ETIC, Cyber Security Information Protection Manager

Job description / Role

Line of Service
Advisory

Industry/Sector
Technology

Specialism
Advisory - Other

Management Level
Manager

Job Description & Summary

About PwC ETIC - Egypt Technology and Innovation Centre

PwC is opening a new Technology & Innovation Center in Cairo that will deliver high quality technology solutions to consulting Clients across the globe. The Centre will provide a broad suite of skills and services to our clients, ranging from Packaged Applications such as SAP & Oracle, to Cybersecurity, Data Analytics, Custom Development and Cloud services utilising AWS, Azure and Google, as well as expanding our existing Managed Services capabilities.

The centre is looking to expand rapidly and we are looking for enthusiastic self-starters with a passion for technology and client delivery to help shape and form this new venture.

Information Protection Manager, core responsibility overview:

- Team leadership - As a manager, you lead and guide your team in all important issues and make a significant contribution to the success of projects

- Global orientation - Work with a global mindset with teams based in the UK, Germany and other Middle Eastern Countries

- Project work - Using innovative methods and partnerships with leading vendors, your role involves the following:

- Consulting on technology solutions to clients for information discovery of unstructured information and for classification of information, including rules based classification and trainable classifiers

- Implement cloud security controls through cloud cyber security technology

- Implementing and enforcing information protection policies, including data classification and access control management.

- Delivering security awareness training programs and promoting a security-conscious culture.

- Assisting in incident response and management, including investigations and corrective actions.

- Conducting security risk assessments and recommending mitigation strategies.

- Supporting security audits and compliance efforts.

- Monitoring security events and analysing logs for potential incidents.

- Ensuring data privacy and regulatory compliance.

- Maintaining security documentation and reporting on metrics.

- Assisting in the evaluation and implementation of security technologies.

Role Requirements:

- Understanding of data governance.

- Understanding of Azure Purview, a data governance solution that helps discover, classify, and manage data assets across the organisation. Familiarity with its features, such as data cataloguing, classification, and lineage.

- Proficiency in working with the AIP scanner

- Knowledge of configuring and deploying the scanner to enforce data protection policies.

- Experience with Data Loss Prevention solutions, including Microsoft's DLP capabilities. .

- Understanding of configuring DLP policies to detect and prevent the unauthorised transmission of sensitive data.

- Familiarity with CASB solutions, which provide visibility and control over cloud services and applications.

- Proficiency in Information Rights Management technologies, such as Microsoft's Azure Information Protection (AIP) or Active Directory Rights Management Services (AD RMS). Ability to implement and manage IRM policies to protect sensitive information and control access rights.

- At least 6 years of relevant work experience

Requirements

Essential skills & attributes:

- Highly motivated

- Ability to work within a fast-paced & unstructured environment. Must be able to multi-task and effectively and continually prioritise

- Possess a strong understanding of information security principles, best practices, and industry standards.

- MSFT Purview Insider Risk Management, MSFT Purview DLP, Symantec DLP, Insider Risk Management

- Familiarity with data protection regulations (e.g., GDPR, CCPA) and their implications on information security.

- Security Frameworks: Knowledge of security frameworks such as ISO 27001, NIST, or CIS Controls and their practical implementation.

- Ability to conduct assessments and audits to identify vulnerabilities and recommend risk mitigation strategies.

- Excellent problem-solving skills and the ability to think critically in high-pressure situations, quickly analyse security incidents, and propose effective solutions.

- Strong analytical and problem-solving skills to evaluate complex security issues, identify patterns, and propose effective solutions.

- Excellent oral and written English skills.

Education

- University degree, ideally in the fields of Computer and Information Science, Business Informatics, Computer Engineering, Cyber Security, Information Technology, Management Information Systems

About the Company

At PwC Middle East, we've set out an ambitious purpose and strive to live it everyday: to solve important problems and build trust in society.

We're a community of solvers that come together in unexpected ways to build trust and create sustained outcomes. We solve important problems, support one another as we grow, develop and build fulfilling careers.

PwC provides industry-focused services for public and private clients across Assurance and Audit, Deals, Consulting, Tax and Legal. We draw on our development legacy that brings together the collective experience of over 7,000 people in our region with offices across 12 countries to solve for tomorrow.

We're striving to consistently deliver innovative work that builds trust and delivers sustained outcomes. And we're proud of the strength that comes from all our different backgrounds and experiences and we value everyone's uniqueness. We thrive in uncertainty, operate with integrity and leverage the diverse perspectives of our teams.

If you're looking for a place that fuels your ambition to make a difference, that matches your curiosity with continuous learning opportunities and reimagines ways of working to enable you to lead a more balanced life, then you're a future PwCer.