Line of Service AssuranceIndustry/Sector Not ApplicableSpecialism Cybersecurity & PrivacyManagement Level Senior AssociateJob Description & Summary We are PwC, a global professional services company and a Big Four firm. We are seeking candidates who have experience in cybersecurity advisory/assessment for the role of Senior Cybersecurity Consultant within the Cybersecurity and Privacy team.The role may be based at either our Hanoi office or Ho Chi Minh City office. Joining PwC, the successful candidates will have opportunities to collaborate with cybersecurity experts throughout the PwC global network and deliver cybersecurity services for clients in various sectors.Work in a highly innovative and transformative businessWork/life balance with access to flexible work arrangementsProfessional certification sponsorship – to develop your talent and enhance knowledgeWhat will your typical day look like?Do you thrive on developing creative and innovative insights to solve complex challenges? Want to work on next-generation, cutting-edge products and services that deliver outstanding value and that are global in vision and scope? Work with other experts in your field? Work for a world-class organisation that provides an exceptional career experience with an inclusive and collaborative culture?Responsibilities:Deliver cybersecurity and privacy assessments and advisory services such as cyber maturity assessments in accordance with NIST CSF and assessments of compliance with international standards such as ISO 27001, PCI-DSS, SWIFT, GDPR, etc.and local cybersecurity regulations such as Cybersecurity LawDeliver multiple risk assurance services, including IT security vendor selection, cyber security project management, vulnerability assessment, penetration testing, incident response, threat hunting, and SOC 1,2,3 (ISAE) assessmentIdentify cybersecurity risks and design controls tailored to the client’s environmentInterview key stakeholders and assess the effectiveness of cyber security design and operationsDesign and develop cyber security documents including policies, processes, procedures, and guidelinesConsult and advise clients on cybersecurity strategies and roadmapsPerform security configuration reviews for networks and systems in accordance withgood practices/standardsEngage in specific types of cyber security advisory and consulting projects related to DevSecOps, DLP, IAM, PAM, cloud security operations, etc.Supervise and review work actively, providing support to other team membersLead the team to challenge the status quo and exceed expectationsWork actively in supporting and monitoring business development areas and in following up on proposal processing in accordance with client expectationsContinuously research and follow up on the latest IT security and privacy challenges and technologies (mobile, digital trust, IoT, cloud, blockchain etc.)You are someone with:4+ years of proven experience in IT security operations, system security configuration review, IT security compliance assessment and/or cybersecurity auditExperience in applying IT and cybersecurity frameworks and standards (such as NIST, CIS, COBIT, ISO standards, etc.) in the cybersecurity assessment processExperience in identifying, assessing and reviewing local cybersecurity regulations such as Cybersecurity Law, Circular 09/2020 in Banking Industry, etc.Experience in cybersecurity risk assessment and design and/or operation of cybersecurity controlsExperience in IT system development (SDLC) methodology and/or information security management systems (ISMS)Experience in operating and/or implementing IT security solutions including firewalls, IDS, IAM, PAM, WAF, DLP, etc.Experience in specific cyber security processes and technology such as incident response, DevSecOps, DLP, IAM, PAM, etc.Knowledge of enterprise information security architectureAbility to communicate strategic information security topics, policies, and standards as well as risk-related concepts to technical and non-technical audiencesExcellent written and verbal communication skillsSelf-motivation, excellent teamwork, commitment and confidencePreference will be given to candidates who hold one of the following industry certifications: OSCP, OSDA, SSCP, CySA+, CCSK, CEH, CHFI, ECIH, CCNP, CREST, SANS, GIAC or equivalentPreference will be given to candidates who hold relevant cloud certifications: AWS, Azure, GCPStrong preference will be given to candidates who hold one of the following professional certifications: CISSP, CCSP, CSSLP, CISM, CISA, CRISC, CIA, PMP, ISO 27001 LA or equivalentEducation (if blank, degree and/or field of study not specified) Degrees/Field of Study required:Degrees/Field of Study preferred:Certifications (if blank, certifications not specified)Required SkillsOptional Skills Accepting Feedback, Accepting Feedback, Active Listening, Agile Methodology, Analytical Thinking, Azure Data Factory, Communication, Creativity, Cybersecurity, Cybersecurity Framework, Cybersecurity Policy, Cybersecurity Requirements, Cybersecurity Strategy, Embracing Change, Emotional Regulation, Empathy, Encryption Technologies, Inclusion, Intellectual Curiosity, Learning Agility, Managed Services, Optimism, Privacy Compliance, Regulatory Response, Security Architecture {+ 8 more}Desired Languages (If blank, desired languages not specified)Travel Requirements Up to 40%Available for Work Visa Sponsorship? NoGovernment Clearance Required? NoJob Posting End Date
