Line of Service
AdvisoryIndustry/Sector
FS X-SectorSpecialism
RiskManagement Level
Senior ManagerJob Description & Summary
Experience of above 8 years in Strategy & GovernancePrior experience in Risk Management, Governance Frameworks, RBI regulatory guidelines/circulars etc.
Strong understanding of security frameworks (e.g., NIST, ISO 27001, COBIT) and regulatory requirements (e.g., RBI, PCI-DSS, SEBI, GDPR).
Prior experience in vetting Bank IT/IS/BCP related policies & procedures.
Prior experience in ISO 27001/ISO 22301 implementation and assessments
Experience in Business Continuity Planning (BCP) and Third-Party Risk Management (TPRM) processes.
At least one certification: CISM/CISA/CISSP is preferred
Experience in cloud security concepts and network security technologies.
*Why PWC
At PwC, you will be part of a vibrant community of solvers that leads with trust and creates distinctive outcomes for our clients and communities. This purpose-led and values-driven work, powered by technology in an environment that drives innovation, will enable you to make a tangible impact in the real world. We reward your contributions, support your wellbeing, and offer inclusive benefits, flexibility programmes and mentorship that will help you thrive in work and life. Together, we grow, learn, care, collaborate, and create a future of infinite experiences for each other. Learn more about us.
At PwC, we believe in providing equal employment opportunities, without any discrimination on the grounds of gender, ethnic background, age, disability, marital status, sexual orientation, pregnancy, gender identity or expression, religion or other beliefs, perceived differences and status protected by law. We strive to create an environment where each one of our people can bring their true selves and contribute to their personal growth and the firm’s growth. To enable this, we have zero tolerance for any discrimination and harassment based on the above considerations. "
Description & Summary:
Job Description & Summary
At PwC, our people in risk and compliance focus on maintaining regulatory compliance and managing risks for clients, providing advice, and solutions. They help organizations navigate complex regulatory landscapes and enhance their internal controls to mitigate risks effectively.
In regulatory risk compliance at PwC, you will focus on confirming adherence to regulatory requirements and mitigating risks for clients. You will provide guidance on compliance strategies and help clients navigate complex regulatory landscapes.
Growing as a strategic advisor, you leverage your influence, expertise, and network to deliver quality results. You motivate and coach others, coming together to solve complex problems. As you increase in autonomy, you apply sound judgment, recognising when to take action and when to escalate. You are expected to solve through complexity, ask thoughtful questions, and clearly communicate how things fit together. Your ability to develop and sustain high performing, diverse, and inclusive teams, and your commitment to excellence, contributes to the success of our Firm.
Examples of the skills, knowledge, and experiences you need to lead and deliver value at this level include but are not limited to:
• Craft and convey clear, impactful and engaging messages that tell a holistic story.
• Apply systems thinking to identify underlying problems and/or opportunities.
• Validate outcomes with clients, share alternative perspectives, and act on client feedback.
• Direct the team through complexity, demonstrating composure through ambiguous, challenging and uncertain situations.
• Deepen and evolve your expertise with a focus on staying relevant.
• Initiate open and honest coaching conversations at all levels.
• Make difficult decisions and take action to resolve issues hindering team effectiveness.
• Model and reinforce professional and technical standards (e.g. refer to specific PwC tax and audit guidance), the Firm's code of conduct, and independence requirements.
Job Description & Summary
A career within Cybersecurity and Privacy services, will provide you with the opportunity to help our clients implement an effective cybersecurity program that protects against threats, propels transformation, and drives growth. As companies pivot toward a digital business model, exponentially more data is generated and shared among organizations, partners and customers. We play an integral role in helping our clients ensure they are protected by developing transformation strategies focused on security, efficiently integrate and manage new or existing technology systems to deliver continuous operational improvements and increase their cybersecurity investment, and detect, respond, and remediate threats.
PwC’s Strategy and Risk Cybersecurity Team is recognized as the preeminent cybersecurity services firm in India. We have working relationships with many of India's largest organizations across all industries.
Meaningful work you’ll be part of
As a Cybersecurity Strategy and Risk Senior Manager, you’ll work as part of a team of problem solvers, helping to solve business issues, deliver high quality client service and operational efficiency. Responsibilities include but are not limited to:
Account Leadership
• Diagnose needs – Anticipate, identify and frame up client needs and position PwC’s services to meet these needs and solve our clients’ most important problems (be out ahead of our clients). This may integrate resources, processes, and various technical combinations.
• Trusted Relationships - Identify the important client stakeholders within each account and assign relationship owners in addition to yourself. Understand motivations and drivers for key client stakeholders and understand client cultures and dynamics that influence how PwC engages successfully.
• Thought Leadership – Establish and communicate PwC's strategic point of view on key cybersecurity issues, trends, and opportunities. Communicate strategic lessons learned to clients.
• Program management - Maintain an informed opinion about our client's best strategic direction for their security program. Develop a "first to support" client strategy to stay ahead of our competitors. Engage our technical competency teams frequently to bring the right resources to support our clients.
Business Development:
• Build Relationships in the Market – Draw from your existing client relationships to identify and win business opportunities.
• Service innovation and development – Develop highly differentiated PwC cybersecurity service solutions to solve client problems.
• RFPs and Proposals – Lead large teams to draft strategic, practical and competitive proposals that clearly differentiate PwC for others.
• Showcases & Workshops – Work with PwC’s competency leads (e.g. Data security, IAM, TVM, Cloud Security, Network Security, Incident Response, EDR etc.) to showcase PwC’s skills, solutions, and differentiated processes.
• SOWs – Oversee team members to draft detailed contracts that clarify approaches, incorporate best practices, ensure profitability, and manage risk for clients and PwC.
Project Delivery:
• Client engagement – Lead PwC and client teams to work together successfully to achieve the desired outcomes as described in the SoW. Be confident about communicating expectations with clients, and any deviations that may affect the outcome of the engagement.
• Quality – Passionately pursue “PwC-Quality” experiences and deliverables.
• Profitability – Maintain a meticulous understanding of your project financials, team consumption of hours, expenses, and run rate to bring projects in on-budget and profitable.
• Scheduling – Bring projects in on or before the deadline by anticipating situations that would cause delays.
• Risk - Anticipate potential situations that could cause program risks to occur
Team Leadership:
• Practice strategy – Work with your fellow Strategy and Risk practice leadership team competitively position PwC in the market and position relevant services across industry key accounts annually
• Coaching/Training - Set performance goals and expectations by level and hold them accountable to achieve performance goals and expectations. Coach PwC team members to build their knowledge and skills
• Team Retention - Design the ideal practice to help team members be successful, and conduct retention strategies for the practice.
Consulting acumen:
• Strong client service experience
• The ability to ‘read the room’ and manage a range of stakeholders successfully
• Have led consulting teams to effectively deliver cybersecurity services
• Understanding how to achieve high client satisfaction
• Interpersonal skills and proven commitment to collaboration and teamwork;
• Proficient written and oral communication skills, including experience presenting in a business context;
• Developing consulting methodologies and frameworks
• Strong interpersonal and communication skills to manage client relationships
Responsibilities:
Cybersecurity Skills:
• Can demonstrate significant cybersecurity thought leadership and best practices across a wide range of cybersecurity technical areas
( IS Audit, Cyber Security Maturity Assessments, RBI Master Directions on Cyber security, Digital Payment controls, IT Outsourcing, IT GRC, SEBI and IRDA , Data Security, DPDP, Access Control, MDR and broader MSS offerings, TVM, Cloud Security, Network Security, Incident Response, EDR etc.)
Key skills required for this role include an in-depth understanding of the financial services industry's unique regulatory requirements, particularly those prescribed by the Reserve Bank of India (RBI), SEBI and IRDA. Expertise in designing and assessing information security and privacy frameworks that align with RBI guidelines and other BFSI (Banking, Financial Services, and Insurance) sector mandates is essential. Familiarity with conducting comprehensive cybersecurity maturity assessments ( NIST Framework ) , AI Risk Management framework as well as implementing and managing robust access control mechanisms, is critical.
• Communicating best practices across each level of Identify, Protect, Detect, Respond, & Recover
• Oversee teams who are implementing and operating to identify and reduce risk
Desirable Certifications CISSP, CISM, CISA, IS Audit etc.
Mandatory skill sets:
Cybersecurity Skills:
• Can demonstrate significant cybersecurity thought leadership and best practices across a wide range of cybersecurity technical areas
( IS Audit, Cyber Security Maturity Assessments, RBI Master Directions on Cyber security, Digital Payment controls, IT Outsourcing, IT GRC, SEBI and IRDA , Data Security, DPDP, Access Control, MDR and broader MSS offerings, TVM, Cloud Security, Network Security, Incident Response, EDR etc.)
Key skills required for this role include an in-depth understanding of the financial services industry's unique regulatory requirements, particularly those prescribed by the Reserve Bank of India (RBI), SEBI and IRDA. Expertise in designing and assessing information security and privacy frameworks that align with RBI guidelines and other BFSI (Banking, Financial Services, and Insurance) sector mandates is essential. Familiarity with conducting comprehensive cybersecurity maturity assessments ( NIST Framework ) , AI Risk Management framework as well as implementing and managing robust access control mechanisms, is critical.
• Communicating best practices across each level of Identify, Protect, Detect, Respond, & Recover
• Oversee teams who are implementing and operating to identify and reduce risk
Desirable Certifications CISSP, CISM, CISA, IS Audit etc.
Business Development Track Record:
• Proven business development skills to identify, scope, price, and close opportunities
• Demonstrated skills identifying service differentiators
• Experience leading teams to respond to RFPs and draft compelling proposals
• Understands the nuances of drafting detailed and effective Statements of Work
• Awareness of Big 4 risk and independence requirements
FS Industry experience:
• Experience on design/ assessment/ review of information security and privacy framework aligned to RBI Guidelines and other BFSI requirements
Preferred skill sets:
Desirable Certifications CISSP, CISM, CISA, IS Audit etc.
Years of experience required:
10-14 + years
Education qualification:
B.Tech. Mtech, MCA, BE, ME
Education (if blank, degree and/or field of study not specified)
Degrees/Field of Study required: Bachelor of Engineering, Master of EngineeringDegrees/Field of Study preferred:Certifications (if blank, certifications not specified)
Required Skills
Governance Framework, Risk ManagementOptional Skills
Accepting Feedback, Accepting Feedback, Active Listening, Agile Methodology, Azure Data Factory, Communication, Cybersecurity, Cybersecurity Framework, Cybersecurity Policy, Cybersecurity Requirements, Cybersecurity Strategy, Emotional Regulation, Empathy, Encryption Technologies, Inclusion, Intellectual Curiosity, Managed Services, Optimism, Privacy Compliance, Regulatory Response, Security Architecture, Security Compliance Management, Security Control, Security Incident Management, Security Monitoring {+ 3 more}Desired Languages (If blank, desired languages not specified)
Travel Requirements
Not SpecifiedAvailable for Work Visa Sponsorship?
NoGovernment Clearance Required?
NoJob Posting End Date