Skip to content
SecRoles

IN_Associate_ITGC_RC - GRC AITH_Advisory_Noida

PricewaterhouseCoopers ServicesNoida, UP, IndiaJune 22, 2026
On-site
Full-time
GRC
Mid · 2–6 yrs

Line of Service

Advisory

Industry/Sector

FS X-Sector

Specialism

Risk

Management Level

Associate

Job Description & Summary

At PwC, our people in risk and compliance focus on maintaining regulatory compliance and managing risks for clients, providing advice, and solutions. They help organisations navigate complex regulatory landscapes and enhance their internal controls to mitigate risks effectively.

Those in governance, risk, controls and compliance at PwC will be responsible for confirming regulatory compliance and managing risks for clients. Your work will involve providing advice and solutions to help organisations navigate complex regulatory landscapes and enhance their internal controls to mitigate risks effectively.

Why PWC

At PwC, you will be part of a vibrant community of solvers that leads with trust and creates distinctive outcomes for our clients and communities. This purpose-led and values-driven work, powered by technology in an environment that drives innovation, will enable you to make a tangible impact in the real world. We reward your contributions, support your wellbeing, and offer inclusive benefits, flexibility programmes and mentorship that will help you thrive in work and life. Together, we grow, learn, care, collaborate, and create a future of infinite experiences for each other. Learn more 

about us.

At PwC, we believe in providing equal employment opportunities, without any discrimination on the grounds of gender, ethnic background, age, disability, marital status, sexual orientation, pregnancy, gender identity or expression, religion or other beliefs, perceived differences and status protected by law. We strive to create an environment where each one of our people can bring their true selves and contribute to their personal growth and the firm’s growth. To enable this, we have zero tolerance for any discrimination and harassment based on the above considerations. "

Job Description & Summary":

We are seeking a Data Privacy Consultant to ensure compliance with global data protection and privacy regulations. The consultant will advise on privacy frameworks, conduct assessments, and implement best practices to safeguard personal data across the organization. 

Responsibilities 

  • Prior experience working in an IT Internal Audit Team or consulting company specializing in conducting IT Audits, IT Internal Audits, ERP (SAP, Oracle etc.) Reviews, ITGC, IT Application Controls Reviews. 

  • Strong understanding of IT General Controls domains such as Change Management, User Access Management, IT Operations, Back and Recovery Management, BCP/ DR etc 

  • Strong understanding of IT Application controls (Input/ Output Controls, Processing Controls, Interface controls) specifically w.r.t. ERP applications such as SAP, Oracle etc. 

  • Understanding of IT SOX Control Testing, Internal Financial Controls (IFC) Testing 

  • Understanding of the third-party risk management reviews 

  • Understanding of IT Risk Management frameworks such as COBIT, NIST, ISO 27001, etc. 

  • Should understand complete audit lifecycle from audit scoping to project deliverables 

  • Ability to carry out IT Audits/Assessments (with minimum supervision) including: 

  • Understanding the client’s IT environment 

  • Audit scoping considering critical systems and processes 

  • Finalising Risk & Control Matrix, Data Requirements 

  • Interview client stakeholders (mid-management level) 

  • Conduct walkthrough meetings 

  • Carry out test of design and operating efficiency of IT controls 

  • Obtain relevant artefacts and identify exceptions 

  • Discussion on observations/ issues identified 

  • Drafting audit reports (Observation, Risk, Implication, Identify Action Owner, Timelines for closure) and presenting to key stakeholders 

  • Strong knowledge and experience of MS Office Tools (Excel, Word, PowerPoint), Data Analytics Tool 

  • Excellent communication and presentation skills and ability to effectively communicate observations/ issues at senior management levels 

Certifications: 

  • CIA/CISA/CISM will be added advantage 

Mandatory skill sets:

  • Bachelor’s degree in law, Engineering, Information Security, Computer Science, or related field. 

  • Master’s degree in MBA, Law, Information Security or related field.  

  • 2–6 years of experience in data privacy, compliance, or information security. 

  • Strong knowledge of GDPR, DPDPA, CCPA/CPRA, and other international privacy laws. 

  • Strong expertise in technical privacy controls, including encryption, pseudonymization, access management, and related security mechanisms. 

  • Experience in conducting privacy assessments, gap analyses, and audits. 

  • Familiarity with data governance, risk management, and IT security practices. 

  • Excellent communication and stakeholder management skills. 

  • Certifications such as CIPP/E, CIPM, CIPT, or equivalent are a plus. 

Preferred skill sets:

  • Bachelor’s degree in law, Engineering, Information Security, Computer Science, or related field. 

  • Master’s degree in MBA, Law, Information Security or related field.  

  • 2–6 years of experience in data privacy, compliance, or information security. 

  • Strong knowledge of GDPR, DPDPA, CCPA/CPRA, and other international privacy laws. 

  • Strong expertise in technical privacy controls, including encryption, pseudonymization, access management, and related security mechanisms. 

  • Experience in conducting privacy assessments, gap analyses, and audits. 

  • Familiarity with data governance, risk management, and IT security practices. 

  • Excellent communication and stakeholder management skills. 

  • Certifications such as CIPP/E, CIPM, CIPT, or equivalent are a plus. 

Years of experience required:

4 To 6

Education qualification:

  • Minimum Qualification: BE/ BTech/ CA (Intermediate) 

  • Postgraduates in any stream would be preferred (not mandatory) 

  • Prior Big 4 experience, consulting company, internal audit department would be an added advantage 

  • Experience in IT Risk Assurance for varied industry segments preferred 

  • Excellent communication skills - both written and oral 

Education (if blank, degree and/or field of study not specified)

Degrees/Field of Study required: Bachelor of Engineering, MBA (Master of Business Administration)

Degrees/Field of Study preferred:

Certifications (if blank, certifications not specified)

Required Skills

Data Privacy

Optional Skills

Accepting Feedback, Accepting Feedback, Active Listening, Business Decisions, Business Performance Management, C-Level Presentations, Communication, Compliance Frameworks, Compliance Policies, Compliance Program Implementation, Compliance Review, Controls Testing, Corporate Governance, Emotional Regulation, Empathy, External Audit, Finance Target Operating Model, Finance Transformation, Financial Reporting, Fraud Detection, Fraud Prevention, Group Facilitation, Inclusion, Intellectual Curiosity, Internal Audit {+ 12 more}

Desired Languages (If blank, desired languages not specified)

Travel Requirements

Not Specified

Available for Work Visa Sponsorship?

No

Government Clearance Required?

No

Job Posting End Date

June 17, 2026

Job Details

Experience

Mid · 2–6 yrs

Preferred Certs

CIPM
CIPP
CIPT
CISA
CISM
Apply