Your Team
As a Senior Associate in our Cybersecurity and Privacy team, you will play a pivotal role in expanding our supply chain cyber risk capabilities across various client sectors. You will assist clients in enhancing their third-party cyber risk management programs and ensuring compliance with evolving regulatory expectations such as DORA and NIS2, while also addressing emerging threats across complex, global supply chains.
This is a growth-oriented position that supports engagements with both financial and non-financial services clients, many of which are involved in multi-year transformation programs.
Your Impact
As part of the Cybersecurity and Privacy team at PwC Switzerland, you will be engaged in:
- Delivering client engagements focused on supply chain cybersecurity, third-party risk, and regulatory compliance with DORA, NIS2, and related regulations across various industries.
- Designing and implementing supplier segmentation, cyber risk assessments, control testing, continuous monitoring, and incident response processes as components of broader Supplier Risk and IT GRC transformations.
- Collaborating with clients to define and operationalize future state Third Party Risk Management (TPRM) operating models, including roles, responsibilities, escalation paths, and response plans.
- Building AI-augmented TPRM capabilities and workflows by leveraging platforms such as ServiceNow, ProcessUnity, BitSight, RiskRecon, and SecurityScorecard, including tooling configuration and integrations.
- Developing pragmatic recommendations and roadmaps to enhance cyber risk governance, continuous monitoring, and incident/issue management throughout the third-party lifecycle.
- Leading and contributing to workshops, reporting, and executive-ready presentations for stakeholders such as CISO, CIO, Risk, Compliance, and Procurement teams.
- Supporting internal capability building, contributing to thought leadership, market propositions, proposal responses, and initiatives for account expansion.
- Coaching and mentoring junior team members while fostering a high-performance, inclusive team culture.
Your Skill Set
We are seeking a Senior Associate who aligns with our core values and possesses a robust background in cybersecurity:
- Minimum of 5 years of relevant experience in cybersecurity, third-party risk, or supply chain risk management.
- A master's or bachelor's degree, or an equivalent professional qualification in business administration or computer science. Additional certifications such as CISM, CRISC, ISO 27001 Lead Implementer, or CISSP are advantageous.
- Proven experience with financial services clients, particularly within regulatory-driven engagements (e.g., DORA, NIS2).
- Strong understanding of supply chain cybersecurity frameworks, supplier risk segmentation, control testing, and cyber risk quantification.
- Familiarity with supply chain risk platforms such as ProcessUnity, ServiceNow, BitSight, RiskRecon, or similar tools.
- Excellent communication, stakeholder engagement, and client-facing skills.
- Strong verbal and written communication skills to effectively interact with all management levels and staff.
- Fluency in English; proficiency in German and/or French is a plus.
- A high degree of initiative, self-organization, and sense of responsibility.
Apply online using the form below. Please note that only applications matching the job profile will be considered.