Cyber Security & Privacy Services (Networking/Security)

Job description

We are PwC, a global professional services company and a Big Four firm. We are seeking candidates who have experience in cybersecurity advisory/assessment for the role of Associate Cybersecurity Consultant within the Cybersecurity and Privacy team. The role may be based at either our Hanoi office or Ho Chi Minh City office. Joining PwC, the successful candidate will have opportunities to collaborate with cybersecurity experts throughout the PwC global network and deliver cybersecurity services for clients in various sectors. 

• Work in a highly innovative and transformative business
• Work/life balance with access to flexible work arrangements
• Salary packaging – to suit your personal and financial circumstances 
• Professional certification sponsorship – to develop your talent and enhance knowledge

What will your typical day look like?

Do you thrive on developing creative and innovative insights to solve complex challenges? Want to work on next-generation, cutting-edge products and services that deliver outstanding value and that are global in vision and scope? Work with other experts in your field? Work for a world-class organisation that provides an exceptional career experience with an inclusive and collaborative culture?

Responsibilities:

• Deliver cybersecurity and privacy assessments and advisory services such as cyber maturity assessments in accordance with NIST CSF and assessments of compliance with international standards such as ISO 27001, PCI-DSS, SWIFT, GDPR, etc. and local cybersecurity regulations such as Cybersecurity Law
• Perform cybersecurity risk assessments and develop a control framework to reduce and mitigate identified risks 
• Review clients’ cybersecurity-related policies, processes, procedures, control artefacts and documentation
• Engage in cybersecurity strategy advisory and roadmap development engagements
• Assist senior members when performing incident response activities
• Perform security configuration reviews for networks and systems in accordance with CIS benchmarks, STIG guidelines, ISO standards, etc.
• Actively support other team members and deliver work surpassing client’ expectations
• Continuously research and follow up on the latest IT security and privacy challenges and technologies (mobile, digital trust, IoT, cloud, blockchain etc.)

Your skills and experience

• Knowledge of relevant IT and cybersecurity frameworks and standards (such as NIST, CIS, COBIT, ISO standards, etc.)
• Knowledge of local cybersecurity regulations such as Cybersecurity Law, Circular 09/2020 in Banking Industry, etc.
• Knowledge of IT security operations (firewall/VPN/IDPS), system security review (Windows/Linux) and IT security compliance
• Experience in cybersecurity risk assessment and design and/or operation of cybersecurity controls
• Experience in specific cybersecurity processes and technology such as incident response, DevSecOps, DLP, IAM, PAM, etc.
• Background in or knowledge of IT system development (SDLC) methodology and information security management systems (ISMS)
• Good communication and interpersonal skills
• Self-motivation, excellent teamwork, commitment and confidence
• Preference will be given to candidates who hold one of the following industry certifications: CISA, CISM, CIPT, CIPM, CGRC, Security+, ISO 27000 Lead auditor or equivalent
• Preference will be given to candidates who hold relevant cloud certifications: AWS, Azure, GCP

Why you'll love working here

Annual Leaves: 

• Junior Staff/Associate: 15 days ++
• Senior/Manager level: 20 days ++
• Birthday leave, Sick Leave without certificate, Flexible Holidays

Bonus: 13th salary and performance review in July annually. 

Others: Digital upskilling program, professional & friendly working environment, team building, flex-wear, secondment opportunity to other countries...