Job Description

Line of Service

Advisory

Industry/Sector

FS X-Sector

Specialism

Risk

Management Level

Manager

& Summary

At PwC, our people in cybersecurity focus on protecting organisations from cyber threats through advanced technologies and strategies. They work to identify vulnerabilities, develop secure systems, and provide proactive solutions to safeguard sensitive data.

In cloud security at PwC, you will be responsible for designing, implementing and elevating the security posture across our clients’ cloud environments, covering IaaS, PaaS and SaaS. Your work will involve having a deep technical knowledge of cloud security and you will work with one or more Cloud Service Providers (CSP) to implement security protocols, monitor for potential security breaches, conduct risk assessments and vulnerability testing of cloud-based systems, and stay up to date with the latest security threats and trends in cloud technology.

*Why PWC

At PwC, you will be part of a vibrant community of solvers that leads with trust and creates distinctive outcomes for our clients and communities. This purpose-led and values-driven work, powered by technology in an environment that drives innovation, will enable you to make a tangible impact in the real world. We reward your contributions, support your wellbeing, and offer inclusive benefits, flexibility programmes and mentorship that will help you thrive in work and life. Together, we grow, learn, care, collaborate, and create a future of infinite experiences for each other. Learn more about us

At PwC, we believe in providing equal employment opportunities, without any discrimination on the grounds of gender, ethnic background, age, disability, marital status, sexual orientation, pregnancy, gender identity or expression, religion or other beliefs, perceived differences and status protected by law. We strive to create an environment where each one of our people can bring their true selves and contribute to their personal growth and the firm’s growth. To enable this, we have zero tolerance for any discrimination and harassment based on the above considerations. "

The Senior Associate supports the delivery of cybersecurity consulting engagements across diverse client environments. The role involves conducting cybersecuritygapand risk assessments, supporting the implementation of recognized security frameworks, and developing clear, structured policies and procedures. The Senior Associate analyzes control gaps, assesses risk exposure, and delivers practical, prioritized recommendations to improve security maturity.

The role requires strong analytical and communication skills,hands‑onexecution capability, and effective collaboration with clients and internal teams. The Senior Associate contributes to engagement delivery, proposal development, and mentoring junior team members. Exposure to complex,IP‑sensitivetechnology environments is considered avalue‑addSemiconductor Industry experience will be preferred.

Responsibilities 

• Conduct comprehensive cybersecurity gap assessments across client environments, evaluating governance, processes, and technical controls.

• Design, develop, implement, andmaintaininformation security frameworks and control programs aligned with:

• ISO/IEC 27001:2022

• NIST Cybersecurity Framework (CSF) 2.0

• NIST SP 800‑53

• Other applicable industry standards

• Perform risk assessments focusing on:

• Cybersecurity and information security risks

• Business continuity and operational resilience

• Data protection and privacy risks

• Develop and document cybersecurity policies, standards, procedures, and guidelines aligned with international standards, contractual requirements, and organizationalobjectives

• Lead independentthird‑partysecurity assessments, audits, and maturity evaluations, and deliver clear, actionable, andrisk‑prioritizedrecommendations.

• Support organizations in improving cybersecurity maturity, including risk management, control design, remediation planning, and continuous improvement initiatives.

• Manage client engagementsend‑to‑end, including:

• RFP responses and proposal development

• Engagement planning, execution, and delivery management

• Stakeholder communication and reporting

• Collaborate effectively withcross‑functionalinternal teams and external stakeholders, including IT, engineering, legal, compliance, and business leadership.

Required Skills & Experience 

• Strong understanding of cybersecurity risk management, governance, and control frameworks.

• Ability to translate technical findings into business‑relevant insights.

• Experience producing clear, structured documentation and executive‑level reports.

• Ability to work across diverse client environments and operating models

• Ability to drive compliance maturity and foster strong stakeholder relationships. 

• Understanding of technology‑or IP ‑driven environments (e.g., advanced manufacturing or semiconductor) is a plus, but not mandatory.

• Awareness of cybersecurity considerations in mixed IT and engineering/OT environments, including high‑availability and operational constraints.

Competencies 

Accountability | Customer Centricity | Collaboration | Integrity | Perseverance | Learning Mindset | Networking | Communication Skills 

Keywords for Job Portal 

Cybersecurity Compliance 

Governance, Risk and Compliance

IEC 62443 

IoT Security 

NIST CSF

NIST Gap Assessment  

Mandatory Skill Sets:

Cybersecurity , product security , vehicle security

Preferred Skill Sets:

Cybersecurity , product security , vehicle security

Years of Experience required: 4-6 Years 

Education Qualification 

Bachelor’s degree in Computer Science, Information Technology, Electronics, Electrical Engineering, Cybersecurity, or a related discipline. 

Professional certifications in cybersecurity and compliance are strongly desirable, such as: 

• ISO/IEC 27001 Lead Implementer or Lead Auditor 

• CISSP, CISM, or equivalent global certifications 

• IEC 62443 Practitioner/Expert level certifications 

Education (if blank, degree and/or field of study not specified)

Degrees/Field of Study required: Bachelor DegreeDegrees/Field of Study preferred:

Certifications (if blank, certifications not specified)

Required Skills

Cybersecurity

Optional Skills

Accepting Feedback, Accepting Feedback, Active Listening, Analytical Thinking, Cloud Administration, Cloud Engineering, Cloud Infrastructure, Cloud Infrastructure Architecture Design, Cloud Resource Management, Cloud Security, Cloud Security Auditing, Cloud Service Delivery, Cloud Service Level Risk Management, Coaching and Feedback, Communication, Creativity, Cyber Engineering, Embracing Change, Emotional Regulation, Empathy, Forensic Investigation, Incident Investigation, Inclusion, Information Security, Infrastructure as a Service (IaaS) {+ 24 more}

Desired Languages (If blank, desired languages not specified)

Travel Requirements

Not Specified

Available for Work Visa Sponsorship?

No

Government Clearance Required?

No

Job Posting End Date

May 10, 2026