【 公司简介 】

Chengdu Service Delivery Centre (SDC) was operational in July 2012, it serves as an internal shared service centre and provides business support to Assurance, Tax, Advisory, Internal Firm Service for PwC China and Hong Kong region.

普华永道商务服务（成都）有限公司（以下简称服务中心）于2012年7月1日在成都正式投入运营, 该服务中心为普华永道中国以及香港提供审计，税务，咨询及公司内部服务支持。

We are looking for the right talents to join and grow with us, we’ll offer you：

我们为此寻找合适的人才加入我们，与我们一同成长。我们为你提供：

• Competitive salary, and 13 months payment

• Meal and transportation allowance

• Social insurance, housing fund and additional commercial insurance

• Annual leave, paid sick leave and additional firm wide holiday

• Diversified staff activities

• Training and development opportunities

• 具有竞争力的薪资和年终13 薪

• 餐补及交通补贴

• 五险一金以及额外的商业保险

• 带薪年假、病假及额外的公司福利假

• 丰富的员工活动

• 培训和发展的机会

【 职位名称 】

Specialist - Risk Assurance

数据分析专员-风控团队

【 工作描述 & 职责 】

The candidate will take but not limited to the following work scope:

候选人的工作会涉及但不仅限于如下范围：

1. Conduct Computer Assisted Auditing Techniques (CAATs): perform data analysis for audit team to complete audit procedure with relevant tools (Excel/Access/SQL/ACL ...).

   参与计算机辅助审计相关服务：利用Excel/Access/SQL/ACL 等工具对企业财务账目进行数据分析来辅助审计项目组完成审计程序

2. To assist the engagement team in completing ITGC related audit procedures mainly including but not limited to the testing of IT control environment, program development, program change,access to procedure and data, and computer operation, then completing the working paper

协助项目组完成ITGC相关审计程序，主要包括但不限于对企业IT系统中IT控制环境、程序开发、程序更改、程序与数据的访问、计算机操作等方面进行相关的风险审计，并完成审计底稿的撰写

1. To Assist clients with planning and executing different aspects of the internal control process which may include financial, operational, and compliance related control review/evaluations

协助客户规划和执行内部控制过程的不同方面，完成相关流程的内控审阅、评价或企业合规审阅

1. Involved in other assurance or OAS services

参与其他审计或咨询相关服务

1. Execute other activities assigned by direct supervisor

完成主管分配的其他工作

【 岗位要求】

1. University degree (2017 fresh graduate is welcomed) , preferred major including but not limited to information systems, computer science, software engineering, accounting, financing, statistics, applied mathematics etc.

   本科及以上学历，专业包括但不限于信息管理、软件工程、财务、金融、统计学、应用数学等。

2. Good logical thinking

   具备良好的逻辑思维能力

3. Willing to acquire cross-functional knowledge about accounting\ auditing\ data analysisrelated knowledge;

   愿意跨专业学习财务、审计、内控、数据分析等领域知识

4. Good communication skills in written English; Effective interpersonal and influencing skills

   良好的英语书写能力，高效的沟通能力

5. Efficient analytical and problem solving skills;

   有一定的分析与解决问题的能力

6. Flexible, self-starter possessing intellectual curiosity;

   适应灵活的工作方式并且能自我激励

7. Able to work independently with minimum supervision and manage multi tasks at the same period

   能独立承担相应的工作, 具备同时处理多任务的能力

8. Can adapt to travel for short term or long term

   能够适应出差

     

     

   【 职位名称 】

   IT Security-Risk Assurance

   信息安全专员-风控团队

   【 工作描述 & 职责 】

   We are currently looking for individuals with information security technic, information technology risk background.

   我们正在寻找具备如下信息安全技能的候选人。

9. Providing technical assessment on client IT infrastructure and application systems, including vulnerability scanning, penetration testing(Web or Mobile), etc.；

负责为客户的IT基础设施和应用系统（Web类或移动应用类）完成漏洞扫描、渗透测试服务。

1. Analysing client server systems and infrastructure and application systems (including operating system, database, Web server, firewall, IPS/IDS and WAF etc.) for information security purpose;

完成IT基础设施、应用系统等技术评估，如：操作系统、数据库、Web服务器、防火墙、IPS/IDS、 WAF。

1. Could using professional technical and management methods to provide customized information technology security and IT risk consulting services.

   为客户提供IT风险咨询服务。

【 岗位要求】

1. University degree majoring in information security, computer science, software engineering, network engineering, and other related disciplines;

   本职位要求候选人为本科及以上学历，信息安全、计算机科学，软件工程，网络工程等相关专业；

2. Excellent fresh graduate are welcomed;

   欢迎优秀应届毕业生应聘；

3. Concept of web page development and database maintenance;

   熟悉网页开发与数据库管理；

4. Good self-learning skills and communication skills;

   良好的学习能力与沟通能力；

5. Excellent time management skills, team working and self-driving;

   良好的时间管理能力，具备团队合作意识与自我驱动；

6. Flexible, self-starter possessing intellectual curiosity;

   工作灵活主动，具有求知欲；

7. Excellent experience in Web penetration testing or mobile application penetration testing (iOS/Android) is a plus;

   具备Web系统渗透测试，或移动应用（iOS/Android）渗透测试经验的优先考虑；

8. Hands on experience in use of popular security assessment tools, such as Nmap, sqlmap, Acunetix, Burp Suite, is a plus;

   熟悉各类工具使用的优先考虑，如Nmap，sqlmap， Acunetix，Burp Suite等;

9. Familiar with OWASP TOP 10 is a plus;

   熟悉OWASP TOP 10将会是加分项；

10. Practical experience on penetration test such as submitting vulnerabilities to Security Response Centre is a plus.

    曾在各大SRC或漏洞平台提交过漏洞的将被优先考虑；

11. Communication skills in both oral and written English and Chinese (Candidate with excellent security technic and experience can be considered if he/she is not fluent in English);

    优秀的英文和中文的口头与书面沟通能力（如候选人在信息安全技术领域的经验及技能较为出众，可降低英语方面的要求）。

简历投递：sdc.hr.cd@cn.pwc.com