Risk Services - Cyber Security Audit, Experienced Associate / Senior Associate

Overview

PwC’s Risk Services Practice provides an invaluable safeguard in today’s complex operating environment with insights and independent assurance. We work with clients to deliver business control to help protect and strengthen every aspect of their business—from people to performance, systems to strategy, and business resilience. We help clients manage, mitigate, and control risks from potential cybersecurity breaches to possible breaks in the supply chain, by assessing technology, finance, data analytics, regulatory requirements, data security and privacy, internal audit, and third-party dependencies to help clients deliver quality results and meet strategic objectives.

Role Summary

Join our Technology Risk Services as part of the Cybersecurity Audit team to help clients enhance their security posture through cybersecurity risk assessments, IT security audits, and technology regulatory compliance reviews. You will contribute to delivering comprehensive cybersecurity services and support planning and execution of technology and cybersecurity audits.

Responsibilities

• Collaborate with the team to deliver comprehensive cybersecurity services to clients.
• Assist in the planning and execution of technology and cybersecurity audits.
• Work with client teams to gather necessary audit evidence and documentation.
• Evaluate the design and operating effectiveness of IT controls related to data security and cybersecurity.
• Identify potential risks, vulnerabilities, and areas for improvement within IT systems and processes.
• Prepare clear and concise audit reports, including findings and recommendations for management.

Exposure

• Conduct compliance reviews against technology standards and regulations such as CSA Cybersecurity Codes of Practice (CSA CCoP), ISO 27001, and others.
• Participate in cyber simulation exercises.
• Support projects aimed at enhancing clients’ cybersecurity posture, including cybersecurity risk assessments and architecture security reviews.

Qualifications & Requirements

• Degree in Computer Science, Computer Engineering, Information Technology, or a non-IT degree with a focus on cybersecurity from a reputable local or international university.
• Minimum 1–2 years of experience in cybersecurity and IT audit disciplines.
• Certified Information Systems Auditor (CISA) certification or passing the CISA exam is preferred.
• Strong analytical and problem-solving skills.
• Excellent written and verbal communication skills.
• Ability to work independently and as part of a team.
• Keen attention to detail and a commitment to accuracy.
• Familiarity with common IT audit tools and techniques is preferred.

Education & Certifications

• Degrees/Field of Study: See qualifications above.
• Certifications: CISA is preferred.

Additional Details

• Available for Work Visa Sponsorship: Yes
• Government Clearance Required: No
• Travel Requirements: Not specified