Third Party Risk Management - Cybersecurity Manager
Location: Florham Park
Posted on: June 12, 2021
A career in our Cybersecurity, Privacy, & Forensics will provide
you the opportunity to solve our clients most critical business and
data protection related challenges. You will be part of a growing
team driving strategic programs, data analytics, innovation, deals,
cyber resilency, response, and technical implementation activities.
You will have access to not only the top Cybersecurity, Privacy,
and Forensics professionals at PwC, but at our clients and industry
analysts across the globe. Our Third Party Risk Management (TPRM)
team focuses on helping our clients assess, design, implement, and
maintain an effective third party risk program.This is inclusive of
pre and post contract stages for our clients - helping them
evaluate the controls required pre-contracting with a vendor,
contractor, or supplier, as well as post-contract from an ongoing
monitoring perspective. Our TPRM team focuses on designing
programs, operationalizing those programs, change management across
all risk domains of a third party program and assessments (ongoing
monitoring efforts). You will work with third parties all across
the globe that support the operations of our clients to ensure
adequate control environments are in place and help provide our
clients comfort that both reasonable and defensible controls are in
place. As more companies continue to outsource and move to cloud
transformation, the demand for TPRM has quickly grown. You will
help our clients transform their business, build trust amongst
their ecosystem, manage risk effectively, and drive accountability
and control with their third party connections. Our team helps
organisations develop TPRM business plans, cost-benefit analyses,
target operating models, short/long-term strategies, and ultimately
improve the effectiveness of their TPRM programs. In joining our
team, you will work with xLoS professionals at PwC across all third
party risk domains, including, but not limited to cybersecurity,
privacy, human resources, legal, technology, financial, fraud,
regulatory, and industry specific business risks. You will help
organizations with strategy, design, operation and long-term
maintenance of their TPRM programs.
To really stand out and make us fit for the future in a
constantly changing world, each and every one of us at PwC needs to
be an authentic and inclusive leader, at all grades/levels and in
all lines of service. To help us achieve this we have the PwC
Professional; our global leadership development framework. It gives
us a single set of expectations across our lines, geographies and
career paths, and provides transparency on the skills we need as
individuals to be successful and progress in our careers, now and
in the future.
As a Manager, you'll work as part of a team of problem solvers,
helping to solve complex business issues from strategy to
execution. PwC Professional skills and responsibilities for this
management level include but are not limited to:
- Pursue opportunities to develop existing and new skills outside
of comfort zone.
- Act to resolve issues which prevent effective team working,
even during times of change and uncertainty.
- Coach others and encourage them to take ownership of their
- Analyse complex ideas or proposals and build a range of
- Use multiple sources of information including broader
stakeholder views to develop solutions and recommendations.
- Address sub-standard work or work that does not meet
- Develop a perspective on key global trends, including
globalisation, and how they impact the firm and our clients.
- Manage a variety of viewpoints to build consensus and create
positive outcomes for all parties.
- Focus on building trusted relationships.
- Uphold the firm's code of ethics and business conduct.
Job Requirements and Preferences:
Minimum Degree Required:
Minimum Years of Experience:
Certified Information Systems Security Professional (CISSP),
Certified Information Security Manager (CISM), ISACA Certified in
Risk and Information Systems Control (CRISC)
Demonstrates extensive knowledge and/or a proven record of
- Assisting clients with assessing, designing, and implementing
third party risk management programs, processes, and supporting
- Consulting and implementing projects in third party
risk-related areas such as third party origination and inherent
risk measurement, segmentation and residual risk models, policy and
procedures design and development, due diligence and on-going
monitoring assessment execution, oversight and governance, data
modeling and technology enablement, Issue and exception
- Emerging technologies, such as Governance Risk and Compliance
- Common third party risk industry standard, regulations, and
regulators (e.g. FFIEC, OCC, FRB, GDPR, HIPAA / HITECH, HKMA, PRA,
APRA, JFSA, RBI, BaFin, CFPB, SEC etc.), especially as it relates
to building a program and/or managing internal controls, risk
assessments, business process or operational auditing; and,
- Principles and industry leading practices in Risk Assessment
skills, Audit background, including familiarity with SOC I (SSAE16)
and SOC II, ISO 27001, etc.
Demonstrates extensive abilities and/or a proven record of
- Assisting in client-facing engagement delivery, practice
development, business development and thought leadership;
- Managing and/or contributing to project planning, engagement
administration, budget management, and successful completion of
- Communicating in an organized and knowledgeable manner in
written and verbal formats, including delivering clear requests for
information and communicating potential conflicts;
- Identifying and addressing client needs while displaying the
ability to contribute to the development of a business vision and
manage implementation efforts; and,
- Managing client and account relationships, identifying
opportunities and developing the appropriate approach and resources
to successfully close and deliver the engagement.
Keywords: PwC, New York , Third Party Risk Management - Cybersecurity Manager, Other , Florham Park, New York
Didn't find what you're looking for? Search again!