Risk Consulting (Technology) - Senior Associate - Lebanon
Date: Sep 15, 2025
Location: Beirut, LB
Company: PwC MiddleEast
A career in our Technology Risk Services practice will provide you with the valuable opportunity of working with a diverse regional team on a wide range of industry leading enterprises to help our clients identify, analyze, prioritize, and respond to existing and emerging technology risks. The role acts as an advisor to top management, cybersecurity, internal audit, compliance and to risk management functions within the enterprise. For this reason, an up-to-date understanding of the latest Information Security (IS) and cybersecurity threats, trends and technologies is a crucial component of the position, as you will be required to assess existing and emerging technology risks, review and test the design and operating effectiveness of existing controls, and advise the enterprise on the recommended risk mitigation actions to safeguard their valuable information assets, all while navigating the complex landscape of technology risks, and consistently delivering actionable insights and recommendations to ensure our clients’ systems and data are safeguarded against potential threats.
What is expected from you?
As a Senior Associate, you will be reporting to Managers and higher grades, working as part of a team of problem solvers, helping to solve complex business issues from strategy to execution. Your job duties will include but will not be limited to:
- Collaborate with a diverse talent pool of regional and international teams to effectively deliver key projects within the region.
- Keep current with trends in the information security industry, including current technologies and emerging threats.
- Conduct qualitative and quantitative information and cyber security risk assessments to uncover areas of high risk and recommend risk response action plans.
- Support and advise our clients to mitigate existing and future security and technology risks.
- Conduct analysis of our clients’ information security environment to detect critical deficiencies in security controls and recommend solutions for improvement.
- Support and advise our clients on continuity and disaster recovery management activities and review organizational resilience.
- Support our clients in meeting their regulatory and compliance requirements by assessing their environments against leading international and regional security standards/frameworks, e.g., ISO27001, NIST CSF, ITILv4, NCA-ECC, etc.
- Contribute to building client relationships and development of key accounts.
What will you bring?
Competencies
Client Management
-
Can effectively interact and communicate with clients and business partners
-
Can consolidate client requirements and translate them into project activities and deliverables
-
Can effectively conduct meetings with project stakeholders to gather an understanding of the current organisational environment, including processes, risks and controls.
Security Concepts
-
Knowledge of several security industry standards and best-practices.
-
Able to identify technical security gaps and deficiencies in technologies and propose solutions to remediate the identified risks.
-
Knowledge of security best-practices, tools, methodologies and concepts.
Risk Management
-
Knowledge of risk management methodologies and concepts.
-
Can apply a methodical and structured approach to identifying, analysing, evaluating, prioritising and responding to risk
-
Can describe key benefits, drawbacks and rationale for risk response strategies
Academic requirements
University Degree in applied sciences i.e. computer engineering, computer sciences, information technology management or any other related field.
Desirable Certifications – Professional
-
CompTIA Security+
-
Certified in Cybersecurity – (ISC)²
-
Certified Information Systems Auditor (CISA)
-
ISO 27001
-
ISO22301
-
Certified in Risk and Information Systems Control
-
Information Technology Infrastructure Library (ITIL) Foundations