PwC is a powerful network of over 250.000 people across 158 countries. All committed to deliver quality in Assurance, Tax, Advisory & Technology services. Match your curiosity with continuous opportunities to learn, grow and make an impact. Be who you are and be a game changer.

IT Security Consultant/Senior Consultant (Cyber)

About the role

This role will be part of the Cyber Security team dedicated to Cybersecurity governance and process optimization, as well as Information Security management. Additionally, the team focuses mainly on public institutions and state-owned companies in PL and CEE. 

Within the role you will be involved in analysis, project development and delivery and occasionally leading smaller engagements. You will be a part of a wide cyber security team and cooperate with other team members.

Our perfect candidate should have hands-on experience in security audits, applying cybersecurity frameworks or implementing information security systems.

Responsibilities

• Perform cybersecurity audits and maturity assessment, applying reference frameworks,

• Design and implement information security management system,

• Optimize cybersecurity governance and cost effectiveness,

• Support other teams in implementing Risk, Governance, Compliance controls,

• Present technical material in a clear organized briefing to both technical and non-technical personnel,

• Support in business development both locally and regionally,

• Maintain current knowledge of international (ISO, NIST), european (Directives, ENISA) and local standards and requirements (UKSC) from the field of cybersecurity,

• Contribute to the development of policies, standards and guidelines for information security management.

Requirements

• Self-motivated and able to demonstrate a passion for this type of work,

• Minimum 2 years of experience in any of following: security audits, information security management, cybersecurity governance and process optimization,

• General knowledge of all cybersecurity domains: identify, protect, detect, respond, recover (NIST CSF),

• Knowledge of Polish Act on Cybersecurity (UKSC) and public procurement act (PZP) is desirable,

• Experience with assessment of cloud environments and knowledge about cloud security would be an asset,

• Experience with DevOps Security would be an asset,

• Holding of ISO27001, ISO22301, CISSP,  ITIL, TOGAF, PRINCE2, MS AZ-900/AZ-500 certifications would be an asset,

• Working previously in or for public sector or state-owned company would be an asset,

• Good English language skills (spoken and written),

• Ability to work under time pressure.

What we offer?

• Participation in projects for leading Polish and international clients,

• Development of technical skills through working with SMEs from different industries,

• Development of expert knowledge through participation in training solution producers, events and industry conferences,

• Clear career development path,

• Private medical care for employees and their families,

• A rich package of social benefits (including Multisport card),

• Convenient location in Warsaw city centre.