PwC
,
London, Greater London
Information Security Analyst - GTS-Shanghai
Overview
Job Description
Line of Service Internal Firm Services Industry/Sector Not Applicable Specialism IFS - Information Technology (IT) Management Level Senior Associate Job Description & Summary Protect the confidentiality and integrity of client, staff, and business information in compliance with organization policies and standards. The individual will be responsible for review on system changes and respond to new security threats to internal networks and data. This individual must have the ability to establish working relationships with all staff and client on answering IT related security questions. Some, but not limited to, responsibilities may include: * Formulating security policies, procedures, and standards (such as system hardening standards) * Perform periodic reivew and audits (e.g. Firewall rule setting) * Review of systems security event logs or report (e.g. malware occurence) and follow through remediations * Participate in and help drive the development of a risk assessment program * Perform Information security review and process assurance to upkeep the compliance of the firm * Participate in key audits conduct by internal and external bodies including but not limited to the firm's ISP (Information Security Policy) and ISO 27001. * Design and drive security awareness program * Implement client specific request of technical controls and ensure compliance * Provide consultation and response to client's security questionnaire * Formulate and maintain regular security metric reports * Degree holder in Computer Science or equivalent; * Minimum four years of work experience in Information Technology service industry; * At least two years of demonstrable experience in any of the following will be an added advantage: Information Security, Infrastructure and network security review and analysis, Process review, Disaster Recovery & compliance and audit; * Strong working experience with Security and Vulnerability Management, Security Incident Management and Investigation, Cybersecurity etc * Exposure to China Cybersecurity Law and Multi-level Protection Scheme is a definite advantage * Strong project management skills; * Ability to work independently and under pressure; * Excellent communication skills in both written and oral English; * Good command of spoken English and Chinese; and * Related qualifications and/or industry certifications such as CISSP will be an advantage. In addition, candidates should illustrate the following personal attributes: * Demonstrates courage and integrity * Pay attention to details and analytical * Acquires and applies commercial and technical expertise by staying up to date in industry and with market trends * Open minded, agile with change and practical * Committed to self develop and coaching of others for growth * Communicates with impact and empathy * Lead and contribute to team success * Take ownership and being accountable for assignments * Works hard to build and sustain relationships Education (if blank, degree and/or field of study not specified) Degrees/Field of Study required: Bachelor Degree Degrees/Field of Study preferred: Certifications (if blank, certifications not specified) Desired Languages (If blank, desired languages not specified) English Travel Requirements Not Specified Available for Work Visa Sponsorship? Yes Government Clearance Required? No Job Posting End Date