process to assure that security requirements are met while allowing for maximum speed to market;
Supporting a leading edge development effort by developing standardized reusable security frameworks;
Collaborating with multiple stakeholders across functional and technical skill sets;
Supporting and integrating with key business and strategic priorities;
Working with developers and application architects to make IT security design recommendations;
Assuring that effective design of security controls related to people, process, and technology are in place;
Engaging business and technology stakeholders at all levels to gather long term goals & requirements around system security and usability;
Aligning business requirements to complex security architecture frameworks:
Designing and building security technology solutions aligned to a global central service environment;
Translating and communicating complex technical topics into practical business terminology both verbally and in writing;
Managing multiple security assessments and changing priorities, simultaneously; and,
Understanding the functions applied in the support of and integration with key business and strategic priorities.
All qualified applicants will receive consideration for employment at PwC without regard to race; creed; color; religion; national origin; sex; age; disability; sexual orientation; gender identity or expression; genetic predisposition or carrier status; veteran, marital, or citizenship status; or any other status protected by law. PwC is proud to be an affirmative action and equal opportunity employer.
For positions based in San Francisco, consideration of qualified candidates with arrest and conviction records will be in a manner consistent with the San Francisco Fair Chance Ordinance.