**Industry/Sector** Not Applicable **Specialism** IFS \- Internal Firm Services \- Other **Management Level** Specialist **Job Description \& Summary** At PwC, our people in cybersecurity focus on protecting organisations from cyber threats through advanced technologies and strategies. They work to identify vulnerabilities, develop secure systems, and provide proactive solutions to safeguard sensitive data. Those in information security at PwC will focus on protecting sensitive data and systems from cyber threats through risk assessments, security audits, and implementing robust security measures. Your work will help enable the confidentiality, integrity, and availability of information assets for clients. You are a reliable, contributing member of a team. In our fast\-paced environment, you are expected to adapt, take ownership and consistently deliver quality work that drives value for our clients and success as a team. Examples of the skills, knowledge, and experiences you need to lead and deliver value at this level include but are not limited to: * Apply a learning mindset and take ownership for your own development. * Appreciate diverse perspectives, needs, and feelings of others. * Adopt habits to sustain high performance and develop your potential. * Actively listen, ask questions to check understanding, and clearly express ideas. * Seek, reflect, act on, and give feedback. * Gather information from a range of sources to analyse facts and discern patterns. * Commit to understanding how the business works and building commercial awareness. * Learn and apply professional and technical standards (e.g. refer to specific PwC tax and audit guidance), uphold the Firm's code of conduct and independence requirements. **Scope of the role** They work with AR Risk Managers and AppSec Architects to update on progress, raise IT security concerns, and document their work in the SNow AR Ticket system. **What does a typical day in this role look like?** * Reviewing the Information Security Policy, Application Readiness Standard, \& Applicable Supporting Standards * Assessing whether a control is 'met' or 'not met' (black and white) * Reviewing documentation analytically and assess control compliance based on information/ documentation provided. * Evaluating complex data and determine whether data can be used to support the reviews being conducted * Pulling facts and details related to controls from different types of documentation and diagrams submitted * Interfacing with Risk Manager(s) and AppSec Architects to provide status, raise flags/ concerns related to IT Security Risk **Required skills** \+2 years of experience in: * Knowledge of the Information Security Policy, Application Readiness Standard, \& Applicable Supporting Standards * Ability to assess whether a control is 'met' or 'not met' (black and white) * Ability to review documentation analytically and assess control compliance based on information/ documentation provided. * Ability to evaluate complex data and determine whether data can be used to support the reviews being conducted * Ability to pull facts and details related to controls from different types of documentation and diagrams submitted * Communication skills to interface with AR Risk Manager(s) and AppSec Architects to provide status, raise flags/ concerns related to IT Security Risk **Preferred skills** Certifications: CISSP / CISM /CISA / CCSK / CCSP / CRISC **General requirements** * Understand the importance of have a correct information management * Knowledge of Information Security and Data Protection * Correct Information Security Management All qualified applicants will receive consideration for employment at PwC without regard to ethnicity; creed; color; religion; national origin; age; disability; neurodiversity; sexual orientation; gender identity or expression; marital; or any other status protected by law. PwC is proud to be an inclusive organization and equal opportunity employer. **Travel Requirements** **Job Posting End Date**