Cyber Security Senior Associate (IT Audit) - Riyadh

This job is no longer available

Line of Service



Not Applicable



Management Level

Senior Associate

Job Description & Summary

Controls Assurance is a specialist team within our Audit practice that combines a mix of technology, data, business and accounting expertise to how we audit clients across all industries. In Controls Assurance, we are using our latest tools to help digitize the way we deliver audits through automation, AI, data analytics and innovation.
As part of the team you'll have the opportunity to work with a variety of clients, industries and technologies and you'll develop the business skills, knowledge and relationships you need to build a career that's more than just numbers. We're constantly investing in audit technology and the skills of our people to keep up with the rapid pace of change and to deliver trust that is deeper, broader and more forward-looking.
Our team uses current and emerging technologies to assist clients with financial reporting, compliance, and operational processes controls. You’ll provide services related to controls around the financial reporting, compliance and operational processes, including business process and Information Technology management controls.

  • At least 5+ years of experience in Cybersecurity and IT Audit.
  • Good understanding of accounting and/ or audit knowledge in relation to controls over financial reporting
  • Solid technical skills and understanding of information systems security and controls across a wide range of systems applications and technology
  • Monitor processes and drive improvements in efficiency and quality of cyber-security programs 
  • Conduct gap assessment and development of the existing IT / IS policies and procedures in accordance with industry best practices (NIST, KSA local regulatory frameworks, ISO etc.)
  • Conduct security process implementation reviews to assess security effectiveness and reporting 
  • Conduct IT and IS risk assessment activities, including assets identification and classification, threat and risk identification and analysis, existing controls and vulnerabilities evaluation, residual risk rating, recommendation, and treatment plan
  • Assist in development of workflows for transitioning strategic plans into implementation plans and operational readiness 
  • Facilitate strategic planning initiatives, documentation, technical roadmaps, and security tool rationalization
  • Supporting the client’s team by acting as an interim team member (e.g., data protection officer, security officer, security manager, security analyst) 
  • Proactively identifying and pursuing opportunities for further business and team growth
  • Experience related to SOC reviews would be a plus


  • Bachelor’s degree in Computer Engineering, Computer Science, Information
    Systems or a related field.
  • Have knowledge of industry standard classification schemes, such as ISO
    27000, NIST, NCA etc.
  • Have demonstrated self-leadership, problem solving, including verbal and wri ten communication skills.
  • Have proven analytical, decision-making, and presentation skills.
  • Be able to work both independently and as part of a team with professionals at all levels

Education (if blank, degree and/or field of study not specified)

Degrees/Field of Study required:

Degrees/Field of Study preferred:

Certifications (if blank, certifications not specified)

Required Skills

Optional Skills

Desired Languages (If blank, desired languages not specified)

Travel Requirements


Available for Work Visa Sponsorship?


Government Clearance Required?


Job Posting End Date

Job information

Firm: PwC

Location: Riyadh


More jobs