Information Security Analyst

The Information Security Analyst role is responsible for providing comprehensive information security services and routine coordination internally to PwC member firms. The team works closely with engagement teams across the member firm on information security matters and coordinates with other functional groups as needed.  The role will provide advice and inform engagement and member firm / line of service teams about various contractual requirements and government laws and regulations as they pertain to information security.  This role leverages functional expertise to help client service teams solve problems.

Range of Impact: 

• Review compliance and risk management for mission/business processes
• Hotline/helpline oversight on security events
• Develop  and maintain system security plans
• Execute tasks to drive towards strategic vision
• Demonstrate success working in new organisations and has illustrated critical attributes to include flexibility and innovative thinking
• Communicate and maintain leadership directives to the Network Information Security Organisation.
• Provide key insight to overall security strategies and evaluate organisational progress towards agreed upon goals and find solution to complex issues in order to maintain timelines and achieve project success.
• Resolve challenging problems in collaboration with others and takes initiative when appropriate to make independent choices on matters of significance
• Influence others within information security group and community
   

Scope of responsibility:  

The Information Security Analyst demonstrates significant knowledge and success of system security, controls or information security management environment, specifically the following information security areas:

• Information security policy and procedure development and maintenance
• Maintenance of annual security awareness training and role-based security training processes
• Implementing and overseeing a compliant Risk Management Strategy
• Maintenance of Insider Threat Awareness training process
• Perform and maintain formalised risk assessments
   

Responsibilities:

• Demonstrates proven abilities and success with leveraging creative thinking and problem solving skills, individual initiative, and utilising MS Office
• Demonstrates significant experience supporting Information Security Governance daily tasks and duties
• Demonstrates significant experience in security governance planning, design, and implementation, as well as delegation of responsibilities to staff including associates
• Demonstrates proven, refined abilities and success with identifying and addressing leadership and stakeholders needs
• Builds solid relationships with leadership and stakeholders
• Maintains significant awareness of Firm services and capabilities
• Communicates with the leadership and stakeholders in an organised and knowledgeable manner
• Develops key deliverables
• Communicates strategic progress to internal stakeholders and works closely with the pillar leads to adapt the strategy as needed.
   

Education Level:

• Undergraduate Degree (e.g. BA,BS) or equivalent experience
   

Experience Level:

• 2+ years of related experience