At PwC, our people in cybersecurity focus on protecting organisations from cyber threats through advanced technologies and strategies. They work to identify vulnerabilities, develop secure systems, and provide proactive solutions to safeguard sensitive data.

Those in information security at PwC will focus on protecting sensitive data and systems from cyber threats through risk assessments, security audits, and implementing robust security measures. Your work will help enable the confidentiality, integrity, and availability of information assets for clients.

At PwC, we help clients build trust and reinvent so they can turn complexity into competitive advantage. We’re a tech-forward, people-empowered network with more than 370,000 people in 149 countries. Across audit and assurance, tax and legal, deals and consulting we help clients build, accelerate and sustain momentum. Find out more at www.pwc.com.

Our Risk Services Practice provides an invaluable safeguard in today’s complex operating environment with insights and independent assurance. We work with clients to deliver business control to help them to protect and strengthen every aspect of their business from people to performance, systems to strategy, business plans to business resilience. We help clients manage, mitigate and control risks from potential cybersecurity breaches to possible breaks in the supply chain. We assess and prepare businesses by looking into their technology, finance, data analytics, regulatory requirements, data security and privacy, internal audit, and the third parties our clients rely on, to help clients deliver quality results and meet their strategic objectives.

How will you value-add? 

Join our Technology Risk Services and be part of a dynamic, global community of problem-solvers dedicated to building trust in society and tackling critical challenges. We value diversity and encourage innovative thinking, empowering our team members to lead with inspiration, challenge assumptions, and embrace new opportunities to deliver outstanding results with the aid of advanced technology.  
 
As part of the Cybersecurity Audit team, you will help clients enhance their security posture through services such as cybersecurity risk assessments, IT security audit and technology regulatory compliance reviews. 

Your responsibilities:   

• Collaborate with the team to deliver comprehensive cybersecurity services to clients.  

• Assist in the planning and execution of technology and cybersecurity audits.  

• Collaborate with client’s teams to gather necessary audit evidence and documentation.  

• Evaluate the design and operating effectiveness of IT controls related to data security and cybersecurity  etc.  

• Identify potential risks, vulnerabilities, and areas for improvement within IT systems and processes.  

• Prepare clear and concise audit reports, including findings and recommendations for management.  

Exposure includes:  

• Conducting compliance reviews against technology standards and regulations such as CSA Cybersecurity Codes of Practice (CSA CcoP), ISO27001, and others.  

• Participating in cyber simulation exercises.  

• Supporting projects aimed at enhancing clients' cybersecurity posture, such as cybersecurity risk assessments and architecture security reviews.  

Required Skills:  

• A degree in Computer Science, Computer Engineering, Information Technology, or a non-IT degree with a focus on cybersecurity from reputable local or international universities.  

• Minimum 5 years of experience in Cybersecurity and IT audit disciplines

• Certified Information Systems Auditor (CISA) certification or passing the CISA exam is preferred  

• Strong analytical and problem-solving skills  

• Excellent written and verbal communication skills  

• Ability to work independently and as part of a team  

• Keen attention to detail and a commitment to accuracy  

• Familiarity with common IT audit tools and techniques is preferred