Cyber Risk & Reg - Enterprises Risk and Controls - ITGC - Associate

At PwC, our people in audit and assurance focus on providing independent and objective assessments of financial statements, internal controls, and other assurable information enhancing the credibility and reliability of this information with a variety of stakeholders. They evaluate compliance with regulations including assessing governance and risk management processes and related controls. Those in internal audit at PwC help build, optimise and deliver end-to-end internal audit services to clients in all industries. This includes IA function setup and transformation, co-sourcing, outsourcing and managed services, using AI and other risk technology and delivery models. IA capabilities are combined with other industry and technical expertise, in areas like cyber, forensics and compliance, to address the full spectrum of risks. This helps organisations to harness the power of IA to help the organisation protect value and navigate disruption, and obtain confidence to take risks to power growth.Driven by curiosity, you are a reliable, contributing member of a team. In our fast-paced environment, you are expected to adapt to working with a variety of clients and team members, each presenting varying challenges and scope. Every experience is an opportunity to learn and grow. You are expected to take ownership and consistently deliver quality work that drives value for our clients and success as a team. As you navigate through the Firm, you build a brand for yourself, opening doors to more opportunities.

Skills

Examples of the skills, knowledge, and experiences you need to lead and deliver value at this level include but are not limited to:

• Apply a learning mindset and take ownership for your own development.
• Appreciate diverse perspectives, needs, and feelings of others.
• Adopt habits to sustain high performance and develop your potential.
• Actively listen, ask questions to check understanding, and clearly express ideas.
• Seek, reflect, act on, and give feedback.
• Gather information from a range of sources to analyse facts and discern patterns.
• Commit to understanding how the business works and building commercial awareness.
• Learn and apply professional and technical standards (e.g. refer to specific PwC tax and audit guidance), uphold the Firm's code of conduct and independence requirements.
  

Reporting

▪ Position reports to the Cyber, Risk & Regulatory (Advisory) Manager

Essential Duties And Responsibilities

• Deliver technology focused Internal audit & SoX reviews in the areas of ITGC, ITAC, IPE & Key Report Testing, IT governance, risk and compliance and SOC Control Testing.
• Build and maintain strong peer relationships within the team and across the organisation.
• Stay updated on emerging technology risks, trends. Stay informed on industry best practices and regulatory requirements related to technology controls.
• Ensure compliance with engagement plans and internal quality & risk management procedures.
  

Interpersonal Skills

▪ Ability to work under general supervision with latitude for initiative and independent judgment.▪ Effective verbal and written communications, including active listening skills

• ▪ Ability to establish and maintain effective working relationships with co-workers and external contactors/auditors
  

▪ Detail-oriented and comfortable working on multiple projects simultaneously.▪ Individuals would be expected to cultivate a strong team environment and promote a positive working relationship amongst their team. Client Management▪ Develop strong working relationships with the client andonshore client teams.▪ Maintain excellent rapport and proactive communication with the stakeholders and client. Operational excellence▪ Suggest ideas on improving engagement productivity and identify opportunities for improving client service. People related▪ Display teamwork, integrity, and leadership. Work with team members to set goals and responsibilities for specific engagements.▪ Foster teamwork and innovation.

Minimum Qualifications

• Bachelor's degree in information technology, computer science, or a related field. o Candidates with 1-1.5 years of relevant experience in similar roles, preferably with a “Big 4” or equivalent.
• Experience in internal audit, external audit, or a related field. o Experience in technology and SOX controls testing.
• Experience in 2 or more of the following areas is essential:
• IT general controls testing,
• IT Automated Control
• IPE & Key Report testing
• SOX Readiness
• SOC Control Testing
• Infrastructure assessment (DB and OS) o Experience using industry best practice frameworks (e.g. COSO, COBIT etc.) o Knowledge of any ERP like SAP would be an added advantage.
  

Certification(s) Preferred

• CISA / CISM / CRISC / CISSP / ISO 27001 LA certifications