Information Security Senior Associate

PwC | Posted 28-04-2021

กรุงเทพมหานคร (ความปลอดภัยทางไซเบอร์)


Line of Service

Internal Firm Services

Industry/Sector

Not Applicable

Specialism

IFS - Information Technology (IT)

Management Level

Senior Associate

Job Description & Summary

A career in Information Technology, within Internal Firm Services, will provide you with the opportunity to support our core business functions by deploying applications that enable our people to work more efficiently and deliver the highest levels of service to our clients. Our Information Technology Generalist - Practice Support team focuses on managing the design and implementation of technology infrastructure within PwC, developing and enhancing internal applications, and providing technology tools that help create a competitive advantage for PwC to drive strategic business growth.

Role description

As part of the Network Information Security (NIS) team, the Information Security Senior Associate is responsible for providing comprehensive information security services and routine internal coordination to three PwC member firms (Thailand, Laos and Cambodia). The NIS team works closely with other teams across the three member firms on information security matters and coordinates with other functional groups as needed.

The role provides advice and information to engagement and other line of service teams about various contractual requirements and government laws and regulations related to information security. This role uses functional expertise to help client service teams solve problems.

The Information Security Senior Associate works with the member firms, including the Chief Information Security Officer, to drive the development, implementation, maintenance and enhancement of all information security related activities in alignment with the Network Information Security Strategy.

This role requires experience in IT security strategy and operations, and roadmap planning. The Information Security Senior Associate incorporates PwC member firm knowledge and technical expertise in their work activities and uses their expertise in information security to solve business problems and deliver results.

Responsibilities and expected impact :

  • Review compliance and risk management for mission and business processes

  • Oversee the security events helpline

  • Develop and maintain system security plans

  • Execute tasks to drive the NIS team towards its strategic vision

  • Communicate leadership directives to the Network Information Security Organisation.

  • Provide key insight to overall security strategies and evaluate organisational progress towards agreed goals and find solutions to complex issues in order to maintain timelines and achieve project success.

  • Resolve challenging problems in collaboration with others and take initiative when appropriate to make independent choices on matters of significance.

  • Influence others within the information security group and community.

Requirements :

  • Undergraduate degree in any subject or equivalent experience

  • At least three years’ relevant experience in one or more of Information Security, Cyber Security, Information Security Audit, Information Security Policies and procedures, or ISO 27001

  • Knowledge of the following information security areas:

    • Information security policy and procedure development and maintenance

    • Annual security awareness training and role-based security training processes

    • Implementing and overseeing a compliant Risk Management Strategy

    • Insider Threat Awareness training process

    • Formalized risk assessments

  • Professional level of written and spoken Thai and English

  • Desirable: degree in Computer Science, Engineering or Information Security

  • Desirable: CISSP, CISA certification

We thank all applicants. Please note that only short-listed candidates will be contacted for interviews.

Education (if blank, degree and/or field of study not specified)

Degrees/Field of Study required:

Degrees/Field of Study preferred:

Certifications (if blank, certifications not specified)

Desired Languages (If blank, desired languages not specified)

Travel Requirements

Available for Work Visa Sponsorship?

Government Clearance Required?

Job Posting End Date