Cybersecurity Threat & Vulnerability | Manager | Cyber Security | Technology Consulting

Line of Service
Advisory

Industry/Sector
Not Applicable

Specialism
Cybersecurity & Privacy

Management Level
Senior Associate

Job Description & Summary
To really stand out and make us fit for the future in a constantly changing world, each and every one of us at PwC needs to be a purpose-led and values-driven leader at every level. To help us achieve this we have the PwC Professional; our global leadership development framework. It gives us a single set of expectations across our lines, geographies and career paths, and provides transparency on the skills we need as individuals to be successful and progress in our careers, now and in the future.


As a Threat and Vulnerability Manager you'll work as part of a team of problem solvers, helping to solve complex business issues from strategy to execution.You will play a crucial role in identifying, assessing, and mitigating threats and vulnerabilities across our client’s organization.The PwC Evolved Professional skills and responsibilities for this management level include, but are not limited to:

• Conduct security assessments, red team exercises, web application  penetration testing, vulnerability assessment and secure configuration review to identify risks and recommend appropriate remediation measures. 
  
• Advising clients on relevant regulations, standards, and best practices (e.g., NIS2, ISO 27001, NIST).
  
• Help us grow the TVM team and service offerings.
  
• Support the TVM team in implementing advanced red team infrastructure
  
• Identify and evaluate the latest technologies, tools and methods.
  
• Keep apprised of the latest threats and new compliance relevant to the penetration testing. 
  
  
  

• Strong experience in offensive security.
  
• Proven leadership in managing diverse teams, with the ability to lead, mentor and develop talent.
  
• Experience in developing payloads and obfuscating tools to evade modern day EDRs.
  
• Significant experience in implementing red team infrastructure.
  
• Experience in conducting regular vulnerability scans, penetration tests, secure configuration. reviews of network devices, databases, windows and linux operating systems.
  
• Experience in conducting red team assessment using tools such as Cobalt strike, NightHawk and Mythic.
  
• Significant experience in web and mobile application penetration testing.
  
• Experience with security assessment tools such as Burp Suite, Tenable Nessus, Qualys, Rapid 7 etc, as well as the associated methodologies.
  
• Strong knowledge of attacker methodologies and tactics with experience in mitigating and addressing threats.
  
• Intermediate experience in cloud penetration testing and its secure configuration review. 
  
• Experience with developing ransomware simulation script is a plus
  
• Experience in designing and implementing security architecture is a plus.
  
• One or more technical security certifications is a plus: 
  
• Offensive Security (OSCP, CRTO, OSEP, OSED, OSWE, OSCE, CRTO II, CRTP, CRTE)
  
• 5+ years of full-time dedicated experience in threat and vulnerability management focused roles.
  
• Bachelor’s degree in Computer Science, Business information Systems, related field; or additional, relevant professional experience.
  
  

Required Skills

Optional Skills
Accepting Feedback, Accepting Feedback, Active Listening, Analytical Thinking, Cloud Security, Communication, Conducting Research, Creativity, Cyber Defense, Cyber Threat Intelligence, Embracing Change, Emotional Regulation, Empathy, Encryption, Inclusion, Information Security, Intellectual Curiosity, Intelligence Analysis, Intelligence Report, Intrusion Detection, Intrusion Detection System (IDS), IT Operations, Learning Agility, Malware Analysis, Malware Detection Tools {+ 16 more}

Desired Languages (If blank, desired languages not specified)

Travel Requirements
Up to 20%

Available for Work Visa Sponsorship?
Yes

Government Clearance Required?
No

Job Posting End Date