Vacatures in Riskmanagement
logo PwC

IT GRC Senior Associate - PwC

Location: Amsterdam
Employment: Full-time
If you love the strategic side of information security this is the place to be. Within ISRC we work to create the global information security governance framework within PwC.

PwC is driving major change across information and cyber security by building a centralized model to provide security services across the entire network of member firms.  Mandated at the network level, Network Information Security (NIS) operates outside Information Technology (IT) and is responsible for this major program initiative, from definition of the security strategy to the execution of the global Cyber Readiness Program, moving from local to globally-provided services. 

Our mission is to identify, control, and reduce the attack surface across the network of member firms while increasing our adversaries’ cost of attack.

In order to deliver the Cyber Readiness Program, the NIS team is structured into the following Pillars:

  • Information Security Risk and Compliance (ISRC)
  • Chief Information Security Office (CISO)
  • Security Architecture, Engineering, Innovation and Transformation (SAEIT)
  • Cyber Security Services
  • Strategy and Alliances
  • Chief of Staff 

NIS is redefining cyber security on a global scale at PwC. Our mission protects 223,000 PwC members across 157 member firms worldwide, as well as our global clients.  

If you are seeking an exciting career with the scope to grow your cyber security skills through major change on a global scale, then NIS will empower you to do so.

What does your work look like?

The Information Security Risk and Compliance pillar within NIS is responsible for the following services:

  • Information Security Policy and Governance
  • Risk Management and Compliance
  • Metrics and Reporting
  • Quality Management (eGRC)

If you love the strategic side of information security this is the place to be. Within ISRC we work to create the global information security governance framework within PwC. Management of information security risks is imperative to our mission and ISRC sets the minimum baseline for information security across  the network of member firms. Identification, tracking and mitigation of risk through an enterprise risk register is the overall goal for the function, enabling PwC to have full visibility into potential information security risks across our estate. Delivering a business-first framework aligned to industry standards in information security enables NIS to coordinate risk management and compliance efforts across the Network of firms.

Your skills and responsibilities include but are not limited to:

  • Communicating analysis status to the Project Manager and system managers
  • Assisting with preparing the decision package for new project proposals
  • Ensuring that appropriate and consistent SDLC standards are followed
  • Collaborating across the PwC network to promote the adoption of best practice security risk mitigation techniques, tools and procedures
  • Understanding requirements from the business perspective and translating them into the appropriate GRC requirements and System Development Life Cycle (SDLC) deliverable
  • Overseeing the documentation of  requests or requirements, so that, they are unambiguous, consistent and not in contradiction with each other and leverage the best options available GRC platform
  • Assisting with the development or modification of moderately complex information systems, including analysis of business and user needs, documenting requirements, and revising existing system logic difficulties as necessary
  • Assisting management, project managers and other stakeholders with large, strategic, and complex projects
  • Being responsible for deliverables and activities in SDLC on projects

Who are you?

  • At least 3 years experience in Information technology or related field of study
  • Relevant Bachelors and/or Master's degree
  • Technical knowledge of all phases of applications systems analysis and understands the SDLC development methodology
  • Detailed understanding of risk management
  • Takes initiative in solving complex business problems by documenting requirements and supporting the full SDLC for applicable technical domains used for the business application and ensuring that suitable types of documentation are completed for the size, scale, scope and complexity of the changes involved
  • Functional knowledge of business analysis and contributes to the development of technical standards and practices
  • Understanding of the benefits of a mature rapid development system with abilities to delegate certain changes to end users and power users
  • Functional knowledge of SDLC methodologies used with the technical domain

What can we offer you?

  • Many training and courses that contribute to your personal and professional development
  • An appropriate salary and extensive employment benefits. These benefits include a 'well-being budget'. This is a personal yearly budget of €1.000,- that you can spend on your health, e.g., mindfulness, sports, lifestyle coaching, a second screen for your home office and noise cancelling headphones
  • Monthly internet allowance
  • A lease car or car allowance, laptop and an iPhone
  • 32 holiday days per year
  • Informal and interesting (virtual) events with colleagues

 Apply now!

Are you interested in this vacancy and do you meet the requirements? Apply directly by clicking the button. We would like to receive your resume and cover letter. In addition, be aware that performing an assessment can be part of the application process. If you have any questions about the vacancy, please contact our Recruiter Shannon Millar (  

Please note: direct applications only, no recruiters. 


Information and application:


Please send your application for IT GRC Senior Associate at PwC in Amsterdam including your resume and cover letter via our website.

Job code:
Job posted
04 november 2021
Apply Now
More information:

If you have any questions about the vacancy, please contact our Recruiter Shannon Millar.

Shannon Millar

Read all about working at PwC

Wil je deze vacature delen met je netwerk?


Transistorstraat 7
1322 CJ Almere

Postbus 60184
1320 AE Almere

Tel: 036 - 7440 136

KvK 32090652
ING Bank NL91INGB065.42.67.456
BTW NL.8106.57.041.B01

Wie we zijn is onderdeel van het platform van CareerGuide, 25 vacaturebanken voor specialisten!
Onze vacaturebanken (geen bemiddeling) bieden professionals relevante vacatures binnen hun expertise.

Ook een vacature plaatsen? Neem contact met ons op:

Nienke Smit   Pieter Lammers
Nienke Smit
  Pieter Lammers