PwC Cybersecurity Active Directory Manager in Philadelphia, Pennsylvania

PwC/LOS Overview

PwC is a network of firms committed to delivering quality in assurance, tax and advisory services.

We help resolve complex issues for our clients and identify opportunities. Learn more about us at www.pwc.com/us.

At PwC, we develop leaders at all levels. The distinctive leadership framework we call the PwC Professional (http://pwc.to/pwcpro) provides our people with a road map to grow their skills and build their careers. Our approach to ongoing development shapes employees into leaders, no matter the role or job title.

Are you ready to build a career in a rapidly changing world? Developing as a PwC Professional means that you will be ready

  • to create and capture opportunities to advance your career and fulfill your potential. To learn more, visit us at www.pwc.com/careers.

PwC Advisory helps our clients with their most challenging imperatives from strategy through execution. We combine the breadth of knowledge of over 48,000 global professionals with deep industry knowledge to deliver custom solutions for our clients. We work with the world's largest and most complex companies and understand the unique business issues and opportunities our clients face.

Job Description

As we aim to rapidly grow our Cybersecurity and Privacy practice, we are looking for consultants who are passionate about how strategy and technology can improve the role of cybersecurity, privacy and data protection in our digital world.

We are looking for consultants with extensive consulting, technological and industry experience who will help our clients solve their complex business issues from strategy through execution. A Cybersecurity and Privacy consulting career will provide the opportunity to grow and contribute to our clients' business issues every day, applying a collection of information and Cyber security capabilities, including security and privacy strategy and governance, IT risk, security testing, technology implementation/operations, and cybercrime and breach response.

Our Implementation and Operations services help clients smoothly and efficiently integrate new technology systems into the business, ensure that technology is properly synthesized and managed, and find and resolve unknown issues. We help clients architect, implement, and optimize security technologies to manage visibility, access, identification, and control over sensitive data and systems. We also provide differentiated, high-value managed services by supporting key security technologies through traditional operations activities with a continuous improvement mind-set.

Position/Program Requirements

Minimum Year(s) of Experience: 6

Minimum Degree Required: Bachelor's degree

Certification(s) Preferred: CISSP, CISM, CISA, MCSA or MCSE.

Knowledge Preferred:

Demonstrates extensive knowledge and/or a proven record of success in the following areas:

  • Understanding Active Directory, Azure Active Directory, ADFS, Azure, and the underlying components that support these technologies, such as DNS, Kerberos, LDAP, SAML/OAuth, PowerShell, WMI, and similar network and management protocols;

  • Having an extensive grasp of the threats posed to on-premises and cloud Active Directory environments, such as lateral movement, credential theft, and abuse of privileged access;

  • Understanding risks and processes involved in consolidating Active Directory environments;

  • Implementing security architecture and strategies to deliver consulting security solutions to clients;

  • Developing and maintaining the overall Infosec strategy, mechanisms for policy enforcement, definition of ownership, monitoring mechanisms, and process and controls;

  • Designing and maintaining security architecture both at the enterprise and solution levels; and,

  • Assisting on client-facing business development, engagement delivery, practice development and thought leadership as it relates to the development, assessment and implementation of Information Security solutions.

Demonstrates extensive abilities and/or a proven record of success managing project work streams in a system security, controls or information security management environment, specifically one or more of the following information security domains:

  • Security Architecture and Strategy (Integrated Risk Management);

  • Identity and Access Management;

  • Large Complex Program Execution/Implementation;

  • Security Function Design and Governance;

  • Incident Management; and,

  • Security Infrastructure.

Skills Preferred:

Demonstrates extensive abilities and/or a proven record of success in the following areas:

  • Implementing and operating Active Directory, Azure Active Directory, Azure, and related Microsoft technologies in large enterprise settings;

  • Understanding of security threats facing Active Directory environments, including Pass-the-Hash, Pass-the-Ticket, and similar privileged account abuse scenarios'

  • Implementing and operating security controls to protect Active Directory, such as Privileged Account Management, Red Forest/Enhanced Security Administrative Environments, and SIEM/monitoring;

  • Building an InfoSec Management System and/or program, managing internal controls, risk assessments, business processes and internal IT control testing or operational auditing;

  • Building solid relationships with clients;

  • Developing an awareness of Firm services;

  • Communicating with the client in an organized and knowledgeable manner;

  • Delivering clear requests for information;

  • Demonstrating flexibility in prioritizing and completing tasks; and,

  • Communicating potential conflicts to a supervisor.

  • Leveraging creative thinking and problem solving skills, individual initiative, and utilizing MS Office and Lotus Notes;

  • Communicating in an organized and knowledgeable manner in written and verbal formats, including delivering clear requests for information and communicating potential conflicts, assisting business development teams responsible for writing and presenting proposals to prospective clients, and fostering and maintaining lasting relationships with senior executives; and,

  • Identifying and addressing client needs while displaying the ability to contribute to the development of a business vision and manage implementation efforts with complex project management capabilities.

All qualified applicants will receive consideration for employment at PwC without regard to race; creed; color; religion; national origin; sex; age; disability; sexual orientation; gender identity or expression; genetic predisposition or carrier status; veteran, marital, or citizenship status; or any other status protected by law.