Strategy, Transformation & Risk Senior Manager
Posted 5 days ago
Job Description
At PwC, our people in cybersecurity focus on protecting organisations from cyber threats through advanced technologies and strategies. They work to identify vulnerabilities, develop secure systems, and provide proactive solutions to safeguard sensitive data.As a cybersecurity generalist at PwC, you will focus on providing comprehensive security solutions and experience across various domains, maintaining the protection of client systems and data. You will apply a broad understanding of cybersecurity principles and practices to address diverse security challenges effectively.
•
M eaningful work you'll be part of
As a Strategy, Transformation & Risk, Manager , you'll work as part of a team of problem solvers, helping to solve complex business issues from strategy to execution. Responsibilities include but are not limited to:
• Manage cybersecurity program scope and prioritize opportunities to enhance the security posture .
• Ensure a coherent and cross-functional team integration and enterprise-level collaboration is in place .
• Benefits are clearly defined and agreed upon with key stakeholders and then mapped to projects and associated milestones.
• Identify enterprise trends, synergies, and opportunities for improvement in Cybersecurity risk management.
• Develop Cybersecurity governance, risk management, compliance framework, policies, and standards.
• Design and implement target state operating model for Cybersecurity function and building the capability, process maps, interaction model, and roles/responsibilities.
• Support the implementation of the Cybersecurity strategy and roadmap .
• Develop Third-party Cybersecurity Risk Management capability, process maps, and interaction model (including but not limited to performing security due diligence at onboarding/offboarding, including security requirements while contracting & conducting ongoing third-party security risk assessments using a risk-based approach) .
• Work with third parties to prioritize & mitigate identified risks .
• Manage security requirements within third parties, support the audit and regulatory requirements & ensure the findings are remediated .
Experiences and skills you'll use to solve
• Demonstrable ability in the following areas is required for this position:
• Technical designations such as CISSP, CRISC, CISA preferred.
• A firm understanding of cyber security frameworks such as those published by leading organizations (e.g. NIST, SANS, ISO etc.). Ability to translate framework to practical advice to clients.
• Good mix of business and technical capabilities, and the ability to communicate on current cyber risk issues to senior executives within the context of their business.
• Being able to design and deliver cyber security strategies, operating models, assessments and reports to meet Canadian, US and global regulatory requirements.
• Leadership qualities when working in a team and the ability to be recognized as the subject matter expert on cyber risk when our client requires.
• Ability to identify cyber risk management opportunities with clients and propose solutions that meet the client's needs.
• Clear and articulate written and verbal communication skills.
• Presentation and report writing skills.
• Ability to develop and manage mid-level relationships.
• The ability to work on a number of projects, meet deadlines and manage stakeholder expectations.
• Fluency in French and full business proficiency in English is an asset.
At PwC Canada, our most valuable asset is our people and we grow stronger as we learn from one another. We're committed to creating an equitable and inclusive community of solvers where everyone feels that they truly belong. We understand that experience comes in many forms and building trust in society and solving important problems is only possible if we reflect the mosaic of the society we live in.
We're committed to providing accommodations throughout the application, interview, and employment process. If you require an accommodation to be at your best, please let us know during the application process.
•
M eaningful work you'll be part of
As a Strategy, Transformation & Risk, Manager , you'll work as part of a team of problem solvers, helping to solve complex business issues from strategy to execution. Responsibilities include but are not limited to:
• Manage cybersecurity program scope and prioritize opportunities to enhance the security posture .
• Ensure a coherent and cross-functional team integration and enterprise-level collaboration is in place .
• Benefits are clearly defined and agreed upon with key stakeholders and then mapped to projects and associated milestones.
• Identify enterprise trends, synergies, and opportunities for improvement in Cybersecurity risk management.
• Develop Cybersecurity governance, risk management, compliance framework, policies, and standards.
• Design and implement target state operating model for Cybersecurity function and building the capability, process maps, interaction model, and roles/responsibilities.
• Support the implementation of the Cybersecurity strategy and roadmap .
• Develop Third-party Cybersecurity Risk Management capability, process maps, and interaction model (including but not limited to performing security due diligence at onboarding/offboarding, including security requirements while contracting & conducting ongoing third-party security risk assessments using a risk-based approach) .
• Work with third parties to prioritize & mitigate identified risks .
• Manage security requirements within third parties, support the audit and regulatory requirements & ensure the findings are remediated .
Experiences and skills you'll use to solve
• Demonstrable ability in the following areas is required for this position:
• Technical designations such as CISSP, CRISC, CISA preferred.
• A firm understanding of cyber security frameworks such as those published by leading organizations (e.g. NIST, SANS, ISO etc.). Ability to translate framework to practical advice to clients.
• Good mix of business and technical capabilities, and the ability to communicate on current cyber risk issues to senior executives within the context of their business.
• Being able to design and deliver cyber security strategies, operating models, assessments and reports to meet Canadian, US and global regulatory requirements.
• Leadership qualities when working in a team and the ability to be recognized as the subject matter expert on cyber risk when our client requires.
• Ability to identify cyber risk management opportunities with clients and propose solutions that meet the client's needs.
• Clear and articulate written and verbal communication skills.
• Presentation and report writing skills.
• Ability to develop and manage mid-level relationships.
• The ability to work on a number of projects, meet deadlines and manage stakeholder expectations.
• Fluency in French and full business proficiency in English is an asset.
At PwC Canada, our most valuable asset is our people and we grow stronger as we learn from one another. We're committed to creating an equitable and inclusive community of solvers where everyone feels that they truly belong. We understand that experience comes in many forms and building trust in society and solving important problems is only possible if we reflect the mosaic of the society we live in.
We're committed to providing accommodations throughout the application, interview, and employment process. If you require an accommodation to be at your best, please let us know during the application process.
About PwC
Industry
Management and ConsultingCompany Size
5001-10,000 employees
Application closing date is 2025-01-28
Current Openings
-
Full Time
-
Full Time
-
Full Time
-
Full Time
-
Full Time
-
Full Time
-
Full Time
-
Full Time
-
Full Time
-
Full Time
M
Full episodes twice per month