Information Security Officer
Description:
Line of ServiceInternal Firm Services
Industry/SectorTechnology
SpecialismIFS - Internal Firm Services - Other
Management LevelSenior Associate
Job Description & SummaryAt PwC, we focus on protecting our organisation from cyber threats through advanced technologies and strategies. The Information Security Officer (ISO) will support the implementation and maintenance of the firm’s Information Security Management System (ISMS), contributing to risk mitigation, compliance, and awareness initiatives.
The Information Security Officer (ISO) supports the implementation and maintenance of the firm’s Information Security Management System (ISMS), contributing to risk mitigation, compliance, and awareness initiatives. This role is ideal for early-career professionals with a strong interest in cybersecurity, governance, and operational resilience.
Key Responsibilities
Support ISMS Operations: Assist in maintaining ISO 27001-aligned policies, procedures, and controls
Risk & Compliance Monitoring: Help conduct risk assessments, track remediation efforts, and support internal audits
Security Assessments: Contribute to the completion of the ISP Self-Assessment and other Firm Assessments, including but not limited to Technology Assessments, Cyber Security Risk Assessment, and Application Readiness Assessments.
Third Party Risk Management: Conduct and coordinate third-party risk assessments (TPRA) for suppliers and partners handling sensitive data or services, and assist in the Technology Risk Framework (TRF) across global and local specific applications.
Security Awareness: Contribute to the delivery of training and awareness campaigns in line with the firm’s Information Security Awareness Programme
Incident Response Support: Log and escalate security incidents, assist in documentation, and follow up
Documentation & Reporting: Maintain security documentation, dashboards, and metrics for internal reporting
NIS Projects: Oversee the implementation of the projects to ensure alignment with NIS objectives.
Collaboration: Work closely with IT, Legal, and Compliance teams to ensure alignment with firm-wide security objectives
Education (if blank, degree and/or field of study not specified)Degrees/Field of Study required:
Degrees/Field of Study preferred:
Certifications (if blank, certifications not specified)
Required Skills
Optional SkillsAccepting Feedback, Accepting Feedback, Active Listening, Analytical Thinking, Azure Data Factory, Communication, Creativity, Cybersecurity, Cybersecurity Governance, Data Architecture, Data Archiving, Data Flow Mapping, Data Privacy Act, Embracing Change, Emotional Regulation, Empathy, Enterprise Content Management, Incident Response Plan, Inclusion, Information Rights Management (IRM), Information Security, Information Security Governance, Information Security Management System (ISMS), Intellectual Curiosity, IT Infrastructure {+ 11 more}
Desired Languages (If blank, desired languages not specified)
Travel Requirements
Available for Work Visa Sponsorship?
Government Clearance Required?
Job Posting End Date
660555WD