At PwC, our people in cybersecurity focus on protecting organisations from cyber threats through advanced technologies and strategies. They work to identify vulnerabilities, develop secure systems, and provide proactive solutions to safeguard sensitive data.
As a cybersecurity generalist at PwC, you will focus on providing comprehensive security solutions and experience across various domains, maintaining the protection of client systems and data. You will apply a broad understanding of cybersecurity principles and practices to address diverse security challenges effectively. Driven by curiosity, you are a reliable, contributing member of a team. In our fast-paced environment, you are expected to adapt to working with a variety of clients and team members, each presenting varying challenges and scope. Every experience is an opportunity to learn and grow. You are expected to take ownership and consistently deliver quality work that drives value for our clients and success as a team. As you navigate through the Firm, you build a brand for yourself, opening doors to more opportunities.
As an Associate, you will join our Strategy, Risk & Compliance team, supporting clients in managing cybersecurity risk, compliance, and governance. You will help identify risks, design mitigation plans, and develop security strategies. This role is within the Advisory line of service, focusing on essential information security and data protection.

Eligibility / Qualification Required:

• Education & Certifications: Degree in IT or Cybersecurity. Preferred certifications: CISA, CISM, CISSP, CRISC, ISO 27001, PCI DSS.
• Experience: 1–3 years.
• Desired Skills:
  • Strong knowledge of cybersecurity programs, risk management, and regulatory requirements.
  • Excellent communication, analytical, and project management skills.
  • Experience with automation and innovative technology solutions.
• Key Responsibilities:
  • Lead cybersecurity strategy and governance initiatives.
  • Perform maturity assessments, policy reviews, and gap analyses.
  • Design frameworks and operating models (NIST, ISO, PCI-DSS, HIPAA, COBIT).
  • Define cloud architecture and migration strategies.
  • Draft and maintain cybersecurity policies and standards.
  • Manage vendor and technology risk.
  • Utilize GRC tools (MetricStream, Archer, ServiceNow) and analytics tools (PowerBI, Tableau).
• Required Skills, Knowledge, and Experiences:
  • Apply a learning mindset and take ownership for your own development.
  • Appreciate diverse perspectives, needs, and feelings of others.
  • Adopt habits to sustain high performance and develop your potential.
  • Actively listen, ask questions to check understanding, and clearly express ideas.
  • Seek, reflect, act on, and give feedback.
  • Gather information from a range of sources to analyse facts and discern patterns.
  • Commit to understanding how the business works and building commercial awareness.
  • Learn and apply professional and technical standards (e.g., refer to specific PwC tax and audit guidance), uphold the Firm's code of conduct and independence requirements.
• Important Information Management Knowledge: Understand the importance of having correct information management knowledge of Information Security and Data Protection, and correct Information Security Management.

General Conditions:

• All qualified applicants will receive consideration for employment at PwC without regard to ethnicity; creed; color; religion; national origin; age; disability; neurodiversity; sexual orientation; gender identity or expression; marital; or any other status protected by law.
• PwC is proud to be an inclusive organization and equal opportunity employer.
• Travel Requirements: Not Specified.

How to Apply:

Application instructions, including required documents and submission method, are not explicitly provided in the given text.
View Official Posting & Apply