Job Description

Line of Service

Internal Firm Services

Industry/Sector

Not Applicable

Specialism

IFS - Information Technology (IT)

Management Level

Senior Associate

& Summary

About the role

PwC is driving major change across information and cyber security by building acentralisedmodel to provide security services across the entire global network of PwC member firms. Mandated at the network level, the Network Information Security (NIS) departmentoperatesoutside Information Technology (IT) andis responsible forthis major program initiative, from defining the security strategy to executing the global Cyber Readiness Program, moving from local to globally provided services.

Our mission is toidentify, control, and reduce the attack surface across the network of member firms while increasing our adversaries’ cost of attack.

As a Risk and Compliance Specialist, you will support a wide range of security risk and compliance initiatives, includingmaintainingour ISMS, sustaining ISO 27001 certification, and performing day-to-day technology risk assessments to support secure-by-design decision-making. You will work closely with internal stakeholders from across the business to meet complianceobjectives, ensuring our controls and governance keep pace with the firm’s growth.

You will coordinate the compliance calendar for internal and external audits, evidence gathering and corrective actions, and helpmaintainthe risk register and control testing cadence. You will support planning and tracking deliverables, managing scope,identifying, and mitigating risks and issues.

If you are seeking an exciting career with the scope to grow your cyber security skills through major change on a global scale, NIS will empower you to do so.

Whatyou’lldo

- Support ISMS operations, ISO 27001 sustainment, and audit readiness.

-MaintainISO 27001 control framework, execute control testing, evidence collection,track remediation through closureand support continual improvement initiatives.

-Coordinateinternal/external audits,attestationsand responsesto client/vendor security due diligence.

-Support planning and execution of control testing andevidencecollection; track remediation through closure.

-Support readiness reviews, sampling, walkthroughs, and management of findings through Corrective and Preventive Action (CAPAs).

-Maintainthe risk register, conduct tech risk assessments, and support risk acceptance processes.

- Track KRIs, prepare leadership reports, and engage business stakeholders to align controls withobjectives

- Improve tooling, processes, and reporting to strengthen posture and reduce audit effort.

Experience & skills

- 4–6 years in information security risk & compliance; 2+ years supporting ISO 27001 ISMS operations.

- Practical experience with audits, nonconformity closure, control testing, and evidence management.

- Familiarity with risk frameworks (ISO 27005, NIST), GRC tools, secure SDLC, and enterprise/cloud tech.

-Strong communication, stakeholder management, andprojectmanagementskills.

Education & certifications

- Degree in Information Security, Computer Science, Risk/Compliance, or equivalent experience.

- Preferred: ISO 27001 Foundation/Implementercertification

- Nice to have: CISM, CRISC, CISSP, CISA, CIPM/CIPT, regulatory knowledge (e.g., GDPR, DORA).

Unlock your potential with PwC Ireland

We believe that challenges are better solved together! We’re inspiring and empowering our people to change the world. Powered by the latest technology, you’ll be a part of amazing teams encouraged to collaborate and innovate in a way that creates powerful solutions and makes a positive impact. This purpose-led work, and our continuous development and encouragement, will help unlock your potential and take your career to the next level.

Enjoy PwC’s perks

We reward your impact, and support your wellbeing, through a competitive compensation package, inclusive employee benefits and flexibility programs that will help you thrive in work and life. Learn more about us at Life@PwC. ( https://www.pwc.ie/careers-ie/life-at-pwc.html).

Being appreciated for being you

Our most valuable asset is our people and we grow stronger as we learn from one another. We are an equal opportunity employer and we value diversity. We do not discriminate on the basis of race, religion, color, national origin, sex, gender, gender expression, sexual orientation, age, marital status, veteran status, or disability status. We believe this so much that we have signed up for the Business in the Community Elevate Pledge ( https://www.bitc.ie/the-leaders-group-on-sustainability/inclusive-workplace-pledge/)

You can learn more about our culture of belonging and explore our range of inclusive programmes, initiatives, employee resource groups and more at www.pwc.ie

Avoid the confidence gap; you do not have to match all the listed requirements exactly to apply, we’d love to hear from you!

We will ensure that individuals with disabilities are provided reasonable accommodation to participate in the job application or interview process, to perform essential job functions, and to receive other benefits and privileges of employment. Please email usfor more information.

PwC Ireland is committed to creating an environment that promotes equality and dignity at work. Working together in an inclusive environment enables us to harness the collective and complementary skills, knowledge, background, and networks of our people.

Education (if blank, degree and/or field of study not specified)

Degrees/Field of Study required:Degrees/Field of Study preferred:

Certifications (if blank, certifications not specified)

Required Skills

Optional Skills

Accepting Feedback, Accepting Feedback, Active Listening, Agile Methodology, Analytical Thinking, Azure Data Factory, Communication, Creativity, Cybersecurity, Cybersecurity Framework, Cybersecurity Policy, Cybersecurity Requirements, Cybersecurity Strategy, Embracing Change, Emotional Regulation, Empathy, Encryption Technologies, Inclusion, Intellectual Curiosity, Learning Agility, Managed Services, Optimism, Privacy Compliance, Regulatory Response, Security Architecture {+ 8 more}

Desired Languages (If blank, desired languages not specified)

Travel Requirements

Not Specified

Available for Work Visa Sponsorship?

No

Government Clearance Required?

No

Job Posting End Date