Company Name: | PwC CI LPP |
Contract Type: | Permanent |
Role Type: | Full-Time |
Employment Type: | Entitled, Licensed, Entitled for work, Registered |
Salary: | Competitive |
Contact: | |
Closing Date: | Friday 3rd July 2026 |
Post Title: Technology Governance Specialist (QMSE, QMR, Network Standards, ISP, Internal Audit)
Line of Service: Business Enablement, Technology & Transformation
Grade: Manager/Senior Manager
Location: Jersey or Guernsey
Contracted Hours per Week: 37.5 hours
PwC Channel Islands Overview
At PwC CI, we help you build, accelerate, and sustain momentum in a world that never stops moving. With our tech-forward and people-empowered network, we provide expert assurance, tax and advisory services to turn challenges into opportunities. Leveraging deep expertise and advanced capabilities, we ensure you’re ready for any future, helping you act boldly and achieve real results.
Job Summary:
An exciting opportunity to join our dynamic team at PwC Channel Islands and take on the role of
Technology Governance Specialist within Business Enablement’s Technology & Transformation
team. Reporting to the CIO, you will lead and coordinate technology risk and quality
management activities across the function. You will ensure our System of Quality Management
(SoQM) is documented and operated using the Quality Management for Service Excellence
(QMSE) framework, fulfil Quality Management Review (QMR) responsibilities in relation to
Objective 11, drive compliance with Network Standards and our Information Security Policy
(ISP) aligned to ISO 27001, and coordinate internal audit readiness and remediation. The ideal
candidate brings strong technology risk, quality management and stakeholder engagement
experience, with the ability to turn policy and standards into practical, proportionate controls.
Responsibilities:
Responsibilities include leading and coordinating the following areas:
QMSE and SoQM oversight
• Maintain and continuously improve SoQM documentation aligned to the QMSE framework.
• Ensure all Business Application Owners carry out application control reviews annually.
• Coordinate control design, operation, monitoring and remediation within Technology & Transformation.
• Maintain clear ownership, evidence and status for controls and actions.
QMR responsibilities and Objective 11
• Plan, schedule and run the periodic QMR for Technology & Transformation.
• Consider, test and evaluate the design and operating effectiveness of the SoQM to assess whether the overall quality objective and underlying quality management
• objectives have been achieved in relation to Objective 11.
• Produce QMR materials (scope, approach, testing, results, findings, actions) and present outcomes to the CIO and governance forums.
• Track remediation actions to closure and report progress.
Network Standards compliance
• Interpret applicable Network Standards for Technology & Transformation and perform gap assessments.
• Document compliance evidence, manage remediation plans and coordinate exceptions where needed.
• Provide periodic compliance reporting and maintain a standards register.
Information Security Policy (ISP) and ISO 27001 alignment
• Ensure processes, projects and services align with the firm’s Information Security Policy
• (ISP) and ISO 27001 aligned practices.
• Coordinate risk assessments, oversee the operation of controls and their evidence, and lead awareness activities within scope.
• Partner with technical owners to embed “security by design” in change initiatives.
• Own and maintain the Channel Islands application register (systems of record), ensuring owners, criticality, data classification, hosting location, integrations and control mappings are current; coordinate quarterly updates and an annual owner attestation.
Internal audit liaison
• Act as primary contact for internal audit engagements covering Technology & Transformation.
• Coordinate readiness, evidence collection, stakeholder interviews and timely responses.
• Agree action plans, address root causes and track actions through to closure.
• Risk management in change and operations
• Provide risk and quality input to technology change (assessments, control requirements, sign offs).
• Maintain registers for risks, issues and actions related to QMSE/QMR, Network Standards and ISP.
• Escalate material risks or non conformities and propose pragmatic remediation.
• Own and maintain the risk and response schedule in ServiceNow, ensuring risks, responses/mitigations, owners, due dates and status are current; drive on time completion and escalate overdue items.
Stakeholder management and reporting
• Build strong relationships across Technology & Transformation and Business Enablement leadership.
• Prepare concise reports for the CIO and governance forums on QMR outcomes, standards/ISP status and audit actions.
• Promote awareness and training on responsibilities tied to QMSE, Objective 11, Network Standards and ISP.
• Knowledge management and continuous improvement
• Capture lessons learned from reviews and audits to improve controls and ways of working.
• Share good practice across the team to strengthen compliance and reduce recurring issues.
Direct Reports:
This role reports to:
• CIO
There are no direct reports into this role.
Qualifications & Certifications:
• Bachelor’s degree in a relevant field (e.g., business, technology) or equivalent practical experience.
• Relevant professional qualifications are welcome; experience with ISO 27001 aligned practices is expected.
Skills & Experience Required:
Essential skills:
Proven experience in technology risk, quality management or internal audit in a technology context.
Working knowledge of ISO 27001 aligned practices and enterprise Information Security Policies (ISP).
Hands on experience planning and executing reviews/testing, documenting evidence and tracking remediation to closure.
Ability to translate standards and policy requirements into practical, proportionate controls.
Excellent communication and stakeholder engagement skills, with clear written reporting.
Strong analytical, organisational and problem-solving skills.
Experience in RAS (Risk Assurance Specialist).
Desirable skills:
Experience operating within a network standards environment.
Familiarity with QMSE/QMR and Systems of Quality Management.
Experience coordinating internal audits and responding to findings.
Ability to simplify complex risk/quality topics for nonspecialists.
Travel Requirements:
Ad hoc travel to Guernsey or the UK when required.
The skills we look for in our people:
All our people need to demonstrate the skills and behaviours that support us in delivering our
business strategy. This is important to the work we do for our business, and our clients. These
skills and behaviours make up our global leadership framework, The Evolved PwC Professional.
The Evolved PwC Professional focuses on two core behaviours: Trusted Leadership and
Distinctive outcomes. Trusted Leadership is underpinned by core behaviours that Inspire,
Empower and Evolve, and Distinctive outcomes is underpinned by behaviours that Champion,
Build and Deliver.
Diversity:
We work in a changing world which offers great opportunities for people with diverse
backgrounds and experiences. We seek to attract and employ the best people from the widest
talent pool as well as those who reflect the diverse nature of our society. We aim to encourage a
culture where people can be themselves and be valued for their unique strengths. Creating
value through diversity is what makes us strong as a business. https://www.pwc.co.uk/diversity