A career in our Cybersecurity, Privacy and Forensics will provide you the opportunity to solve our clients most critical business and data protection related challenges. You will be part of a growing team driving strategic programs, data analytics, innovation, deals, cyber resilency, response, and technical implementation activities. You will have access to not only the top Cybersecurity, Privacy and Forensics professionals at PwC, but at our clients and industry analysts across the globe. The Integrated Risk Management and Governance Risk and Compliance(IRM GRC) team helps clients to think about their integrated GRC strategy, process improvement, governance models, tech implementation, how to drive change in the organization. We work to solve business problems for example from siloed to integrated risk management operating model or from fragmented data and technology to enterprise GRC technology and analytics.
To really stand out and make us fit for the future in a constantly changing world, each and every one of us at PwC needs to be a purpose-led and values-driven leader at every level. To help us achieve this we have the PwC Professional; our global leadership development framework. It gives us a single set of expectations across our lines, geographies and career paths, and provides transparency on the skills we need as individuals to be successful and progress in our careers, now and in the future.
As a Director, you&
39;ll work as part of a team of problem solvers, helping to solve complex business issues from strategy to execution. PwC Professional skills and responsibilities for this management level include but are not limited to:
- Support team to disrupt, improve and evolve ways of working when necessary.
- Arrange and sponsor appropriate assignments and experiences to help people realise their potential and support their long-term aspirations.
- Identify gaps in the market and spot opportunities to create value propositions.
- Look for opportunities to scale efficiencies and new ways of working across multiple projects and environments.
- Create an environment where people and technology thrive together to accomplish more than they could apart.
- I promote and encourage others to value difference when working in diverse teams.
- Drive and take ownership for developing connections that help deliver what is best for our people and stakeholders.
- Influence and facilitate the creation of long-term relationships which add value to the firm.
- Uphold the firm&
39;s code of ethics and business conduct.
Job Requirements and Preferences
Minimum Degree Required
Bachelor&
39;s Degree
Required Field(s) of Study
Accounting,Finance,Management Information Systems,Management Information Systems & Accounting,Computer and Information Science,Computer and Information Science & Accounting,Mathematical Statistics,Statistics,Mathematics,Economics,Economics and Finance,Economics and Finance & Technology,Business Administration/Management,Engineering
Minimum Year(s) of Experience
7 year(s)
Preferred Knowledge/Skills
Demonstrates thought leader-level hands on architectural and configuration experience with a proven track record of success managing GRC and IRM programs, solution design and configuration projects for one or more GRC/IRM Technology platforms. These projects should be targeted to enable multiple business processes and/or source data systems to drive efficiencies and reduce redundancies supporting one or more of the following functions; internal audit, compliance, enterprise risk management, operational risk management, technology risk management, third party risk management, cyber security, business resiliency, incident management, SOX (and/or other compliance frameworks), or other business programs/initiatives. In specific, the following skills are aligned with this position:
- Risk management, compliance management, and/or enterprise governance as it relates to how technologies can be and are leveraged throughout organizations&
39; internal audit, risk and compliance functions and processes, as well as the associated benefits that can be realized;
- Integrated risk management (IRM) frameworks, especially as it relates to building a program or capabilities across an enterprise;
- Experience in designing, reengineering, optimizing, and documenting financial, operational, technology, and business requirements, processes and workflow related to any of the listed GRC functions above through stakeholder interviews, facilitated workshops, and analysis of client process documentation;
- Experience in creating, drafting, and refining core business foundational elements such as process, risk, and control frameworks related to any/all of the listed GRC functions above through stakeholder interviews, knowledge of industry leading practices and frameworks, facilitated workshops, and analysis of client process documentation;
- Deep understanding of access control, specifically role based access and inheritance of role and record based permissions:
- Experience identifying sources of data outside of GRC solutions, and designing integration approaches to share data between client and third party systems;
- Knowledge of on premise and cloud based application architecture, the differences between them, advantages for each, disadvantages for each, and how each one impacts sustainability, performance, and capacity for the GRC solutions;
- Experience with implementing GRC technology such as (but not limited to) RSA Archer, MetricStream, or ServiceNow; and;
- Knowledge of proper technical documentation techniques to capture GRC solution design and configuration to meet client SDLC requirements and satisfy client requirements.
Demonstrates thought leader-level abilities with, and/or a proven record of success in directing client projects/engagements including the following areas:
- Risk management, compliance management, and/or enterprise governance as it relates to how technologies can be and are leveraged throughout organizations&
39; internal audit, risk and compliance functions and processes, as well as the associated benefits that can be realized;
- Integrated risk management (IRM) frameworks, especially as it relates to building a program or capabilities across an enterprise;
- Experience in designing, reengineering, optimizing, and documenting financial, operational, technology, and business requirements, processes and workflow related to any of the listed GRC functions above through stakeholder interviews, facilitated workshops, and analysis of client process documentation;
- Experience in creating, drafting, and refining core business foundational elements such as process, risk, and control frameworks related to any/all of the listed GRC functions above through stakeholder interviews, knowledge of industry leading practices and frameworks, facilitated workshops, and analysis of client process documentation;
- Deep understanding of access control, specifically role based access and inheritance of role and record based permissions:
- Experience identifying sources of data outside of GRC solutions, and designing integration approaches to share data between client and third party systems;
- Knowledge of on premise and cloud based application architecture, the differences between them, advantages for each, disadvantages for each, and how each one impacts sustainability, performance, and capacity for the GRC solutions;
- Experience with implementing GRC technology such as (but not limited to) RSA Archer, MetricStream, or ServiceNow; and;
- Knowledge of proper technical documentation techniques to capture GRC solution design and configuration to meet client SDLC requirements and satisfy client requirements;
- Defining resource requirements, project workflow, budgets, billing and collection;
- Creating a positive work environment, monitoring workloads of team members while meeting client expectations and respecting the work-life quality of team members, leveraging diverse views and encouraging improvement and innovation, providing candid and meaningful feedback in a timely manner and keeping leadership informed of progress; and,
- Developing and sustaining meaningful client relationships, understanding a client&
39;s business and technology in order to identify, pursue, and ultimately obtain additional consulting opportunities.
Learn more about how we work: https://pwc.to/how-we-work
PwC does not intend to hire experienced or entry level job seekers who will need, now or in the future, PwC sponsorship through the H-1B lottery, except as set forth within the following policy: https://pwc.to/H-1B-Lottery-Policy.
All qualified applicants will receive consideration for employment at PwC without regard to race; creed; color; religion; national origin; sex; age; disability; sexual orientation; gender identity or expression; genetic predisposition or carrier status; veteran, marital, or citizenship status; or any other status protected by law. PwC is proud to be an affirmative action and equal opportunity employer.
For positions based in San Francisco, consideration of qualified candidates with arrest and conviction records will be in a manner consistent with the San Francisco Fair Chance Ordinance.
The salary range for this position is: $148,000 - $317,000, plus individuals may be eligible for an annual discretionary bonus. For roles that are based in Maryland, this is the listed salary range for this position. Actual compensation within the range will be dependent upon the individual's skills, experience, qualifications and location, and applicable employment laws. PwC offers a wide range of benefits, including medical, dental, vision, 401k, holiday pay, vacation and more. To view our benefits at a glance, please visit the following link: https://pwc.to/benefits-at-a-glance