Risk Services - Cybersecurity Audit and Data Protection Associate (July 202 at pwc
Singapore, , Singapore -
Full Time


Start Date

Immediate

Expiry Date

29 Sep, 26

Salary

0.0

Posted On

01 Jul, 26

Experience

0 year(s) or above

Remote Job

Yes

Telecommute

Yes

Sponsor Visa

Yes

Skills

Cybersecurity Audit, Data Protection, Compliance Assessment, Gap Analysis, IT Controls, Network Security, Cryptography, Cloud Security, Vulnerability Assessment, Scripting, Analytical Thinking, Communication, Risk Management, Privacy Management, Offensive Security, Technical Reporting

Industry

Professional Services

Description
Line of Service Assurance Industry/Sector TMT X-Sector Specialism Cybersecurity & Privacy Management Level Associate Job Description & Summary At PwC, we help clients build trust and reinvent so they can turn complexity into competitive advantage. We're a tech-forward, people-empowered network with more than 364,000 people in 136 countries and 137 territories. Across audit and assurance, tax and legal, deals and consulting, we help clients build, accelerate, and sustain momentum. Find out more at www.pwc.com. About Risk Services Our Risk Services Practice provides an invaluable safeguard in today’s complex operating environment with insights and independent assurance. We work with clients to deliver business control to help them to protect and strengthen every aspect of their business from people to performance, systems to strategy, business plans to business resilience. We help clients manage, mitigate and control risks from potential cybersecurity breaches to possible breaks in the supply chain. We assess and prepare businesses by looking into their technology, finance, data analytics, regulatory requirements, data security and privacy, internal audit, and the third parties our clients rely on, to help clients deliver quality results and meet their strategic objectives. Key Responsibilities As an Associate, your responsibilities include but are not limited to: Collaborate with the team to deliver comprehensive cybersecurity and data protection services to clients. Support assessments of clients’ data protection practices against local regulations (such as PDPA in Singapore) and international standards (e.g., GDPR, ISO 27701, ISO27001, NIST Cybersecurity and Privacy frameworks). Assist in performing gap analyses and compliance assessments, contributing to detailed reporting and actionable recommendations. Assist in the planning and execution of technology and cybersecurity audits. Collaborate with clients' teams to gather necessary audit evidence and documentation, evaluating the design and operating effectiveness of IT controls. Identify potential risks, vulnerabilities, and areas for improvement within IT systems and processes, preparing clear and concise audit reports, including findings and recommendations for management. Conducting compliance reviews against technology standards and regulations such as CSA Cybersecurity Codes of Practice (CSA CcoP), ISO27001, and others. Engage with various tools and technologies used in data security, privacy management, and risk assessment, participating in cyber simulation exercises. Collaborate across multidisciplinary teams, assisting with the establishment and uplift of data and cybersecurity measures for our clients and supporting projects aimed at enhancing clients' cybersecurity posture. What We Are Looking For Final-year student or recent graduate in Computer Science, Computer Engineering, Information Technology, Cybersecurity, or related disciplines from reputable local or overseas universities. Strong fundamentals in information technology, networking principles, and cybersecurity concepts. Basic understanding of network and cryptography principles, and data loss prevention (DLP) technologies. Familiarity with cloud security principles and tools (e.g., Microsoft 365, AWS, Azure), common security testing tools (e.g., Kali Linux, Burp Suite, Nmap, Metasploit, Covenant, BloodHound) and database security fundamentals. Knowledge of data privacy principles, cybersecurity frameworks, and regulations, along with understanding common vulnerability classes (e.g. OWASP Top 10), exploitation techniques, and defensive concepts. Working knowledge of at least one scripting language (e.g., Python, Bash, PowerShell) – the ability to automate and adapt is a plus. Strong analytical thinking, critical thinking, and problem-solving skills; ability to explain highly technical concepts to non-technical stakeholders. Excellent interpersonal and communication skills. Ability to work collaboratively in a team environment, showing initiative and eagerness to learn. Offensive security certifications such as OSCP, CRT, CRTO, CEH, eJPT, eCPPT, or similar (or working towards them). Genuine passion for offensive security with active participation in CTFs and contributions to open-source offensive security tools. Application Notes Please indicate your first-choice role and, where applicable, a second-choice role, based on your skills, interests, and career aspirations. Only shortlisted candidates will be notified due to the high volume of applications. Kindly upload both your resume and academic transcript/degree audit in PDF format Have questions? Get in touch with us at sg_graduate_recruitment@pwc.com There have been reports of scammers impersonating PwC HR professionals contacting individuals about fraudulent job opportunities using non-PwC domain email addresses and an overseas number. Please note that genuine communications from our HR team will only come from "@pwc.com" email addresses. Education (if blank, degree and/or field of study not specified) Degrees/Field of Study required: Degrees/Field of Study preferred: Certifications (if blank, certifications not specified) Required Skills Optional Skills Accepting Feedback, Accepting Feedback, Active Listening, Azure Data Factory, Communication, Cybersecurity, Cybersecurity Governance, Data Architecture Development, Data Archiving, Data Flow Mapping, Data Privacy Act, Emotional Regulation, Empathy, Enterprise Content Management, Incident Response Plan, Inclusion, Information Rights Management (IRM), Information Security, Information Security Governance, Information Security Management System (ISMS), Intellectual Curiosity, IT Infrastructure, Operating Model, Optimism, Privacy and Security {+ 6 more} Desired Languages (If blank, desired languages not specified) Travel Requirements Not Specified Available for Work Visa Sponsorship? Yes Government Clearance Required? No Job Posting End Date Are you ready to make a difference? Want to unlock new value by applying your unique perspective and talents? You can grow exponentially at PwC. Here, you can uncover hidden talents, build lifelong relationships rooted in trust and empathy and turn challenges into opportunities for innovation. We’ll help you grow your skills through challenging, meaningful work so you can go further.

How To Apply:

Incase you would like to apply to this job directly from the source, please click here

Responsibilities
Collaborate with teams to deliver cybersecurity and data protection services, including compliance assessments against regulations like PDPA and GDPR. Execute technology audits to evaluate IT controls and identify vulnerabilities within client systems.
Loading...