IT & Project Assurance IT Risk & Security Experienced Associate
Company Name:
PwC
Line of Service: Assurance
Industry: Risk Assurance
State & City: VA-McLean
NY-New York
NC-Charlotte
MN-Minneapolis
MI-Detroit
MA-Boston
IL-Chicago
DC-Washington
CA-San Jose
CA-San Francisco
CA-Los Angeles
Travel Requirements: 61-80%
Position Type: Full Time
Auto req ID: 52145BR-8
PwC/LoS Overview:
Are you interested in the opportunity to work for an industry-leading company that services Fortune 500 companies, and will give you the experience and exposure you need to build your career? If you are, then PricewaterhouseCoopers LLP ( ) is the firm for you. PricewaterhouseCoopers LLP (PwC US) is well placed to help clients meet the challenges and opportunities of the US marketplace in the areas of assurance, tax, and advisory. We offer the perspective of being part of a global network of firms combined with detailed knowledge of local, state and US national issues. More than 163,000 people in 151 countries across our network share knowledge, experience and solutions to develop fresh perspectives and deliver practical advice. At PwC US, you will be part of a learning culture, where teamwork and collaboration are encouraged, excellence is rewarded, and diversity is respected and valued. We offer a flexible career progression model that allows for a variety of challenging opportunities throughout your career. We provide unparalleled coaching, mentoring, and career development programs; global opportunities; and state of the art technology-driven methodologies to help you provide quality service to our clients. Our Assurance practice collaborates with clients, so that the financial information they report to the investing public and other stakeholders is clear and reliable. When we fulfill our role as Assurance professionals, by standing firm on quality and integrity, we have a direct impact on how well the world''s capital market system functions. The highly trained and educated Assurance teams go inside companies, and get to know those businesses. They ask questions, test assumptions, and provide assurance that the companies are reporting information on which investors and others can rely. Every assignment is an exciting opportunity to learn, to grow and to understand how businesses operate from all levels and perspectives. Our Assurance professionals are constantly challenged to learn more in order to provide our clients with the highest quality services. This learning takes place through interaction on the job with colleagues and clients, formal training programs, and the insights provided by mentors and coaches. PwC is all about our people, encouraging high performance and quality. Join us and we will help you implement a successful career strategy, as you explore the many career opportunities in PwC Assurance.
Job Description:
For companies today, everything is fast paced. The speed at which technology advances is incredible. While there''s non-stop regulatory reform, moves are also underway to deregulate and company stakeholders increasingly demand transparency and accountability. Meanwhile, emerging markets and continued economic uncertainty add to an already risky business environment. From the boardrooms to the back offices, we work with companies to deliver company controls that help them protect and strengthen every aspect of their business from people to performance, systems to strategy, and business plans to business resilience. PwC''s Risk Assurance (RA) practice is composed of more than 2,300 resources with significant industry and technical expertise in a broad range of risk and compliance issues. We help companies achieve the confidence needed for strong three lines of defense on risk by: -Building and fortifying internal and IT risk controls -Developing and strengthening risk and compliance programs -Improving the capabilities of Internal Audit function We draw proudly on our auditing heritage as well as our commercial experience to rigorously evaluate and implement a companies governance procedures, processes, information, and controls. We provide broad support across a business to elevate trust and transparency, protect the business and give all parties assurance that risks are fully anticipated, understood, and managed strategically. 1. IT Technical Risk Assurance: Assessing the enterprise against IT threats and risks through governance, compliance, identification, and validation. This includes: - Performing IT Technical Risk Assessments - Performing detailed assessments around: - Information Security - Technical Privacy - Disaster Recovery - Infrastructure - Emerging technologies - Secure systems development - Technical Vendor Management - Compliance with Industry and IT Regulations - Providing technical audit resources to support IT Governance Assessments 2. Security Assurance: Assurance over the general activities and concerns of an organization''s security function including: governance, policy, control design, general operational effectiveness and internal controls. This includes: - As part of an integrated model with Advisory the providing of Internal Audit, Third Party Assurance, External Audit support around an organizations IT Security: - Security Governance and Compliance with various frameworks - Security Risk Assessment - Infrastructure Assessments - Attack and Penetration - Architecture and Technology Security Assessments - Emerging Technologies - Technical Privacy 3. IT Technical Audits: We provide deep technically skilled resources trained in assurance methodologies with a focus on our Internal Audit, Third Party Assurance , and External Audit clients. This includes conducting the following: - Internal Audit - Audit Technology Risk Assessments - Technical resources to support IT Internal Audit outsourcing , co-sourcing, staff augmentation - Provide technical assurance skills around IT and Security as listed on the left - Third Party Assurance - Technical support for SAS 70, AT101, SysTrust, WebTrust, - External Audit - Technical support on external audit clients
Position/Program Requirements:
Minimum Years of
Experience: 1 year experience in IT Risk Management and/or IT Internal Audit including experience in Information Security & Technical Privacy Minimum Degree Required: Bachelor''s degree in Management Information Systems, Accounting, and/or business related field Certification(s) Required: CISSP, CISM, CISA, or other related certifications completed or pursuing Knowledge Preferred: Demonstrates proven success in a role that emphasizes a thorough knowledge of technical aspects of the following areas: IT Audits, IT Risk Management, Information Security and/or Technical Privacy. Demonstrates some knowledge of performing IT Risk & Securityassessments across a broad range of technologies, leveraging thorough technical and operational knowledge of Information Security best practices and industry standards to define the security controls and processes that are appropriate for the client. Demonstrates some knowledge of providing consultancy and assurance services for Information Security strategy, policies, organization and governance, including the participation in proposal development efforts. Demonstrates some knowledge and/or exposure to the common issues facing clients who provide products and services in several sectors that include, but are not limited to Financial Services, Manufacturing, Retail, Media and Entertainment, and Energy. Skills Preferred: Demonstrates some abilities with the utilization of network and application security assessment tools and methodologies to manage and address security and control issues with the following technologies: UNIX, Windows Servers, databases (Oracle, SQL, DB2, etc), mainframe, firewalls, routers, wireless environments, mobile devices, and cloud computing. Demonstrates some ability to perform the following as it relates to Information Security strategy, organization, policy and Governance: information security, IT audits, risk assessments, network and application penetration testing and security assessments, intrusion detection, vulnerability/risk validation, and secure application development. Demonstrates some experience identifying and addressing client needs: actively participating in client discussions and meetings; communicating a broad range of Firm services; managing engagements including preparing concise, accurate documents and balancing project economics management with the occurrence of unanticipated issues. Demonstrates some experience as a consultant, auditor or Information Security analyst in a professional services firm or large enterprise, which includes: - Interfacing with clients on control solutions. - Leading the planning and execution of projects in the following areas: Information Security, Risk Management, Technical Privacy/Compliance, IT Security Audit, and / or IT Risk Management.
Date: 4/3/2014
Country: USA
City: Charlotte
Category: IT & Project AssuranceEstimated Salary: $20 to $28 per hour based on qualifications.
PwC
Line of Service: Assurance
Industry: Risk Assurance
State & City: VA-McLean
NY-New York
NC-Charlotte
MN-Minneapolis
MI-Detroit
MA-Boston
IL-Chicago
DC-Washington
CA-San Jose
CA-San Francisco
CA-Los Angeles
Travel Requirements: 61-80%
Position Type: Full Time
Auto req ID: 52145BR-8
PwC/LoS Overview:
Are you interested in the opportunity to work for an industry-leading company that services Fortune 500 companies, and will give you the experience and exposure you need to build your career? If you are, then PricewaterhouseCoopers LLP ( ) is the firm for you. PricewaterhouseCoopers LLP (PwC US) is well placed to help clients meet the challenges and opportunities of the US marketplace in the areas of assurance, tax, and advisory. We offer the perspective of being part of a global network of firms combined with detailed knowledge of local, state and US national issues. More than 163,000 people in 151 countries across our network share knowledge, experience and solutions to develop fresh perspectives and deliver practical advice. At PwC US, you will be part of a learning culture, where teamwork and collaboration are encouraged, excellence is rewarded, and diversity is respected and valued. We offer a flexible career progression model that allows for a variety of challenging opportunities throughout your career. We provide unparalleled coaching, mentoring, and career development programs; global opportunities; and state of the art technology-driven methodologies to help you provide quality service to our clients. Our Assurance practice collaborates with clients, so that the financial information they report to the investing public and other stakeholders is clear and reliable. When we fulfill our role as Assurance professionals, by standing firm on quality and integrity, we have a direct impact on how well the world''s capital market system functions. The highly trained and educated Assurance teams go inside companies, and get to know those businesses. They ask questions, test assumptions, and provide assurance that the companies are reporting information on which investors and others can rely. Every assignment is an exciting opportunity to learn, to grow and to understand how businesses operate from all levels and perspectives. Our Assurance professionals are constantly challenged to learn more in order to provide our clients with the highest quality services. This learning takes place through interaction on the job with colleagues and clients, formal training programs, and the insights provided by mentors and coaches. PwC is all about our people, encouraging high performance and quality. Join us and we will help you implement a successful career strategy, as you explore the many career opportunities in PwC Assurance.
Job Description:
For companies today, everything is fast paced. The speed at which technology advances is incredible. While there''s non-stop regulatory reform, moves are also underway to deregulate and company stakeholders increasingly demand transparency and accountability. Meanwhile, emerging markets and continued economic uncertainty add to an already risky business environment. From the boardrooms to the back offices, we work with companies to deliver company controls that help them protect and strengthen every aspect of their business from people to performance, systems to strategy, and business plans to business resilience. PwC''s Risk Assurance (RA) practice is composed of more than 2,300 resources with significant industry and technical expertise in a broad range of risk and compliance issues. We help companies achieve the confidence needed for strong three lines of defense on risk by: -Building and fortifying internal and IT risk controls -Developing and strengthening risk and compliance programs -Improving the capabilities of Internal Audit function We draw proudly on our auditing heritage as well as our commercial experience to rigorously evaluate and implement a companies governance procedures, processes, information, and controls. We provide broad support across a business to elevate trust and transparency, protect the business and give all parties assurance that risks are fully anticipated, understood, and managed strategically. 1. IT Technical Risk Assurance: Assessing the enterprise against IT threats and risks through governance, compliance, identification, and validation. This includes: - Performing IT Technical Risk Assessments - Performing detailed assessments around: - Information Security - Technical Privacy - Disaster Recovery - Infrastructure - Emerging technologies - Secure systems development - Technical Vendor Management - Compliance with Industry and IT Regulations - Providing technical audit resources to support IT Governance Assessments 2. Security Assurance: Assurance over the general activities and concerns of an organization''s security function including: governance, policy, control design, general operational effectiveness and internal controls. This includes: - As part of an integrated model with Advisory the providing of Internal Audit, Third Party Assurance, External Audit support around an organizations IT Security: - Security Governance and Compliance with various frameworks - Security Risk Assessment - Infrastructure Assessments - Attack and Penetration - Architecture and Technology Security Assessments - Emerging Technologies - Technical Privacy 3. IT Technical Audits: We provide deep technically skilled resources trained in assurance methodologies with a focus on our Internal Audit, Third Party Assurance , and External Audit clients. This includes conducting the following: - Internal Audit - Audit Technology Risk Assessments - Technical resources to support IT Internal Audit outsourcing , co-sourcing, staff augmentation - Provide technical assurance skills around IT and Security as listed on the left - Third Party Assurance - Technical support for SAS 70, AT101, SysTrust, WebTrust, - External Audit - Technical support on external audit clients
Position/Program Requirements:
Minimum Years of
Experience: 1 year experience in IT Risk Management and/or IT Internal Audit including experience in Information Security & Technical Privacy Minimum Degree Required: Bachelor''s degree in Management Information Systems, Accounting, and/or business related field Certification(s) Required: CISSP, CISM, CISA, or other related certifications completed or pursuing Knowledge Preferred: Demonstrates proven success in a role that emphasizes a thorough knowledge of technical aspects of the following areas: IT Audits, IT Risk Management, Information Security and/or Technical Privacy. Demonstrates some knowledge of performing IT Risk & Securityassessments across a broad range of technologies, leveraging thorough technical and operational knowledge of Information Security best practices and industry standards to define the security controls and processes that are appropriate for the client. Demonstrates some knowledge of providing consultancy and assurance services for Information Security strategy, policies, organization and governance, including the participation in proposal development efforts. Demonstrates some knowledge and/or exposure to the common issues facing clients who provide products and services in several sectors that include, but are not limited to Financial Services, Manufacturing, Retail, Media and Entertainment, and Energy. Skills Preferred: Demonstrates some abilities with the utilization of network and application security assessment tools and methodologies to manage and address security and control issues with the following technologies: UNIX, Windows Servers, databases (Oracle, SQL, DB2, etc), mainframe, firewalls, routers, wireless environments, mobile devices, and cloud computing. Demonstrates some ability to perform the following as it relates to Information Security strategy, organization, policy and Governance: information security, IT audits, risk assessments, network and application penetration testing and security assessments, intrusion detection, vulnerability/risk validation, and secure application development. Demonstrates some experience identifying and addressing client needs: actively participating in client discussions and meetings; communicating a broad range of Firm services; managing engagements including preparing concise, accurate documents and balancing project economics management with the occurrence of unanticipated issues. Demonstrates some experience as a consultant, auditor or Information Security analyst in a professional services firm or large enterprise, which includes: - Interfacing with clients on control solutions. - Leading the planning and execution of projects in the following areas: Information Security, Risk Management, Technical Privacy/Compliance, IT Security Audit, and / or IT Risk Management.
Date: 4/3/2014
Country: USA
City: Charlotte
Category: IT & Project AssuranceEstimated Salary: $20 to $28 per hour based on qualifications.
|
|
 | |
