Line of Service

Advisory

Industry/Sector

Not Applicable

Specialism

Risk

Management Level

Associate

Job Description & Summary

At PwC, our people in cybersecurity focus on protecting organisations from cyber threats through advanced technologies and strategies. They work to identify vulnerabilities, develop secure systems, and provide proactive solutions to safeguard sensitive data.

As a cybersecurity generalist at PwC, you will focus on providing comprehensive security solutions and experience across various domains, maintaining the protection of client systems and data. You will apply a broad understanding of cybersecurity principles and practices to address diverse security challenges effectively.

*Why PWC

At PwC, you will be part of a vibrant community of solvers that leads with trust and creates distinctive outcomes for our clients and communities. This purpose-led and values-driven work, powered by technology in an environment that drives innovation, will enable you to make a tangible impact in the real world. We reward your contributions, support your wellbeing, and offer inclusive benefits, flexibility programmes and mentorship that will help you thrive in work and life. Together, we grow, learn, care, collaborate, and create a future of infinite experiences for each other. Learn more about us.

At PwC, we believe in providing equal employment opportunities, without any discrimination on the grounds of gender, ethnic background, age, disability, marital status, sexual orientation, pregnancy, gender identity or expression, religion or other beliefs, perceived differences and status protected by law. We strive to create an environment where each one of our people can bring their true selves and contribute to their personal growth and the firm’s growth. To enable this, we have zero tolerance for any discrimination and harassment based on the above considerations. "

Job description and Summary: To implement and assess the Information Security Management System (ISMS) and provide ongoing sustenance support to ensure its effectiveness and continual improvement.

· Experience in implementation ISO 27001:2022 standard · Support the rollout and maintenance of ISMS policies, procedures, and controls · Ensure alignment with ISO 27001 standards and regulatory requirements such as RBI , IRDA etc. · Provide IT and security audit support, assist in external certification audits and coordinate evidence collection. · Monitor KPIs and dashboards to track ISMS performance and compliance posture. · Conduct vendor security assessments as part of TPRM, track remediation and closure of vendor-related findings. · Conduct periodic access reviews to ensure least-privilege enforcement · Monitor ISMS effectiveness through periodic reviews and risk assessments · Oversee governance and closure tracking for penetration testing findings and application vulnerability assessments · Conduct awareness sessions for contractors on ISMS policies and security best practices. · Excellent presentation skills and ability to effectively communicate point of view at senior management levels Education: · Minimum Qualification: BE/ BTech · Postgraduates in any stream would be preferred (not mandatory) · Prior Big 4 experience would be an added advantage · Relevant experience in ISO 27001:2022 implementation or Audits · Excellent communication skills - both written and oral Certifications: · ISO 27001:2022 LI/ LA · CEH will be added advantage

Mandatory Skill sets:ISMS

Prefered skill sets:ISMS

Years of

Experience Required: 2-3 Years

Qualifications:BE

Education (if blank, degree and/or field of study not specified)

Degrees/Field of Study required: Bachelor of Engineering

Degrees/Field of Study preferred:

Certifications (if blank, certifications not specified)

Required Skills

Information Security Management System (ISMS)

Optional Skills

Accepting Feedback, Accepting Feedback, Active Listening, Agile Methodology, Azure Data Factory, Communication, Cybersecurity, Cybersecurity Framework, Cybersecurity Policy, Cybersecurity Requirements, Cybersecurity Strategy, Emotional Regulation, Empathy, Encryption Technologies, Inclusion, Intellectual Curiosity, Managed Services, Optimism, Privacy Compliance, Regulatory Response, Security Architecture, Security Compliance Management, Security Control, Security Incident Management, Security Monitoring {+ 3 more}

Desired Languages (If blank, desired languages not specified)

Travel Requirements

Available for Work Visa Sponsorship?

Government Clearance Required?

Job Posting End Date

IN_Associate_ISMS_Cyber Risk and Regulations_Advisory_Mumbai

Related Jobs

Health Systems Administrator (Associate Director)- Temporary Promotion NTE 1 Year

AIR TRAFFIC CONTROL SPECIALIST (TERMINAL)

AIR TRAFFIC CONTROL SPECIALIST (TERMINAL)

Transportation Assistant

EXPERIENCE SPECIALIST (MARINE MART) NF2*

Child and Youth Program Leader