Insider Risk Investigation Analyst - Manager

Line of Service

Internal Firm Services

Industry/Sector

Not Applicable

Specialism

Advisory - Other

Management Level

Manager

Job Description & Summary

At PwC, our people in risk and compliance focus on maintaining regulatory compliance and managing risks for clients, providing advice, and solutions. They help organisations navigate complex regulatory landscapes and enhance their internal controls to mitigate risks effectively.

Those in governance, risk, controls and compliance at PwC will be responsible for confirming regulatory compliance and managing risks for clients. Your work will involve providing advice and solutions to help organisations navigate complex regulatory landscapes and enhance their internal controls to mitigate risks effectively.

Enhancing your leadership style, you motivate, develop and inspire others to deliver quality. You are responsible for coaching, leveraging team member’s unique strengths, and managing performance to deliver on client expectations. With your growing knowledge of how business works, you play an important role in identifying opportunities that contribute to the success of our Firm. You are expected to lead with integrity and authenticity, articulating our purpose and values in a meaningful way. You embrace technology and innovation to enhance your delivery and encourage others to do the same.

Examples of the skills, knowledge, and experiences you need to lead and deliver value at this level include but are not limited to:

• Analyse and identify the linkages and interactions between the component parts of an entire system.
• Take ownership of projects, ensuring their successful planning, budgeting, execution, and completion.
• Partner with team leadership to ensure collective ownership of quality, timelines, and deliverables.
• Develop skills outside your comfort zone, and encourage others to do the same.
• Effectively mentor others.
• Use the review of work as an opportunity to deepen the expertise of team members.
• Address conflicts or issues, engaging in difficult conversations with clients, team members and other stakeholders, escalating where appropriate.
• Uphold and reinforce professional and technical standards (e.g. refer to specific PwC tax and audit guidance), the Firm's code of conduct, and independence requirements.

Job Summary
Please briefly describe the following: “What is the purpose of this role?”. What is this job responsible for?” and “why does this role exist?”
Reporting to the Sr. Manager Insider Risk, the Investigations Analyst is a member of a team responsible for the ongoing assessment, triage and investigation of Insider Risk events within the Insider Risk Platform.
The Investigations Analyst is responsible for the identification of events involving training integrity matters, Data Loss, misuse of network access or breaches of the Acceptable Use Policy.
The Investigations Analyst will work directly with the Sr. Manager of Insider Risk to assess and escalate incidents identified and collaborate with stakeholder to remediate the issues identified. The Investigation Analyst will also support ethics investigations by identifying and collecting digital forensic evidence within various platforms as required.
Accountabilities
Identify, assess, and escalate findings relating to insider risk events involving misuse of PwC assets, data exfiltration, mass deletion or aggregation of data. A key area of focus will be on training integrity alerting within the risk tool, which looks at behaviours consistent with answer sharing as well as technical investigation support. Work with the Sr. Manager, Insider Risk to escalate and remediate positive findings, recommend strategic security solutions and security control improvements specific to enhancing the identification of data security events.
Major Responsibilities
Provide 3 -5 major responsibilities of the role and identify key activities within each area. Indicate the percentage (%) of time normally spent on each major responsibility with the total equaling 100%.
Investigation Management (70%)
●Review, triage and investigation system alerts for Training Integrity matters
●Review, triage and investigation endpoint alerts in the Insider Risk platform
●Monitor and assess potential Data Loss incidents as they arise
●Assess, summarize, and escalate potential breaches to management
●Assisting with related queries into high-risk employees for potential data loss, nefarious activities
●Assist with the development of other operational/project documentation
●Provide support to other teams within the broader Risk Management, as needed
●Document incidents in PwC’s case management system
●Participate in annual audit and compliance testing
●Generate monthly/quarterly reports and create dashboards for leadership
●Support Ethics investigations related to monitoring and evidence collection
Project Management (20%)
●Manage Insider Risk platform and write scripts for correlation rules as required
● Develop and improve processes and procedures for data protection activities
●Provide support on ad-hoc project work
Other Tasks and Responsibilities as assigned (10%)
●Assist with special projects for the team as required

Educations & Professional Certification (Required and/or Preferred)
What is the minimum required level of education? Please indicate if the professional certification(s) is required or preferred.
●Education / Experience Post-secondary education with studies focused in information/cyber security.
●Splunk Certified
●Demonstrate a current and working knowledge of Information Security best-practices, methodologies, and techniques.
●Understanding of Jira and SQL scripts
Work Experience
What is the minimum required level of experience in the incumbent would need to perform this job?
●1 to 3 years of current and working knowledge in the field of Cyber/information security or Security Operations Centre.
Technical skills & Specialized Knowledge
Provide details on any specialized and technical skill set required to perform the job.
●Proficient within M365 products
●Must be able to create and manipulate Excel spreadsheets
●Understanding of Power BI
●Understanding of Jira and SQL script writing
●Splunk user knowledge
General Attributes
Any other characteristics or traits that are essential for the job (e.g. able to negotiate and influence effectively)
●English language, writing and reading skills a must
Communication/ Interpersonal Skills
Briefly describe the level of communication skills required.
Consider the following: 1) type of contact (e.g. internal colleagues vs. clients); 2) type of communication (e.g. routine email vs. formal presentation); 3) frequency (e.g. daily vs. ad-hoc); 4) purpose (e.g. clarifying information vs. selling ideas)
●Required to produce standardized reports of finding in the case management application
●Strong verbal and written communication skills; comfort interacting with individuals in high-level roles within the firm.
●Takes initiative and has strong organizational, research, and analytical skills
●Critical thinker, intellectually curious, able to identify gaps and propose solutions.
Customer/ Client Service
We depend on all employees to take an attitude of excellence in customer service.
When describing the expectations of this role, consider the following: 1) level of understanding of clients’ needs; 2) level of anticipation/proactivity to meet those needs; 3) type of solutions (e.g. provide clarification vs. long term solutions)
●Ability to build and maintain professional relationships
●Be aware of the sensitivity of information received and treat it appropriately
Problem Solving/ Judgement/Decision Making
Describe the complexity of work and the degree of judgement required for this role. Also, take into consideration the level of innovation/ creativity required to solve the typical problem this job encounters.
●This position follows straightforward guidelines and established practices, major issues are deferred to the manager to resolve. Decisions are made mainly based on previous encounters with similar situations.
Accountability/ Impact of Decisions
Describe the types of decisions (e.g. budget, people, operations, etc.) the role is required to make and the extent to which the decisions, actions and results of work performed by the role contribute to, or have an impact on the performance of the organization (e.g. The immediate work unit, functional group, the firm or the clients).
●Decisions made by this role impacts their own work, Manager will directly supervise and act as an advisor on day to day workflow.
Leadership and Coaching
Describe any leadership or coaching responsibilities this role has.
●This role acts as a Subject Matter for the Insider Risk tool, which training will be provided.
●May provide guidance to coworkers but does not have any supervisory responsibilities.
Sensory and Physical Efforts
Describe the extent to which the work requires the incumbent to exert physical effort, and/or to apply sensory concentration and attention which results in physical or mental strain or fatigue. Please specify the frequency, intensity and the duration of effort required.
●Prolonged visual concentration on data entry up to 4 hours without any break.
Working Conditions & Travel Requirements (if applicable)
Describe any unpleasant or hazardous situations that may, under normal circumstances, be encountered on the job (e.g. irregular working hours, dealing with irate customers, travelling). Please specify the frequency with which the situation is likely to occur.
●Work location- Remote but would be required to attend the office when needed.
●Must be able to work independently and flexibly
●Travel not required
 

Education (if blank, degree and/or field of study not specified)

Degrees/Field of Study required:

Degrees/Field of Study preferred:

Certifications (if blank, certifications not specified)

Required Skills

Optional Skills

Accepting Feedback, Accepting Feedback, Active Listening, Analytical Thinking, Business Decisions, Business Performance Management, C-Level Presentations, Coaching and Feedback, Communication, Compliance Frameworks, Compliance Policies, Compliance Program Implementation, Compliance Review, Controls Testing, Corporate Governance, Creativity, Embracing Change, Emotional Regulation, Empathy, External Audit, Finance Target Operating Model, Finance Transformation, Financial Reporting, Fraud Detection, Fraud Prevention {+ 22 more}

Desired Languages (If blank, desired languages not specified)

Travel Requirements

Available for Work Visa Sponsorship?

Government Clearance Required?

Job Posting End Date

May 31, 2025