Your Team
As a Senior Associate in our Cybersecurity and Privacy team, you will play a key role in delivering and enhancing our supply chain cyber risk capabilities across diverse client sectors. Your expertise will empower clients to strengthen their third-party cyber risk management programs and adapt to evolving regulatory expectations, such as DORA and NIS2, while responding to emerging threats within complex, global supply chains.
This position focuses on growth, supporting engagements across multiple clients in financial and non-financial services, many of which are involved in extensive multi-year transformation programs.
Your Impact
Within the Cybersecurity and Privacy team at PwC Switzerland, you will be engaged in:
- Delivering client engagements centered on supply chain cybersecurity, third-party risk management, and compliance with DORA, NIS2, and related regulations across various industries.
- Designing and implementing supplier segmentation strategies, cyber risk assessments, control testing, continuous monitoring, and incident response processes as part of broader Supplier Risk and IT GRC transformations.
- Collaborating with clients to define and operationalize future-state Third Party Risk Management (TPRM) operating models, including roles and responsibilities, escalation paths, and response plans.
- Building AI-augmented TPRM capabilities and workflows utilizing platforms such as ServiceNow, ProcessUnity, BitSight, RiskRecon, and SecurityScorecard, including tooling configuration and integrations.
- Developing pragmatic recommendations and roadmaps to enhance cyber risk governance, continuous monitoring, and incident/issue management throughout the third-party lifecycle.
- Leading and contributing to workshops, reporting, and executive-ready presentations for CISOs, CIOs, Risk, Compliance, and Procurement stakeholders.
- Supporting internal capability-building initiatives, contributing to thought leadership, market propositions, proposal responses, and account expansion efforts.
- Coaching and mentoring junior team members while promoting a high-performance and inclusive team culture.
Your Skill Set
We are seeking a Senior Associate who embodies our core values and possesses a strong background in cybersecurity:
- A minimum of 5 years of relevant experience in cybersecurity, third-party risk, or supply chain risk management.
- A master's or bachelor's degree or an equivalent professional qualification in business administration or computer science. Additional certifications such as CISM, CRISC, ISO 27001 Lead Implementer, or CISSP are advantageous.
- Proven experience collaborating with financial services clients, particularly in regulatory-driven engagements (e.g., DORA, NIS2).
- A strong understanding of supply chain cybersecurity frameworks, supplier risk segmentation, control testing, and cyber risk quantification.
- Familiarity with supply chain risk platforms such as ProcessUnity, ServiceNow, BitSight, RiskRecon, or equivalent.
- Excellent communication, stakeholder engagement, and client-facing skills.
- Strong verbal and written communication skills to effectively engage with all levels of management and staff.
- Fluency in English and (ideally) also in German and/or French.
- A high degree of initiative, self-organization, and sense of responsibility.
Apply online using the form below. Only applications matching the job profile will be considered.