Vacancies at PricewaterhouseCoopers (PWC)

Job Description & Summary

A career in our Risk Assurance Internal Audit - Client Services practice, within Risk Assurance Compliance and Analytics services, will provide you with the opportunity to assist clients in developing analytics and technology solutions that help them detect, monitor, and predict risk. Using advanced technology, we’re able to focus on establishing the right controls, processes and structures for our clients to ensure that decisions are based on accurate information and assure that information provided to third parties is accurate, complete, and can be trusted.

As a cybersecurity Senior Associate, you will be responsible for executing cyber security engagements for our clients in Kenya and across the region. You will be expected to supervise a team of cyber security professionals; reporting to the cyber security management team. You will lead the implementation of security solutions for our clients and support the clients in their desire to protect the business. You will belong to a team of specialists helping our clients with their most complex information security needs and contributing toward their business resilience. You will be working with teams to access the most sophisticated tools available to fight against cybercrime.

• Assessing and implementing security and risk standards including ISO 2700X, NIST, ITIL, COBIT
• Assessing, designing, managing, and reporting on enterprise security
• Conducting information security assessments using the company Methodology and leading practice frameworks and common standards
• Conducting attack and penetration on infrastructure, networks, and web applications, and performing source code review
• Assisting clients in managing and transforming their information security programs
• Assisting clients in managing their business continuity and disaster recovery
• Assisting clients in designing and implementing their identity and access management solutions.
• Assisting client in managing their information protection and data privacy
• Evaluating and analysing threat, vulnerability, impact and risk to security issues discovered from security assessments
• Advising clients on the IT security issues, including explanation on the technical details and how they can remediate the vulnerabilities in the systems
• Application control and security implementation, program and project delivery design, architecture and solution design

Preferred skills

• Strong project management skills and interpersonal skills to simultaneously manage multiple projects, teams, clients, and business development initiatives
• Advanced written and verbal communication skills and presentation skills
• Creativity, independence and good problem-solving skills
• Client service delivery
• Coaching and supervising junior team members
• High level of integrity and professionalism
• Drive to build a team and grow your technical information security career to the next level
• Willingness to travel as required

Minimum years experience required

• Industry related certification required (e.g. CISSP, CISM, CEH, CISA)
• At least 3 years of professional experience in either a technical IT risk or an IT security role
• Bachelor's and/or post graduate degree in computer science, information systems, engineering, or a related major

go to method of application »

Job Description & Summary

A career in our Risk Assurance Internal Audit - Client Services practice, within Risk Assurance Compliance and Analytics services, will provide you with the opportunity to assist clients in developing analytics and technology solutions that help them detect, monitor, and predict risk. Using advanced technology, we’re able to focus on establishing the right controls, processes and structures for our clients to ensure that decisions are based on accurate information and assure that information provided to third parties is accurate, complete, and can be trusted.

Our Risk Assurance team helps clients improve the governance, risk management and compliance of their operations. This solutions-based service help clients solve a diverse set of structure, function, relevant business risks by utilizing our deep understanding of governance, risk management/ compliance, IT systems and internal controls in businesses.Working with leading clients across various industries, you will assist in the execution and management of engagements ensuring we deliver according to our objectives and add value to our clients.

As a Senior Associate, you'll work as part of a team of problem solvers, helping to solve complex business issues from strategy to execution. PwC Professional skills and responsibilities for this management level include but are not limited to:

• Develop and demonstrate subject matter expertise in area of competency and act as a trusted advisor to our clients.
• Be responsible for delivery of client work.  
• Support resource allocation and team management to ensure optimum utilization of resources.
• Undertake business development by contributing to preparation of expression of interests and proposals in response to RFPs.
• Develop, coach and mentor other staff in the IT Risk Assurance team in order to build capacity.
• Deploy and manage engagement files in Aura by ensuring adherence to all risk and quality matters; adequately signed LOE, Valid AML, Affirm and Independence confirmations.
• Provide timely feedback to associates to allow for capacity development. Agree objectives/expectations with your reviewer (EM and/or EL) prior to execution of the audit, ensure evidence of the sharing of objectives is retained. Obtain timely feedback on own performance.
• Monitoring engagement deliverables ensuring work is performed as per instructions.
• Comprehensive documentation of work performed showing clear appreciation of client processes and PwC methodology.
• Discuss findings from areas reviewed with the clients to gain consensus. Prepare engagement reports properly articulating the 5Cs i.e. Criteria, concern, consequence (impact/risk), root cause and corrective action (recommendations).
• Ensure team timely completion of engagement within budgeted hours and ensure that client & internal deadlines are met. Proactively communicate engagement delays, issues and progress update with the client, EM and engagement team.
• Attend all mandatory training sessions and e-learns.

Preferred skills

• Solid understanding of governance, risk and audit concepts.
• Knowledge of cybersecurity frameworks and concepts
• Good understanding of IT audit principles and standards
• Good understanding of the COSO framework
• People management skills, ability to build partnerships, conducive team oriented working environment and provide coaching to the associates in the quest to add value to our clients.
• Technical expertise, having the knowledge and expertise of process and controls.
• Professional Ethics: Ability to maintain confidentiality and objectivity on assignments in line with PwC’s code of conduct.
• Excellent Work Ownership and or personal responsibility skills.
• Excellent communication skills, ability to receive, understand and respond to communications verbally and writing to all levels in organizations.
• The ability and willingness to travel within the Country and Africa where the project dictates.

Minimum years experience required

• 3-4 years of relevant experience in information security, data analytics, Quality Assurance, IT audits, IT risk assurance and controls reviews.
• Big 4 preference

Additional application instructions

• Bachelor’s Degree or equivalent (Second Class Honors and above) from a Higher Education Board accredited institution.
• Bachelor’s Degree in Informatics, Computer Science, Information Technology, Data analytics, Data Science.
• Preference shall be given to the candidates having either of the following qualifications: CISM, CRISC, PRINCE2, PMP, CDPSE, CGEIT, CEH, CCNA, CISSP.