Line of Service
Internal Firm ServicesIndustry/Sector
Not ApplicableSpecialism
IFS - Information Technology (IT)Management Level
Senior AssociateJob Description & Summary
About the role
PwC is driving major change across information and cyber security by building a centralised model to provide security services across the entire global network of PwC member firms. Mandated at the network level, the Network Information Security (NIS) department operates outside Information Technology (IT) and is responsible for this major program initiative, from defining the security strategy to executing the global Cyber Readiness Program, moving from local to globally provided services.
Our mission is to identify, control, and reduce the attack surface across the network of member firms while increasing our adversaries’ cost of attack.
As a Risk and Compliance Specialist, you will support a wide range of security risk and compliance initiatives, including maintaining our ISMS, sustaining ISO 27001 certification, and performing day-to-day technology risk assessments to support secure-by-design decision-making. You will work closely with internal stakeholders from across the business to meet compliance objectives, ensuring our controls and governance keep pace with the firm’s growth.
You will coordinate the compliance calendar for internal and external audits, evidence gathering and corrective actions, and help maintain the risk register and control testing cadence. You will support planning and tracking deliverables, managing scope, identifying, and mitigating risks and issues.
If you are seeking an exciting career with the scope to grow your cyber security skills through major change on a global scale, NIS will empower you to do so.
What you’ll do
- Support ISMS operations, ISO 27001 sustainment, and audit readiness.
- Maintain ISO 27001 control framework, execute control testing, evidence collection, track remediation through closure and support continual improvement initiatives.
- Coordinate internal/external audits, attestations and responses to client/vendor security due diligence.
-Support planning and execution of control testing and evidence collection; track remediation through closure.
-Support readiness reviews, sampling, walkthroughs, and management of findings through Corrective and Preventive Action (CAPAs).
- Maintain the risk register, conduct tech risk assessments, and support risk acceptance processes.
- Track KRIs, prepare leadership reports, and engage business stakeholders to align controls with objectives.
- Improve tooling, processes, and reporting to strengthen posture and reduce audit effort.
Experience & skills
- 4–6 years in information security risk & compliance; 2+ years supporting ISO 27001 ISMS operations.
- Practical experience with audits, nonconformity closure, control testing, and evidence management.
- Familiarity with risk frameworks (ISO 27005, NIST), GRC tools, secure SDLC, and enterprise/cloud tech.
- Strong communication, stakeholder management, and project management skills.
Education & certifications
- Degree in Information Security, Computer Science, Risk/Compliance, or equivalent experience.
- Preferred: ISO 27001 Foundation/Implementer certification
- Nice to have: CISM, CRISC, CISSP, CISA, CIPM/CIPT, regulatory knowledge (e.g., GDPR, DORA).
Unlock your potential with PwC Ireland
We believe that challenges are better solved together! We’re inspiring and empowering our people to change the world. Powered by the latest technology, you’ll be a part of amazing teams encouraged to collaborate and innovate in a way that creates powerful solutions and makes a positive impact. This purpose-led work, and our continuous development and encouragement, will help unlock your potential and take your career to the next level.
Enjoy PwC’s perks
We reward your impact, and support your wellbeing, through a competitive compensation package, inclusive employee benefits and flexibility programs that will help you thrive in work and life. Learn more about us at Life@PwC. (https://www.pwc.ie/careers-ie/life-at-pwc.html).
Being appreciated for being you
Our most valuable asset is our people and we grow stronger as we learn from one another. We are an equal opportunity employer and we value diversity. We do not discriminate on the basis of race, religion, color, national origin, sex, gender, gender expression, sexual orientation, age, marital status, veteran status, or disability status. We believe this so much that we have signed up for the Business in the Community Elevate Pledge. (https://www.bitc.ie/the-leaders-group-on-sustainability/inclusive-workplace-pledge/)
You can learn more about our culture of belonging and explore our range of inclusive programmes, initiatives, employee resource groups and more at www.pwc.ie.
Avoid the confidence gap; you do not have to match all the listed requirements exactly to apply, we’d love to hear from you!
We will ensure that individuals with disabilities are provided reasonable accommodation to participate in the job application or interview process, to perform essential job functions, and to receive other benefits and privileges of employment. Please email us for more information.
PwC Ireland is committed to creating an environment that promotes equality and dignity at work. Working together in an inclusive environment enables us to harness the collective and complementary skills, knowledge, background, and networks of our people.
Education (if blank, degree and/or field of study not specified)
Degrees/Field of Study required:Degrees/Field of Study preferred:Certifications (if blank, certifications not specified)
Required Skills
Optional Skills
Accepting Feedback, Accepting Feedback, Active Listening, Agile Methodology, Analytical Thinking, Azure Data Factory, Communication, Creativity, Cybersecurity, Cybersecurity Framework, Cybersecurity Policy, Cybersecurity Requirements, Cybersecurity Strategy, Embracing Change, Emotional Regulation, Empathy, Encryption Technologies, Inclusion, Intellectual Curiosity, Learning Agility, Managed Services, Optimism, Privacy Compliance, Regulatory Response, Security Architecture {+ 8 more}Desired Languages (If blank, desired languages not specified)
Travel Requirements
Not SpecifiedAvailable for Work Visa Sponsorship?
NoGovernment Clearance Required?
NoJob Posting End Date