Information Security Manager

If you love the business side of informationsecuritythis is the place to be. Within the CISO pillar we work closely with member firm stakeholders to understand their business model and roadmap for turnthe CISO pillar outlines the roadmap for NIS and drives engagement and adoption of central security services in line with the PwC Cyber Readiness program.

Management of relationships between NIS and the business is key to delivering the cyber readiness mission. Whether it be integrating solutions driving operationalprocessesor providing guidance back to NIS to further enhance our strategy CISO pillar provides the engagement andpersonal touchto enable NIS to deliver maximum value to the customer the PwC Network of firms.

Essential Skills& Responsibilities

• The primary responsibility will be to lead and support multiple cybersecurity initiatives including projects related to compliance risk management threat analysis application security vulnerability assessments and regulatory adherence.

• Engage with Line of Service stakeholders to assess security threats/vulnerabilities and manage business risk;

• Work with the other NIS teams both locallyregionallyand globally to deliver the security needs specific to the firm

• Ability to lead and manage a team effectively. The ideal candidate should be proactive dynamic and self-driven with the capability to handle challenging situations prioritize tasks manage and mitigate risks and ensuretimelyclosure.

• Help the businesscomply withtheInformation Security Policy byleveragingyour cyber security knowledge andexpertise;

• Experience managing multi-function relationships throughout major transformation;

• Experience in a role balanced between business stakeholders and a central serviceorganization;

• Navigating a multifaceted matrixorganization;andcollaboratingwith multiplestakeholders across functional and technical skillsets.

• Technical: Broad understanding of security technology.

• Business: Ability to frame threats and exposures in a business context recognized by non-technical staff and executives

• Domain landscape: Knowledge oftechnical security principlesand its application

• Experience in managing and ensuring compliance with cybersecurity regulations and frameworks such as MAS CSA and other relevant industry standards.

• Address conflicts or issues engaging in difficult conversationswith clients teammembersand other stakeholders escalating whereappropriate.

• Ability toleveragebusiness communication skills to inform persuade and teach stakeholders across a global network of member firms staff and leadership to enable effective information security activities and processes in line with the cyber readiness program

• Ability toprioritizerisk manage effective teams to drive completion of activities passionate in provide coaching and training to team members to motivate and grow the team

• You willpossessdeep knowledge in a specific subject matter area or technical domain related to theInformation SecurityServices function that is applied to solve business problems and deliver necessary results. The employee incorporates existing Firm knowledge subject matter or technicaldomainexpertiseinto work activities.

• Demonstrates proven skills and thorough comprehension of managing efforts within business engagement and relationship management space.

• Monitor workloads within the team to deliver against the requirements withinCISO Services while making sure leadershipisinformed of progress and issues.

• Build andmaintainrelationships across the network of firms to effectively deliver security activities on behalf of NIS

• Executes tasks aligned to CISO pillar with autonomy.

Education & Experience

• Undergraduate Degree (e.g.BIT BSc) STEM or equivalent work experience

• 4 - 6Yearsof progressive professional roles involving information security ITmanagementand/or major program management.

• Professional certifications such as CISA or CISSP are highly preferreddemonstratingexpertisein information security risk management and compliance.