Cyber Manager at PricewaterhouseCoopers (PwC)

Job Description & Summary

A career in our Cyber Security practice, within Risk Assurance Compliance and Analytics services, will provide you with the opportunity to assist clients in developing analytics and technology solutions that help them detect, monitor, and predict risk. Using advanced technology, we’re able to focus on establishing the right controls, processes and structures for our clients to ensure that decisions are based on accurate information and assure that information provided to third parties is accurate, complete, and can be trusted.

Our team helps business leaders protect and manage their risk related to information regarding technology, people, systems, processes, culture, and physical surroundings. We help clients’ understand their current capability and develop a plan to target cyber security investment, helping to respond to actual cyber incidents, and advising on legal issues related to breaches, data privacy, and protection.

To really stand out and make us fit for the future in a constantly changing world, each and every one of us at PwC needs to be a purpose-led and values-driven leader at every level. To help us achieve this we have the PwC Professional; our global leadership development framework. It gives us a single set of expectations across our lines, geographies and career paths, and provides transparency on the skills we need as individuals to be successful and progress in our careers, now and in the future.

As a Manager, you'll work as part of a team of problem solvers, helping to solve complex business issues from strategy to execution. PwC Professional skills and responsibilities for this management level include but are not limited to:

• Develop new skills outside of comfort zone.

• Act to resolve issues which prevent the team working effectively.

• Coach others, recognise their strengths, and encourage them to take ownership of their personal development.

• Analyse complex ideas or proposals and build a range of meaningful recommendations.

• Use multiple sources of information including broader stakeholder views to develop solutions and recommendations.

• Address sub-standard work or work that does not meet firm's/client's expectations.

• Use data and insights to inform conclusions and support decision-making.

• Develop a point of view on key global trends, and how they impact clients.

• Manage a variety of viewpoints to build consensus and create positive outcomes for all parties.

• Simplify complex messages, highlighting and summarising key points.

• Uphold the firm's code of ethics and business conduct.

Role summary:

The “Cybersecurity Manager” role requires a candidate that has a comprehensive set of skills and knowledge. The “Manager” should have broad hands-on experience in multiple industries and across many disciplines, with a strong understanding of business, ICT and cybersecurity processes, and should be able to liaise and collaborate with different areas in a business in order to achieve the expected results for a client. The “Manager” should also have strong capabilities in driving sales and business development and leading teams in this regard. To be effective, the “Manager” must have extensive experience managing projects and teams in order to deliver solutions to complex problems, which may incorporate cybersecurity, data protection, information management, business resilience and other disciplines. The person needs to have a strong ability to share and communicate ideas clearly, both orally and in writing, to executive staff, business sponsors, and technical resources in clear concise language that is relevant to each group.

Qualifications / certifications required:

• Relevant B degree in Information Systems, Informatics, Information Management, Computer Science or Engineering.

• Security +

• ISO 27001 Lead Implementor / Auditor

• Certified Information Security Manager (CISM)

• Certified Information System Security Professional (CISSP)

Experience required:

3-5 years of Cyber experience in a consulting nature.

Responsibilities of role:

Delivery

• Manage complex multi-stream project teams and the overall delivery of large programmes

• Manage finances associated with project delivery and deliver on yearly revenue targets

• Analyse and formulate cybersecurity strategy and strategic plans/objectives

• Develop industry knowledge and thought leadership for business environments and industry solutions and tools related to information security, data protection, security governance and compliance

• Understand and interpret complex security-related business challenges

• Conceive innovative information security/cyber solutions for clients

• Lead the design and delivery of end-to-end information security solutions which are enabled by technology

• Think independently and creatively when formulating information security solutions

• Facilitate and lead team problem solving and client issue resolution efforts

• Be recognised as an expert in the field of cybersecurity and data protection including current technologies and their applications within a business context

• Develop security architecture with a focus on senior management challenges

• Maintain and develop technical skills in the field of cybersecurity and data protection

• Delegate authority and responsibility to teams

Sales

• Major/strategic account management and revenue growth

• Conceive innovative solutions for clients and industries

• Assist with business development initiatives through the compilation of proposals and bid documentation

• Engage with clients in order to identify opportunities for cybersecurity improvements within their businesses

• Proactively build sales pipeline and own business development initiatives

• Meet pipeline and sales targets

• Drive new business development within new and existing clients

• Identify new information security solution opportunities and convert these into sales

• Be able to drive teams to identify new opportunities and turn these into sales

Relationships

• Build and sustain professional relationships both within PwC and externally

• Lead colleagues in solving unique information security and technology challenges

• Build effective relationships with team members

• Fulfil coaching and mentorship roles to junior staff

• Transfer cybersecurity skills and knowledge to team members

• Build long term relationships with clients that can be translated into revenue opportunities

• Is a team player and contributes to team success

• Is able to build effective customer relationships

• Is able to motivate and effectively lead a team

Skill sets required:

Skills

• Demonstrate significant competence in managing projects

• Is able to multitask, prioritize and coordinate tasks to meet multiple deadlines and conflicting client and company constraints

• Must be a self-starter, motivated individual who works well under pressure

• Manage and plan own, and others work

• Is able to motivate a team for excellent delivery

• Is open-minded, practical and able to solve complex problems

• Pays attention to detail

• Is committed to quality

• Is able to perform quality reviews on others work and provide constructive feedback when required

General

• Excellent verbal and written communication skills

• Sound judgment

• Innovative and adaptable

• Resilient

• Copes well under tight deadlines and works well under stress

• Is a strategic and big picture thinker

Learning and growth

• Is curious – learning, sharing and innovating

• Is willing to continually learn and develop skills across a multitude of core competencies

• Approaches problem solving in a logical and structured manner with due consideration given to alternative solutions which may require the acquisition of new knowledge

• Is able to handle complex problems and apply appropriate judgement in evaluating solution inputs

Role related attributes:

A combination of the items listed below would be advantageous:

• Capability Maturity Assessments - NIST, ISO, FFIEC

• Capability Maturity Assessments - Cyber resilience

• PCI-DSS

• Cyber Risk Management

• Cyber Value at Risk (CyberVAR) / Risk Quantification

• Third Party Risk Management

• Cloud Security

• IoT / ICS / OT

• Cybersecurity Strategy

• Cyber Program Management

• Cyber Cost / Investment Management

• Executive and Board of Director Engagement

• Performance Management - Dashboards / Metrics / Analytics

• Enterprise Risk Management Integration

• Organisation Design and Effectiveness

• Talent Management

• Sourcing and Vendor Management

• Awareness, Culture and Behaviour

• Compliance Assessment and Roadmap

• Remediation Program Management

• Integrated Cyber Risk and Compliance (iCRC)

• Cyber Attestation

• Cyber Program Co-sourcing