Audit and Assurance - Digital Assurance - Associate 2

At PwC, our people in audit and assurance focus on providing independent and objective assessments of financial statements, internal controls, and other assurable information enhancing the credibility and reliability of this information with a variety of stakeholders. They evaluate compliance with regulations including assessing governance and risk management processes and related controls. In digital assurance at PwC, you will focus on providing assurance services over clients' digital environment, including processes and controls, cyber security measures, data and AI systems, and their associated governance, to help organisations and their stakeholders build trust in their technology while complying with relevant regulations.Driven by curiosity, you are a reliable, contributing member of a team. In our fast-paced environment, you are expected to adapt to working with a variety of clients and team members, each presenting varying challenges and scope. Every experience is an opportunity to learn and grow. You are expected to take ownership and consistently deliver quality work that drives value for our clients and success as a team. As you navigate through the Firm, you build a brand for yourself, opening doors to more opportunities.

Skills

Examples of the skills, knowledge, and experiences you need to lead and deliver value at this level include but are not limited to:

• Apply a learning mindset and take ownership for your own development.
• Appreciate diverse perspectives, needs, and feelings of others.
• Adopt habits to sustain high performance and develop your potential.
• Actively listen, ask questions to check understanding, and clearly express ideas.
• Seek, reflect, act on, and give feedback.
• Gather information from a range of sources to analyse facts and discern patterns.
• Commit to understanding how the business works and building commercial awareness.
• Learn and apply professional and technical standards (e.g. refer to specific PwC tax and audit guidance), uphold the Firm's code of conduct and independence requirements.
  

▪ We are looking for a self-motivated individual who will relish the opportunityto join a growing part of the PwC business, using their skills in developing keyinternal relationships.▪ Participate in a wide range of projects and collaborate across multiple workstreams or teams; consistently demonstrating creative thinking, individualinitiative and timely completion of assigned work▪ Consistently demonstrate teamwork dynamics by working as a team member:understand personal and team roles; contribute to a positive workingenvironment by building solid relationships with team members; andproactively seek guidance, clarification and feedback.▪ Serve as participant on communications with numerous engagement teams▪ The individual should have the ability to work effectively under pressurewithout compromising professional standards or quality of the work beingperformed.▪ Knowledge and understanding of cyber security frameworks, standards, andbest practices such as NIST, ISO 27001,etc▪ Familiarity with Identity and Access Management (IAM) systems andprocessed would be a plus▪ Has a basic understanding of SOC1/SOC2/SOX reporting▪ Has a basic understanding of Internal controls and compliance.▪ Staying up-to-date on the latest information technology (IT) and cybersecuritydevelopments

Responsibilities

▪ Perform Audit procedures and provide related deliverables in accordance withPwC’s documentation and quality standards.▪ Perform IT security assessments for clients (e.g. security risk assessments, ITnetwork infrastructure reviews, system technical configurations review,information security policies and processes/procedures review etc.▪ Evaluate and analyze threat, vulnerability, impact and risk to security issuesdiscovered from security assessments▪ Advise clients on the security issues, including explanation on the technicaldetails and how they can remediate the vulnerabilities in the processes andcontrols▪ Perform assessment (pre and post implementation) of security solutions andadvise client on Industry best practices.▪ Conduct in-depth research on emerging cybersecurity threats, trends, andtechnologies, and incorporate findings into actionable recommendations.▪ Collaborate with cross-functional teams to ensure the effective implementationof security policies, standards, and best practices▪ Maintain working knowledge of IAC User Guides and Audit Standards▪ Monitor time and manage deadlines▪ Adhere to PwC IAC policies and procedures▪ Participate in training, coaching and other developmental opportunities.

Requirements

Minimum Degree(s):

▪ Bachelors or Masters degree in engineering with specialization in ManagementInformation Systems, Computer Science, Information Systems, Information Technology or equivalent▪ Understanding of audit concepts and latest regulations▪ 1 -3 years’ experience in the domains mentioned in the Job Description above & Candidates with “Big 4” or equivalent experience would be preferred

Certification(s) Preferred

▪ CISSP / ISO 27001 LA / CRISC / CISM / certifications are preferred.▪ Understanding of Cyber security concepts and audit regulations

Knowledge And Skill Set Required

▪ Working knowledge of appropriately applying internal control principles andbusiness/technical knowledge including Application Controls, IT GeneralControls and Financial Reporting Concepts.▪ Working knowledge of security controls, programming, networks and operatingsystems would be an added advantage▪ Experience with the Microsoft Office suite of products (i.e. Word, Excel,PowerPoint, Visio, etc.), including an understanding of the v-lookup, text,reference and logical and information functionality in excel.▪ Team player, committed to providing high quality and maintaining timeliness▪ Effective written and verbal communication skills including English▪ Demonstrated self-motivation and a desire to take responsibility for personalgrowth and development▪ Commitment to continuous training and to proactively learn new processes.▪ Should have strong work ethics and commitment to delivering/ownership ofwork deliverables as per agreed timelines.