Cybersecurity GRC Consultant (Medior/Senior)

Job Description & Summary

About the team

The Information Security Management (ISM) team provides services in the Cyber GRC area, we focus on ISMS, security risk management, compliance with regulations, security awareness and data security. We are a team of Cyber Security professionals who enjoy creating effective solutions for complex problems that our clients are facing. As a part of the whole PwC’s Cyber Security team, we work on projects that touch every aspect of Cyber Security.

About your manager

Ondrej is a manager of the ISM team and has over 10 years of experience with projects related to Cyber Security and IT. His experience comes from projects in the areas of Information/Cyber security (ISO 27k, security risk management, CSMS), IT processes and governance (ITIL and ISO 20k), and business transformation and project Quality Assurance. He enjoys sports, spending time with friends and family, video games and sci-fi movies and series.

Job description & summary

Our Cyber Security team is looking for new colleagues to expand their competences in the field of Information and cyber security. We are looking for someone who enjoys security, wants to further develop in it and participate in projects for our important Czech and foreign clients.

As a cyber security consultant, you will primarily focus on analyzing and implementing ISMS systems, setting up security processes and ensuring compliance with internationally recognized standards and the Czech Cyber Security Act. You will help clients secure their IT environment and propose solutions for problems identified from the results of risk analysis. You will have the opportunity to work with new technologies, make use of a PwC’s huge security knowledge base or help with the implementation of secure systems.

Whether you want to become a specialist in the security of IT systems and applications, an expert in
risk management or privacy protection, an information security auditor or a security manager, our
team is the right place to get there.

Requirements of the role

What we expect from you:

• 2+ years of relevant professional experience
• Knowledge of security standards and "best practice" (e.g. ISO 27000, but also others).
• Knowledge of the legislative requirements of relevant IS/IT security – especially the Act on Cybersecurity, NIS2, GDPR, etc.
• Basic knowledge of IT technologies and technical standards from the point of view of security for all layers of the architecture.
• Practical experience in analyzing and evaluating the effectiveness of security solutions and risks.
• Strong consulting and analytical skills
• Good communication and organizational skills in Czech and English.

Benefits and Fun

• Concentrated experience and rapid career growth. It may sound like a platitude, but it really is.

• Paid time off 20 + 5 days, 3 wellbeing days and 2 extra days off from the company at the end of the year.

• High-end Ultrabook and iPhone with unlimited data.

• Flexible working hours.

• Work from our offices in Prague, Brno, or Ostrava, or choose to work from home if that is your preferred option.

• Benefit program with 45.000 points that you can use for holidays, education, food vouchers, sports (Multisport), health... Simply on what you enjoy.

• Support for your education and development: business and digital trainings, technical certifications (e.g. SANS) or whatever that makes sense and it's related to your job etc..

• Possibility of Secondments - opportunity to work at a foreign PwC office in the future - for example in the USA, Canada etc..

• Extra-work activities and Away Days (team building, ski weekend, etc..)

• Regular feedback on your work, also consultation with a coach with whom you can address your further development and career direction.

​Ochrana osobních údajů pro žadatele o zaměstnání  / Privacy Statement for Recruitment Applicants  

#LI-EK1