PwC
Advisory
BusinessInformationSecurityOfficer(BISO)
Neural analysis suggests this role is
optimal for Senior Associate candidates.
“Business Information Security Officer (BISO) at PwC. Skills: Business Information Security Officer, security strategy, Cyber Readiness Programs, Zero Trust Programs, information security, tech/digital management, security projects, cyber incidents, security governance. defining our security strategy. executing our global Cyber Readiness and Zero Trust Programs”
What You'll Achieve.
drive meaningful outcomes that’ll elevate your career; elevate the team; support decision-making; deliver sustained outcomes
Industry & Context.
Act to resolve issues which prevent the team from working effectively; Act as a subject matter expert, navigating competing priorities and managing adversity; Analyze complex ideas or proposals and build a range of meaningful recommendations; Use multiple sources of information, including broader stakeholder views, to develop solutions and recommendations; Identify and address risks that do not meet the firm's expectations and use data and insights to inform conclusions and support decision-making; Identify issues with security governance and make process efficiency improvements
What They're Looking For.
Must Have
Progressive experience in a professional environment in roles involving information security and/or tech/digital management, Ability to manage security projects, including planning, execution, and monitoring, Ability to guide local security requests through global compliance processes and assess residual risk, Working with global and local territory stakeholders on key projects and initiatives, Active and regular engagement with territory stakeholders communicating global NIS priorities, programs, and cyber thought leadership, Experience building and maintaining relationships across the network to effectively deliver security activities, managing multi-functional relationships and collaborating with multiple stakeholders across functional and technical skillsets to identify, build and maintain security capabilities or controls, Identify issues with security governance and make process efficiency improvements, understanding of regulatory, legislative, and client security requirements, and the technology systems and methods that are available to address them
Nice to Have
Knowledge of security attestations & certifications, preferably ISO 27001, NIST or SOC2
What You'll Do.
defining our security strategy
executing our global Cyber Readiness and Zero Trust Programs
transitioning from predominantly local to centralized services
Develop new skills outside of your comfort zone
Act to resolve issues which prevent the team from working effectively
Act as a subject matter expert
navigating competing priorities and managing adversity
Drive escalations and seek consensus on addressing issues across local/global stakeholders
work collaboratively and motivate others to recognize their strengths and elevate the team
Analyze complex ideas or proposals and build a range of meaningful recommendations
Use multiple sources of information
including broader stakeholder views
to develop solutions and recommendations
Identify and address risks that do not meet the firm's expectations and use data and insights to inform conclusions and support decision-making
Maintain a point of view on key global trends
and how they impact technology strategy
Simplify complex messages
highlight and summarize key points
and uphold the firm's code of ethics and business conduct
Manage security projects
acts as key participant for cyber incidents
and service escalations
Develop knowledge of firm priorities
Network Information Security concepts
and standards and their application in a large enterprise environment
guide local security requests through global compliance processes and assess residual risk
understanding of information security and technology including emerging trends in cloud computing
and others – and the unique challenges and risks posed by them
Working with global and local territory stakeholders on key projects and initiatives
Active and regular engagement with territory stakeholders communicating global NIS priorities
and cyber thought leadership
Experience building and maintaining relationships across the network to effectively deliver security activities
managing multi-functional relationships and collaborating with multiple stakeholders across functional and technical skillsets to identify
build and maintain security capabilities or controls
Identify issues with security governance and make process efficiency improvements
understanding of regulatory
and client security requirements
and the technology systems and methods that are available to address them
work closely with and support NIS/local IT/OGC/HC on timely escalations
How You'll Work.
Team & Collaboration
work collaboratively and motivate others to recognize their strengths and elevate the team; Use multiple sources of information, including broader stakeholder views, to develop solutions and recommendations; Working with global and local territory stakeholders on key projects and initiatives; Active and regular engagement with territory stakeholders communicating global NIS priorities, programs, and cyber thought leadership; Experience building and maintaining relationships across the network to effectively deliver security activities; managing multi-functional relationships and collaborating with multiple stakeholders across functional and technical skillsets to identify, build and maintain security capabilities or controls; work closely with and support NIS/local IT/OGC/HC on timely escalations
Communication Scope
verbal and written communication skills; ability to effectively convey complex security concepts to non-technical stakeholders; Simplify complex messages, highlight and summarize key points
Process & Methodology
Manage security projects, including planning, execution, and monitoring
Full Job Description
**Line of Service** Advisory **Industry/Sector** Not Applicable **Specialism** Managed Services **Management Level** Senior Associate **Job Description & Summary** The Global Network Information Security (NIS) team at PwC is searching for a talented security and technology professional to fulfill the role of Business Information Security Officer (BISO). Operating on a local, regional, and global scale, NIS is responsible for defining our security strategy and executing our global Cyber Readiness and Zero Trust Programs, transitioning from predominantly local to centralized services. If you are seeking an exciting opportunity with the scope to grow your cybersecurity career through major change on a global scale, then NIS will empower you to do so. NIS built the first global cybersecurity function at PwC. Our mission protects 300,000 PwC members across 150 member firms worldwide as well as our global clients. **The Opportunity:** As a Business Information Security Senior Associate, Global, unlock your potential and embrace the chance to drive meaningful outcomes that’ll elevate your career. Your role will include, but isn’t limited to: * Develop new skills outside of your comfort zone * Act to resolve issues which prevent the team from working effectively * Act as a subject matter expert, navigating competing priorities and managing adversity * Drive escalations and seek consensus on addressing issues across local/global stakeholders also work collaboratively with and motivate others to recognize their strengths and elevate the team * Analyze complex ideas or proposals and build a range of meaningful recommendations. * Use multiple sources of information, including broader stakeholder views, to develop solutions and recommendations * Identify and address risks that do not meet the firm's expectations and use data and insights to inform conclusions and support decision-making * Maintain a point of view on key global trends, and how they impact technology strategy. * S
Applying for this Business Information Security Officer (BISO) role?
Most applicants get filtered before a human reads their resume. See if yours makes the cut.
How to Apply on Workday
- Workday has a multi-step form — save your progress after every section.
- "Apply With LinkedIn" can fail or lose data; manual entry is more reliable.
- Watch for the "Submit for Review" final step — hitting "Save" alone does not submit.
- Job requisition numbers are useful when following up with HR by email.
ANONYMOUS · UNFILTERED
What do employees actually say about PwC?
Real rants from real employees. Read before you apply.