PwC - Risk - IT Audit Senior Associate - UAE

About Us

With offices in 152 countries and nearly 328,000 professionals, we are one of the world’s leading professional services networks, helping organisations and individuals create lasting value through Assurance, Tax and Advisory services. For over 40 years, we have contributed to the Middle East’s transformation journey, partnering with governments and businesses to deliver sustainable solutions. Today, more than 12,000 of us across Bahrain, Egypt, Iraq, Jordan, Kuwait, Lebanon, Libya, Oman, Palestine, Qatar, Saudi Arabia and the UAE are shaping the region’s future. 

Line Of Service Overview

At PwC Consulting, you’ll shape strategies that redefine industries and drive national visions. We partner with leaders to deliver transformative solutions in enterprise strategy, digital innovation, operational excellence, cyber resilience, and risk management. Join a community that values bold thinking, collaboration, and measurable impact—where your expertise accelerates change and creates lasting value.

Business Unit Overview

As part of the Risk Consulting team, you’ll shape organizations strengthen resilience and build trust by providing end-to-end advisory solutions that enable businesses to align objectives with regulatory requirements, mitigate risks, and meet the diverse needs of critical stakeholders. The Risk Consulting practice offers a comprehensive range of services, including Internal Audit, Enterprise Risk Management, Governance, Policies, and Procedures, Internal Control over Financial Reporting, Process Intelligence and Compliance, and Technology Risk and Cybersecurity. It’s where risk management meets business transformation, backed by insight, powered by purpose.

How You’ll Contribute

As a Senior Associate within Risk, you’ll work as part of a team of problem solvers, helping to solve complex business issues from strategy to execution. Responsibilities include but are not limited to:

• Collaborate with a diverse regional team to help leading enterprises identify, analyze, prioritize, and respond to technology risks.
• Advise top management, cybersecurity, internal audit, compliance, and risk management functions within the enterprise on technology risk matters.
• Maintain an up-to-date understanding of the latest Information Security (IS) and cybersecurity threats, trends, and technologies.
• Assess both existing and emerging technology risks, and review and test the design and effectiveness of technology controls.
• Deliver actionable insights and recommendations to help safeguard clients’ systems and data against potential threats.
• Collaborate with a diverse talent pool of regional and international teams to successfully deliver key projects.
• Conduct qualitative and quantitative information and cybersecurity risk assessments, identifying high-risk areas and recommending risk response plans.
• Support and advise clients in mitigating existing and future security and technology risks, including organizational resilience and disaster recovery management activities.
• Assess clients’ environments against leading international and regional security standards and frameworks, such as ISO27001, NIST CSF, ITILv4, and NCA-ECC, to support regulatory and compliance requirements.
• Contribute to building strong client relationships and the development of key accounts.
  
  

What You’ll Bring

• Bachelors degree in applied sciences such as Computer Engineering, Computer Science, Information Technology Management, or a related field.
• Strong client management skills with the ability to interact effectively, consolidate requirements, and translate them into actionable deliverables.
• Experience conducting stakeholder meetings to assess organizational processes, risks, and controls.
• Solid knowledge of security industry standards, best practices, tools, and methodologies.
• Ability to identify technical security gaps and propose effective remediation strategies.
• Understanding of risk management methodologies and concepts, with the ability to apply structured approaches to risk analysis and response.
• Strong communication and presentation skills for engaging technical and non-technical audiences.
• Professional certifications preferred: CompTIA Security+, Certified in Cybersecurity (ISC)², CISA, ISO 27001, ISO 22301, CRISC, ITIL Foundations.
• Analytical mindset with the ability to evaluate benefits, drawbacks, and rationale for risk response strategies.
• Professional, adaptable, and collaborative approach to working across diverse teams and projects.
  
  

How You’ll Make a Difference 

At PwC Midde East, we expect all our people to embody the skills and behaviours of The PwC Professional framework, helping us deliver on our strategy while growing and developing as leaders at every level. 

Why You’ll Love Working at PwC

At PwC Middle East, you’ll find more than just a job - you’ll build a meaningful career, supported by rewards and benefits that help you thrive. We offer competitive pay, comprehensive benefits, and programs that promote well-being, balance, and personal growth. You’ll have access to continuous learning, digital upskilling, and a collaborative environment that values innovation, mentorship, and diversity. Are you ready to make a difference? Want to unlock new value by applying your unique perspective and talents? You can grow exponentially here. Discover more about Life at PwC Middle East.

---