Senior Associate(Information and DataSecurity)-Cyber Security-Risk Assurance-Beijing/Shanghai

Job Req ID:  36682
Date:  14 Jun 2024
Country/Region:  CN
City:  Beijing

Job Profile Summary

A career within Risk Assurance Compliance and Analytics services, will provide you with the opportunity to assist clients in developing analytics and technology solutions that help them detect, monitor, and predict risk. Using advanced technology, we’re able to focus on establishing the right controls, processes and structures for our clients to ensure that decisions are based on accurate information and assure that information provided to third parties is accurate, complete, and can be trusted.

Job Description

To really stand out and make us fit for the future in a constantly changing world, each and every one of us at PwC needs to be a purpose-led and values-driven leader at every level. To help us achieve this we have the PwC Professional; our global leadership development framework. It gives us a single set of expectations across our lines, geographies and career paths, and provides transparency on the skills we need as individuals to be successful and progress in our careers, now and in the future. As a Senior Associate, you'll work as part of a team of problem solvers, helping to solve complex business issues from strategy to execution. PwC Professional skills and responsibilities for this management level include but are not limited to: Use feedback and reflection to develop self awareness, personal strengths and address development areas. Delegate to others to provide stretch opportunities, coaching them to deliver results. Demonstrate critical thinking and the ability to bring order to unstructured problems. Use a broad range of tools and techniques to extract insights from current industry or sector trends. Review your work and that of others for quality, accuracy and relevance. Know how and when to use tools available for a given situation and can explain the reasons for this choice. Seek and embrace opportunities which give exposure to different situations, environments and perspectives. Use straightforward communication, in a structured way, when influencing and connecting with others. Able to read situations and modify behavior to build quality relationships. Uphold the firm's code of ethics and business conduct.




  1. 协助经理完成信息安全管理体系、ISO27001、数据安全、隐私保护等项目售前、交付工作。 

  1. 负责收集、梳理客户的数据安全(隐私)等安全合规需求,结合行业实践提供数据安全咨询服务,包括但不限于数据安全分级分类、数据资产风险评估、数据安全合规评测、数据安全管理体系等; 

  1. 负责咨询服务项目的交付工作,包括但不限于对客户业务合规现状进行调研,识别合规差距及风险,撰写数据安全评估报告、数据安全培训工作等。 

  1. 其他信息安全咨询服务支持,包括但不限于网络安全。 


  1. 信息安全、计算机、软件工程、信息化管理或相关专业本科及以上学历者优先; 

  1. 两年以上数据安全合规经验,包括企业数据安全管理体系、技术体系构建等。熟悉国内及海外合规要求; 

  1. 熟悉汽车、各安全厂商产品及技术路线,有厂商售前及咨询经验优先; 

  1. 具备主动思考能力,有较强的学习能力,逻辑思维能力强; 

  1. 具备较强的沟通表达能力、良好的团队合作能力; 

  1. 具备CISSP、CISP 、CISA、ISO等证书优先; 


  1. 敬业、富有团队合作精神,积极主动按照计划完成任务; 

  1. 具备独立分析和解决问题的能力;积极主动、认真踏实的工作态度。 


The PwC China (including Mainland China, Hong Kong, Macau) does not accept unsolicited resumes from search firm recruiters. Fees will not be paid in the event a candidate submitted by a recruiter without an agreement in place is hired; such resumes will be deemed the sole property of PwC China (including Mainland China, Hong Kong, Macau). PwC China (including Mainland China, Hong Kong, Macau) is an equal opportunity employer. All aspects of employment will be based on merit, competence, performance, and business needs. We do not discriminate on the basis of race, color, religion, marital status, age, national origin, ancestry, physical or mental disability, medical condition, pregnancy, genetic information, gender, sexual orientation, gender identity or expression, veteran status, or any other status protected under the local law.