Compliance Testing-Data Privacy & Information Security-SA2-Kolkata

Job Description

DescriptionLine of ServiceInternal Firm ServicesIndustry/SectorNot ApplicableSpecialismManaged ServicesManagement LevelSenior AssociateJob Description & SummaryA career in Risk Management, within Internal Firm Services, will provide you with the opportunity to advance and foster integrity based decision making and conduct by PwC professionals throughout our organisation. You ll focus on promoting and monitoring compliance with applicable external laws and regulations as well as internal policies and procedures to help manage PwC s regulatory, litigation, and reputational risk.Our Compliance team is responsible for oversight of all Compliance activities by our PwC professionals. As part of the team, you ll help promote and monitor compliance with applicable external and internal policies, laws and regulations and subsequently, manage PwC s regulatory, litigation and reputational risk.To really stand out and make us fit for the future in a constantly changing world, each and every one of us at PwC needs to be a purpose-led and values-driven leader at every level. To help us achieve this we have the PwC Professional; our global leadership development framework. It gives us a single set of expectations across our lines, geographies and career paths, and provides transparency on the skills we need as individuals to be successful and progress in our careers, now and in the future.As a Senior Associate, youll work as part of a team of problem solvers, helping to solve complex business issues from strategy to execution. PwC Professional skills and responsibilities for this management level include but are not limited to:

• Use feedback and reflection to develop self awareness, personal strengths and address development areas.
• Delegate to others to provide stretch opportunities, coaching them to deliver results.
• Demonstrate critical thinking and the ability to bring order to unstructured problems.
• Use a broad range of tools and techniques to extract insights from current industry or sector trends.
• Review your work and that of others for quality, accuracy and relevance.
• Know how and when to use tools available for a given situation and can explain the reasons for this choice.
• Seek and embrace opportunities which give exposure to different situations, environments and perspectives.
• Use straightforward communication, in a structured way, when influencing and connecting with others.
• Able to read situations and modify behavior to build quality relationships.
• Uphold the firms code of ethics and business conduct.

Essential Criteria:Minimum of three years experience working in data protection compliance or a related field.

• Ability to review data protection, privacy and compliance controls implemented to inform, advise and issue recommendations.
• Application and review of controls against with data protection laws (e.g. GDPR, HIPPA, DPAct) and internal policies and guidelines.
• Relevant degree in technology, information governance, data privacy, information security or similar.
• Evaluating the control environment including review of compensating controls and risk mitigation.
• Information Security assessment processes, including audit, vulnerability scanning, and security policy and standards review.
• Creating or managing IT security policies and standards.
• Organized, with excellent attention to detail and a passion for delivering high quality output for clients
• Ability to assimilate different sources of information and extract relevant data points
• Attention to detail and the ability to produce high quality documentation.
• Great communication skills, both written and oral.
• Ability to work independently and as part of a team.
• Great teamwork skills and ability to manage a varied workload.

Desirable Criteria:

• Cyber Security related certifications including ISO27001 Lead Auditor, CISA, CISM, COBIT, CISSP, CIPM
• Strong understanding of information security controls & ISMS standards such as ISO 27001/2, COBIT and NIST
• Experience with SOC2 compliance standards

Education (if blank, degree and/or field of study not specified)Degrees/Field of Study required: Degrees/Field of Study preferred:Certifications (if blank, certifications not specified)Desired Languages (If blank, desired languages not specified)Travel RequirementsNot SpecifiedAvailable for Work Visa Sponsorship NoGovernment Clearance Required NoJob Posting End DateJuly 31, 2021,

Keyskills :
security controlsisoit securityvulnerability scanningdata privacyit security policiescode of ethicsiso 27001critical thinkingsecurity policyinformation securityrisk managementinformation governance