Risk Assurance Services, Cyber Manager
PwC
- Guernsey
- Permanent
- Full-time
- Pursue opportunities to develop existing and new skills outside of your comfort zone
- Act to resolve issues which prevent effective team working, even during times of change and uncertainty
- Coach others and encourage them to take ownership of their development
- Analyse complex ideas or proposals and build a range of meaningful recommendations
- Use multiple sources of information including broader stakeholder views to develop solutions and recommendations
- Address sub-standard work or work that does not meet firm's/client's expectations
- Develop a perspective on key global trends, including globalisation, and how they impact the firm and our clients
- Manage a variety of viewpoints to build consensus and create positive outcomes for all parties
- Focus on building trusted relationships
- Uphold the firm's code of ethics and business conduct
- Minimum of five years prior experience in a similar field
- Bachelor Degree, preferably Information Technology related
- Preferred certifications, minimum one of: - Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), ISACA Certified in Risk and Information Systems Control (CRISC), Microsoft Azure AZ-500; SailPoint IdentityX Architect
- Providing industry-leading practices in cyber risk management and regulatory compliance
- Leveraging knowledge of common regulatory requirements as well as industry frameworks such as NIST CSF, ISO27001, COBIT, COSO and PCI
- Managing and overseeing large projects involving information security, technology risk management, cybersecurity or cyber risk management
- Designing and implementing enterprise-wide cyber risk governance frameworks
- Developing detailed business risk scenarios and cyber threat models
- Assessing enterprise-wide business risks and cyber threats;
- Designing and implementing cyber risk management controls
- Monitoring and reporting of cyber risks, threats and vulnerabilities
- Designing KRIs and metrics to build risk reports for management
- Developing, implementing and testing cyber resiliency plans
- Using tools and technology to provide data analytics and business intelligence on cyber threats, risk and vulnerabilities
- Developing cyber risk management strategies and operating models for clients
- Building and operationalizing complex cybersecurity and cyber risk management programs for clients
- Preparing concise and accurate documents, leveraging and utilizing MS Office and Google Suite to complete related project deliverables
- Managing project financials in line with agreed-upon budgets
- Creating a positive working environment by monitoring and managing workloads of the team - balancing client expectations with the work-life quality of team members
- Keeping leadership and engagement management informed of progress and issues