Senior Manager-Cybersecurity-Risk Assurance-Assurance (职位编号:7070BR)
PwC 普华永道
- 公司规模:1000-5000人
- 公司性质:外资(欧美)
- 公司行业:专业服务(咨询、人力资源、财会)
职位信息
- 发布日期:2017-01-06
- 工作地点:北京
- 招聘人数:若干人
- 工作经验:5-7年经验
- 学历要求:本科
- 语言要求:英语 熟练 普通话 熟练
- 职位类别:产品经理/主管 电子商务经理/主管
职位描述
职位描述:
About Audit and Assurance
Auditing today isn’t only about compliance or merely following rules. By providing a balanced, objective opinion on financial statements, you help to build trust between companies and their stakeholders, including investors. This trust depends on more than just numbers. It requires the application of your judgment and insight, drawing on both technical knowledge and commercial experience.
As our largest service line, you’ll experience a dynamic and fast moving working environment. From potential startups to multinational corporations, clients will look to you for advice on audit, regulatory, listing, private placement, corporate change, and a host of other business topics.
We are currently looking for a senior IT/cyber security who has strong information security, technology risk, IT strategy and governance experience.
Key responsibilities will include:
Business Development:
1.Develop business opportunities, grow and maintain relationships with existing and prospective PwC clients.
2.Identify opportunities and manage commercial activities with the support of leading partners, including technical and financial discussions.
3.Seek opportunities to develop innovative solutions to assist clients to implement sustainability through their business operations
Consulting & Project Management:
1.Designing, assessing and implementing technology risk and information security management frameworks, policies, standards, procedures, and application systems / technology infrastructure, and security solutions such as Enterprise-wide Identity & Access Management (I&AM), Data Loss Prevention (DLP) and Security Information & Event Management (SIEM) solutions, using ISO27001, ISO20000 and CoBIT as the internationally recognised information security and IT service management standards,
2.Helping major clients understand and address their IT / cyber security development needs – both on a project-by-project basis and for a selection of clients on a periodic / recurring basis, covering the full range of cyber security management processes from preventive measures through to detective measures and cyber incident response plan and from a people/process/technology perspective;
3.Leading the IT/Cyber security team and helping them ensure that they are fully aware and fluent with all key emerging IT security tools and market issues
4.Providing assurance over the operations and approach of managing service providers in any outsourcing of the IT function, and
Establishing risk governance recommendations on emerging policies to support the development of new procedures and methodologies to minimise risks.
Job Requirement:
1.University degree majoring in accounting, business administration, information systems, computer science, engineering, statistics, accounting, and / or business administration;
2.Professional qualifications: CISA, CISSP, CISM, CISP or CEH;
3.Minimum of 7 years system design / implementation and / or controls assurance experience with a reputable local firm or international professional / consulting firm or multi-national corporations; Also need to have proven track record in dealing with complex IT / Cyber security projects and resolving issues.
4.Management experience with security and control for technologies / enterprise applications: Unix, Windows, Firewall, Routers, SAP, Oracle, Hyperion and/ or evaluating and implementing information security management, IT service management and IT governance framework using ISO27001, ISO20000, ITIL and COBIT respectively;
5.Experienced and knowledgeable in OWASP and mobile OWASP risks;
6.Excellent communication skills in both oral and written English – and preferably also in Chinese;
7.Flexible, self-starter;
8.Strong interpersonal skill and executive presence and able to interact with executive levels of client and PwC management;
9.Proven experience as team leader and coach;
10.Effective project management, interpersonal and influencing skills are essential
举报
分享
About Audit and Assurance
Auditing today isn’t only about compliance or merely following rules. By providing a balanced, objective opinion on financial statements, you help to build trust between companies and their stakeholders, including investors. This trust depends on more than just numbers. It requires the application of your judgment and insight, drawing on both technical knowledge and commercial experience.
As our largest service line, you’ll experience a dynamic and fast moving working environment. From potential startups to multinational corporations, clients will look to you for advice on audit, regulatory, listing, private placement, corporate change, and a host of other business topics.
We are currently looking for a senior IT/cyber security who has strong information security, technology risk, IT strategy and governance experience.
Key responsibilities will include:
Business Development:
1.Develop business opportunities, grow and maintain relationships with existing and prospective PwC clients.
2.Identify opportunities and manage commercial activities with the support of leading partners, including technical and financial discussions.
3.Seek opportunities to develop innovative solutions to assist clients to implement sustainability through their business operations
Consulting & Project Management:
1.Designing, assessing and implementing technology risk and information security management frameworks, policies, standards, procedures, and application systems / technology infrastructure, and security solutions such as Enterprise-wide Identity & Access Management (I&AM), Data Loss Prevention (DLP) and Security Information & Event Management (SIEM) solutions, using ISO27001, ISO20000 and CoBIT as the internationally recognised information security and IT service management standards,
2.Helping major clients understand and address their IT / cyber security development needs – both on a project-by-project basis and for a selection of clients on a periodic / recurring basis, covering the full range of cyber security management processes from preventive measures through to detective measures and cyber incident response plan and from a people/process/technology perspective;
3.Leading the IT/Cyber security team and helping them ensure that they are fully aware and fluent with all key emerging IT security tools and market issues
4.Providing assurance over the operations and approach of managing service providers in any outsourcing of the IT function, and
Establishing risk governance recommendations on emerging policies to support the development of new procedures and methodologies to minimise risks.
Job Requirement:
1.University degree majoring in accounting, business administration, information systems, computer science, engineering, statistics, accounting, and / or business administration;
2.Professional qualifications: CISA, CISSP, CISM, CISP or CEH;
3.Minimum of 7 years system design / implementation and / or controls assurance experience with a reputable local firm or international professional / consulting firm or multi-national corporations; Also need to have proven track record in dealing with complex IT / Cyber security projects and resolving issues.
4.Management experience with security and control for technologies / enterprise applications: Unix, Windows, Firewall, Routers, SAP, Oracle, Hyperion and/ or evaluating and implementing information security management, IT service management and IT governance framework using ISO27001, ISO20000, ITIL and COBIT respectively;
5.Experienced and knowledgeable in OWASP and mobile OWASP risks;
6.Excellent communication skills in both oral and written English – and preferably also in Chinese;
7.Flexible, self-starter;
8.Strong interpersonal skill and executive presence and able to interact with executive levels of client and PwC management;
9.Proven experience as team leader and coach;
10.Effective project management, interpersonal and influencing skills are essential
职能类别: 产品经理/主管 电子商务经理/主管
公司介绍
普华永道 - 中国內地、中国香港及中国澳门
普华永道中国內地、中国香港及中国澳门成员机构根据各地适用的法律协作运营。整体而言,员工总数超过17,000人,其中包括超过600名合伙人。
无论客户身在何处,普华永道均能提供所需的专业意见。我们实务经验丰富、高素质的专业团队能聆听各种意见,帮助客户解决业务问题,发掘并把握机遇。我们的行业专业化有助于就客户关注的领域共创解决方案。
我们分布于以下城市:北京、上海、香港、沈阳、天津、大连、济南、青岛、郑州、西安、南京、合肥、苏州、武汉、成都、杭州、宁波、重庆、长沙、昆明、厦门、广州、深圳、澳门、海口。
普华永道中国內地、中国香港及中国澳门成员机构根据各地适用的法律协作运营。整体而言,员工总数超过17,000人,其中包括超过600名合伙人。
无论客户身在何处,普华永道均能提供所需的专业意见。我们实务经验丰富、高素质的专业团队能聆听各种意见,帮助客户解决业务问题,发掘并把握机遇。我们的行业专业化有助于就客户关注的领域共创解决方案。
我们分布于以下城市:北京、上海、香港、沈阳、天津、大连、济南、青岛、郑州、西安、南京、合肥、苏州、武汉、成都、杭州、宁波、重庆、长沙、昆明、厦门、广州、深圳、澳门、海口。
联系方式
- Email:honglin.h.zhang@cn.pwc.com
- 公司地址:浦东新区东育路588号