FY 26 - Risk Assurance - Senior Associate - IT Cybersecurity

Line of Service

Assurance

Industry/Sector

Not Applicable

Specialism

Assurance

Management Level

Senior Associate

Job Description & Summary

At PwC our people in cybersecurity focus on protecting organisations from cyber threats through advanced technologies and strategies. They work to identify vulnerabilities develop secure systems and provide proactive solutions to safeguard sensitive data.

As a cybersecurity generalist at PwC you will focus on providing comprehensive security solutions and experience across various domains maintaining the protection of client systems and data. You will apply a broad understanding of cybersecurity principles and practices to address diverse security challenges effectively.

Focused on relationships you are building meaningful client connections and learning how to manage and inspire others. Navigating increasingly complex situations you are growing your personal brand deepening technical expertise and awareness of your strengths. You are expected to anticipate the needs of your teams and clients and to deliver quality. Embracing increased ambiguity you are comfortable when the path forward isnt clear you ask questions and you use these moments as opportunities to grow.

Examples of the skills knowledge and experiences you need to lead and deliver value at this level include but are not limited to:

• Respond effectively to the diverse perspectives needs and feelings of others.
• Use a broad range of tools methodologies and techniques to generate new ideas and solve problems.
• Use critical thinking to break down complex concepts.
• Understand the broader objectives of your project or role and how your work fits into the overall strategy.
• Develop a deeper understanding of the business context and how it is changing.
• Use reflection to develop self awareness enhance strengths and address development areas.
• Interpret data to inform insights and recommendations.
• Uphold and reinforce professional and technical standards (e.g. refer to specific PwC tax and audit guidance) the Firms code of conduct and independence requirements.

Responsibilities:

• Perform assessment / Design/ implementation related to cybersecurity:
  • Governance using various standards / frameworks such as NIST ISO 27000 family PCI-DSS COBIT CIS and other established standards; or
  • Various application security and various infrastructure security (e.g operating System database firewall switches API and other security devices). This includes security assessment on web applications / infrastructures / clouds / mobile applications; or
  • Cloud security; or
  • Red teaming exercise; or
  • Cyber incident response threat hunting and incident analysis; or
  • Operation Technology security (preferably in energy mining utilities and oil & gas industry).
• Provide recommendations/ advice to the clients.
• Train coach and upskill team members capabilities.
• Perform active business developments marketing proposal preparation process and lead pursuit of IT-related security projects.
• Interacting with clients on solutions and executing projects on client engagements forming client relationships and demonstrating an understanding of the clients business.
• Preparing concise and accurate documents / report leveraging and utilizing MS Office (Word Excel Access PowerPoint).

Requirements:

• Minimum Bachelor degree(s).
• 3- 5 Years of working experience in the relevant area. Having experience in cybersecurity consulting firm is an advantage
• Good professional reporting skills in Bahasa Indonesia and English
• Good knowledge of relevant cybersecurity standards / frameworks.
• Good experience and knowledge in the general IT technical and controls network and security best practises.
• Having related cybersecurity certificate is an advantage:
  • Cybersecurity Governance area: Certified Information Systems Security Professional (CISSP) or Certified Information Security Manager (CISM).
  • Application and Infrastructure security area: Offensive Security Certified Professional (OSCP) or Offensive Security Certified Expert (OSCE).
  • Cloud security: Certified Cloud Security Professional (CCSP) or advanced security certification from Cloud Service Provider.

Education (if blank degree and/or field of study not specified)

Degrees/Field of Study required:

Degrees/Field of Study preferred:

Certifications (if blank certifications not specified)

Required Skills

Optional Skills

Accepting Feedback Accepting Feedback Active Listening Agile Methodology Analytical Thinking Azure Data Factory Communication Creativity Cybersecurity Cybersecurity Framework Cybersecurity Policy Cybersecurity Requirements Cybersecurity Strategy Embracing Change Emotional Regulation Empathy Encryption Technologies Inclusion Intellectual Curiosity Learning Agility Managed Services Optimism Privacy Compliance Regulatory Response Security Architecture 8 more

Desired Languages (If blank desired languages not specified)

Travel Requirements

Up to 40%

Available for Work Visa Sponsorship

No

Government Clearance Required

No

Job Posting End Date