Line of Service

Advisory


Industry/Sector

Not Applicable


Specialism

Cybersecurity & Privacy


Management Level

Manager


Job Description & Summary


About the Team

PwC South East Asia Consulting’s vision is to create meaningful relationships with our clients by powering the next generation digital enterprise.
Our Cybersecurity team helps our clients think more broadly about security and move boldly towards new possibilities. We offer our clients an end-to-end portfolio of services across four stages: assess, build, manage and respond.
Our focus areas are Cyber Risk Strategy, Digital Identity & Access Management, Data Privacy & Protection, Cyber Defence & SOC Optimisation.


About the Role

  • Design and work on cybersecurity framework based on business objectives and strategic imperatives of the client organisation including goals, vision, mission, and operational plans
  • Data pattern and trend identification via metric analysis, driving operational excellence and improvement
  • Designing and implementing data protection and privacy programs for our clients and supporting their business
  • Evaluating the data protection and privacy practices of our clients and Conducting Privacy Impact Assessments
  • Monitor processes and drive improvements in efficiency and quality of cybersecurity programs
  • Assist in development of workflows for transitioning strategic plans into implementation plans and operational readiness
  • Facilitate strategic planning initiatives, documentation, technical roadmaps and security tool rationalisation
  • Assist in designing the security organisation structure including cyber defense
  • Develop security policies, procedures, standards based on the security strategy and roadmap
  • Review of cybersecurity policies and processes to identify gaps in design of control based on comprehensive assessment framework
  • Maintain continuous communication with key stakeholders in support of the security strategy, and plan and solicit feedbacks, to uplift the programs and capabilities
  • Conduct security process implementation reviews to assess security effectiveness and reporting
  • Conduct Current State Assessment of cybersecurity practices against the defined controls and provide recommendations for to-be state
  • Run Cyber Security Diagnostic Assessments and develop programs for cybersecurity skill development and enhancement
  • Provide certification advisory across Information Security Management System (ISMS)
  • Implement security controls for realisation of the certification requirements and provide technology roadmap based on the security strategy
  • Assisting in delivering privacy projects to acting as a subject matter expert on them or to leading a team towards excellent client experience
  • Supporting and guiding our clients in adhering to the complex web of relevant national and international regulations (e.g. EU General Data Protection Regulation).
  • Deploying processes and tools to help detect and prevent privacy breaches
  • Ensuring a harmonised approach towards data protection and privacy by bringing together our client’s stakeholders (e.g. legal, compliance, risk, HR, security, business functions)
  • Assisting clients in privacy related incident response activities
  • Supporting the client’s team by acting as an interim team member (e.g. data protection officer, security officer, security manager, security analyst)
  • Proactively identifying and pursuing opportunities for further business and team growth


Preferred skills

  • Bachelor’s degree in Computer Science, Information Systems, Information Technology, Engineering, or equivalent education
  • Minimum 4 - 5 years of prior relevant working experience
  • Experience with vulnerability scanning solutions and cybersecurity systems
  • Possession of relevant qualifications such as CIPM, CIPT, CIPP/E, CISM, CISSP, and/or HCISSP, as well as involvement in industry related organizations (e.g. IAPP, ISACA, (ISC)Âēâ€Ķ) or relevant certifications
  • Strong interpersonal and stakeholder management skills with ability to coordinate between technical and business teams
  • Excellent verbal, written communication and interpersonal skills with stakeholders at all levels
  • Knowledge and experience with relevant data protection and privacy laws and regulations (e.g. PDPA , EU GDPR, and Privacy Shield) and industry standards and frameworks, such as GAPP and BCR
  • Ability to efficiently understand client organisations and their business model and to tailor relevant processes to privacy requirements
  • An analytical mindset, strive for quality and are able to work in a result-oriented environment

Education (if blank, degree and/or field of study not specified)

Degrees/Field of Study required: Bachelor Degree Degrees/Field of Study preferred:

Certifications (if blank, certifications not specified)

Required Skills

Optional Skills

Desired Languages (If blank, desired languages not specified)

Travel Requirements

Not Specified


Available for Work Visa Sponsorship?

Yes


Government Clearance Required?

No


Job Posting End Date

December 31, 2024
āļ›āļĢāļ°āļŠāļšāļāļēāļĢāļ“āđŒāļ—āļĩāđˆāļˆāļģāđ€āļ›āđ‡āļ™
  • 5 āļ›āļĩ
āđ€āļ‡āļīāļ™āđ€āļ”āļ·āļ­āļ™
  • āļŠāļēāļĄāļēāļĢāļ–āļ•āđˆāļ­āļĢāļ­āļ‡āđ„āļ”āđ‰
āļŠāļēāļĒāļ‡āļēāļ™
  • āļ„āļ§āļēāļĄāļ›āļĨāļ­āļ”āļ āļąāļĒ
  • āļ—āļĩāđˆāļ›āļĢāļķāļāļĐāļē
āļ›āļĢāļ°āđ€āļ āļ—āļ‡āļēāļ™
  • āļ‡āļēāļ™āļ›āļĢāļ°āļˆāļģ
  • āļŦāļēāļ‡āļēāļ™ āļŠāļĄāļąāļ„āļĢāļ‡āļēāļ™ āļšāļĢāļīāļĐāļąāļ— āđ„āļžāļĢāđ‰āļ‹āļ§āļ­āđ€āļ•āļ­āļĢāđŒāđ€āļŪāļēāļŠāđŒāļ„āļđāđ€āļ›āļ­āļĢāđŒāļŠ āļ„āļ­āļ™āļ‹āļąāļĨāļ•āļīāđ‰āļ‡ āļ›āļĢāļ°āđ€āļ—āļĻāđ„āļ—āļĒ āļˆāļģāļāļąāļ” 1
  • āļŦāļēāļ‡āļēāļ™ āļŠāļĄāļąāļ„āļĢāļ‡āļēāļ™ āļšāļĢāļīāļĐāļąāļ— āđ„āļžāļĢāđ‰āļ‹āļ§āļ­āđ€āļ•āļ­āļĢāđŒāđ€āļŪāļēāļŠāđŒāļ„āļđāđ€āļ›āļ­āļĢāđŒāļŠ āļ„āļ­āļ™āļ‹āļąāļĨāļ•āļīāđ‰āļ‡ āļ›āļĢāļ°āđ€āļ—āļĻāđ„āļ—āļĒ āļˆāļģāļāļąāļ” 2
  • āļŦāļēāļ‡āļēāļ™ āļŠāļĄāļąāļ„āļĢāļ‡āļēāļ™ āļšāļĢāļīāļĐāļąāļ— āđ„āļžāļĢāđ‰āļ‹āļ§āļ­āđ€āļ•āļ­āļĢāđŒāđ€āļŪāļēāļŠāđŒāļ„āļđāđ€āļ›āļ­āļĢāđŒāļŠ āļ„āļ­āļ™āļ‹āļąāļĨāļ•āļīāđ‰āļ‡ āļ›āļĢāļ°āđ€āļ—āļĻāđ„āļ—āļĒ āļˆāļģāļāļąāļ” 3
  • āļŦāļēāļ‡āļēāļ™ āļŠāļĄāļąāļ„āļĢāļ‡āļēāļ™ āļšāļĢāļīāļĐāļąāļ— āđ„āļžāļĢāđ‰āļ‹āļ§āļ­āđ€āļ•āļ­āļĢāđŒāđ€āļŪāļēāļŠāđŒāļ„āļđāđ€āļ›āļ­āļĢāđŒāļŠ āļ„āļ­āļ™āļ‹āļąāļĨāļ•āļīāđ‰āļ‡ āļ›āļĢāļ°āđ€āļ—āļĻāđ„āļ—āļĒ āļˆāļģāļāļąāļ” 4
  • āļŦāļēāļ‡āļēāļ™ āļŠāļĄāļąāļ„āļĢāļ‡āļēāļ™ āļšāļĢāļīāļĐāļąāļ— āđ„āļžāļĢāđ‰āļ‹āļ§āļ­āđ€āļ•āļ­āļĢāđŒāđ€āļŪāļēāļŠāđŒāļ„āļđāđ€āļ›āļ­āļĢāđŒāļŠ āļ„āļ­āļ™āļ‹āļąāļĨāļ•āļīāđ‰āļ‡ āļ›āļĢāļ°āđ€āļ—āļĻāđ„āļ—āļĒ āļˆāļģāļāļąāļ” 5
  • āļŦāļēāļ‡āļēāļ™ āļŠāļĄāļąāļ„āļĢāļ‡āļēāļ™ āļšāļĢāļīāļĐāļąāļ— āđ„āļžāļĢāđ‰āļ‹āļ§āļ­āđ€āļ•āļ­āļĢāđŒāđ€āļŪāļēāļŠāđŒāļ„āļđāđ€āļ›āļ­āļĢāđŒāļŠ āļ„āļ­āļ™āļ‹āļąāļĨāļ•āļīāđ‰āļ‡ āļ›āļĢāļ°āđ€āļ—āļĻāđ„āļ—āļĒ āļˆāļģāļāļąāļ” 6
  • āļŦāļēāļ‡āļēāļ™ āļŠāļĄāļąāļ„āļĢāļ‡āļēāļ™ āļšāļĢāļīāļĐāļąāļ— āđ„āļžāļĢāđ‰āļ‹āļ§āļ­āđ€āļ•āļ­āļĢāđŒāđ€āļŪāļēāļŠāđŒāļ„āļđāđ€āļ›āļ­āļĢāđŒāļŠ āļ„āļ­āļ™āļ‹āļąāļĨāļ•āļīāđ‰āļ‡ āļ›āļĢāļ°āđ€āļ—āļĻāđ„āļ—āļĒ āļˆāļģāļāļąāļ” 7
keyboard_arrow_right

āđ€āļāļĩāđˆāļĒāļ§āļāļąāļšāļšāļĢāļīāļĐāļąāļ—

āļˆāļģāļ™āļ§āļ™āļžāļ™āļąāļāļ‡āļēāļ™:n/a
āļ›āļĢāļ°āđ€āļ āļ—āļšāļĢāļīāļĐāļąāļ—:āļāļēāļĢāđ€āļ‡āļīāļ™āđāļĨāļ°āļāļēāļĢāļ˜āļ™āļēāļ„āļēāļĢ
āļ—āļĩāđˆāļ•āļąāđ‰āļ‡āļšāļĢāļīāļĐāļąāļ—:āļāļĢāļļāļ‡āđ€āļ—āļž
āđ€āļ§āđ‡āļšāđ„āļ‹āļ•āđŒ:www.pwc.com/th
āļāđˆāļ­āļ•āļąāđ‰āļ‡āđ€āļĄāļ·āđˆāļ­āļ›āļĩ:n/a
āļ„āļ°āđāļ™āļ™:3/5

In Thailand, PwC has had a presence for more than 62 years. Our client base includes some of the largest Thai and multinational companies, as well as government institutions. Our close interaction with both economic and state bodies allows us to keep up with the fast-changing business environment ...

āļ­āđˆāļēāļ™āļ•āđˆāļ­

Display map
āļ—āļĩāđˆ WorkVenture āđ€āļĢāļēāđƒāļŦāđ‰āļĄāļđāļĨāđ€āļŠāļīāļ‡āđ€āļāļĩāđˆāļĒāļ§āļāļąāļšāļšāļĢāļīāļĐāļąāļ— āļšāļĢāļīāļĐāļąāļ— āđ„āļžāļĢāđ‰āļ‹āļ§āļ­āđ€āļ•āļ­āļĢāđŒāđ€āļŪāļēāļŠāđŒāļ„āļđāđ€āļ›āļ­āļĢāđŒāļŠ āļ„āļ­āļ™āļ‹āļąāļĨāļ•āļīāđ‰āļ‡ (āļ›āļĢāļ°āđ€āļ—āļĻāđ„āļ—āļĒ) āļˆāļģāļāļąāļ” āđ‚āļ”āļĒāļĄāļĩāļ‚āđ‰āļ­āļĄāļđāļĨāļ—āļĩāđˆāđ€āļāļĩāđˆāļĒāļ§āļ‚āđ‰āļ­āļ‡ āļ•āļąāđ‰āļ‡āđāļ•āđˆāļ āļēāļžāļšāļĢāļĢāļĒāļēāļāļēāļĻāļāļēāļĢāļ—āļģāļ‡āļēāļ™ āļĢāļđāļ›āļ–āđˆāļēāļĒāļ‚āļ­āļ‡āļ—āļĩāļĄāļ‡āļēāļ™ āđ„āļ›āļˆāļ™āļ–āļķāļ‡āļĢāļĩāļ§āļīāļ§āđ€āļŠāļīāļ‡āļĨāļķāļāļ‚āļ­āļ‡āļāļēāļĢāļ—āļģāļ‡āļēāļ™āļ—āļĩāđˆāļ™āļąāđˆāļ™ āļ‹āļķāđˆāļ‡āļ‚āđ‰āļ­āļĄāļđāļĨāļ—āļļāļāļ­āļĒāđˆāļēāļ‡āļšāļ™āļŦāļ™āđ‰āļēāļ‚āļ­āļ‡āļšāļĢāļīāļĐāļąāļ— āļšāļĢāļīāļĐāļąāļ— āđ„āļžāļĢāđ‰āļ‹āļ§āļ­āđ€āļ•āļ­āļĢāđŒāđ€āļŪāļēāļŠāđŒāļ„āļđāđ€āļ›āļ­āļĢāđŒāļŠ āļ„āļ­āļ™āļ‹āļąāļĨāļ•āļīāđ‰āļ‡ (āļ›āļĢāļ°āđ€āļ—āļĻāđ„āļ—āļĒ) āļˆāļģāļāļąāļ” āļĄāļĩāļžāļ™āļąāļāļ‡āļēāļ™āļ—āļĩāđˆāļāļģāļĨāļąāļ‡āļ—āļģāļ‡āļēāļ™āļ—āļĩāđˆāļšāļĢāļīāļĐāļąāļ— āļšāļĢāļīāļĐāļąāļ— āđ„āļžāļĢāđ‰āļ‹āļ§āļ­āđ€āļ•āļ­āļĢāđŒāđ€āļŪāļēāļŠāđŒāļ„āļđāđ€āļ›āļ­āļĢāđŒāļŠ āļ„āļ­āļ™āļ‹āļąāļĨāļ•āļīāđ‰āļ‡ (āļ›āļĢāļ°āđ€āļ—āļĻāđ„āļ—āļĒ) āļˆāļģāļāļąāļ” āļŦāļĢāļ·āļ­āđ€āļ„āļĒāļ—āļģāļ‡āļēāļ™āļ—āļĩāđˆāļ™āļąāđˆāļ™āļˆāļĢāļīāļ‡āđ† āđ€āļ›āđ‡āļ™āļ„āļ™āđƒāļŦāđ‰āļ‚āđ‰āļ­āļĄāļđāļĨāļˆāļĢāļīāļ‡āļŠāļĄāļąāļ„āļĢāļ‡āļēāļ™ āļŸāļ­āļ§āļēāļĢāđŒāļ” āļ„āļ­āļ™āļ‹āļąāļĨāļ•āļīāđ‰āļ‡āļŠāļĄāļąāļ„āļĢāļ‡āļēāļ™ āđ„āļŪāļŸāđŒāļŠāđ€āļ•āļ­āļĢāđŒāļŠāļĄāļąāļ„āļĢāļ‡āļēāļ™ āļšāļ­āļŠ āđ€āļ­āđ‰āļēāļ—āđŒāļ‹āļ­āļĢāđŒāļŠāļ‹āļīāđˆāļ‡āļŠāļĄāļąāļ„āļĢāļ‡āļēāļ™ āđ„āļ§āđ‚āļŪ