Mandated at the network level, NIS operates outside IT & is responsible for this major program initiative, from definition of the security strategy to the execution of the global Cyber Readiness Program, moving from local to globally-provided services. Our mission is to identify, control & reduce the attack surface across the member firm network while increasing our adversaries’ cost of attack.
Core skills within the Information Security Risk and Compliance Team consist of assessing the requirements and managing the legal, regulatory and policy compliance risks. You are a member of the German IS GRC team which oversees the various compliance topics and conformity to the PwC network standards as there are the global Network Information Security (NIS) Information Security Policy (ISP), ISO 2700x, TISAX, etc. You will enable the network of member firms to mitigate legal and regulatory risks and reduce the cost of compliance, liaise with other global Risk functions (e.g., Risk Management, Internal Audit, Physical Security, Privacy Office, etc.) to direct compliance issues to appropriate existing channels for investigation and resolution. Furthermore consulting with the Office of General Counsel as needed to resolve difficult legal compliance issues, collaborating with PwC IT to align security processes and tools; and being responsible for the technical and process support of Network Information Security-related audits.
You will collaborate with global Risk and Compliance functions to maintain satisfaction with global Compliance offices and you will also collaborate with Network Information Security Compliance team leaders to implement common processes and tools. You will benchmark with outside networks and peer organizations.
We are looking for candidates for this position for our American and/or British PricewaterhouseCoopers companies. By applying for this position, you therefore consent to the storage and transfer of your data by/to the above companies and will be appointed by them. Please use the following formulation in your cover letter, as otherwise we will unfortunately be unable to consider your application: “In the context of this application process, I hereby consent to the transfer of my application documents by PwC IT Services Europe GmbH to PricewaterhouseCoopers LLP London, United Kingdom, and to PricewaterhouseCoopers LLP New York, United States of America, to allow the review and conduction of the application process. This consent is based on a decision I have freely taken and can be revoked for the future at any time.”
You will be a member of the German Information Security Management (ISM) team with a German working contract and therefore all German regulations and laws apply to you. Within the ISM you are a team member of the security architecture group. You will have a dotted reporting line to our global PwC Network Information Security (NIS) organization.
You own at least an undergraduate (e.g. BA, BS) degree in Information technology or related field of study and/or completed certifications involving cybersecurity. You have 2-4 years of relevant experience.