PwC Cybersecurity Sr Associate in Tampa, Florida
Line of Service: Advisory
Specialty/Competency: Cybersecurity & Privacy
Industry/Sector: Not Applicable
Time Type: Full time
Government Clearance Required: No
Available for Work Sponsorship: Yes
Travel Requirements: Up to 20%
A career in our Cybersecurity, Privacy, & Forensics will provide you the opportunity to solve our clients most critical business and data protection related challenges. You will be part of a growing team driving strategic programs, data analytics, innovation, deals, cyber resilency, response, and technical implementation activities. You will have access to not only the top Cybersecurity, Privacy, and Forensics professionals at PwC, but at our clients and industry analysts across the globe. Our Advisory Acceleration Center is the natural extension of PwC’s leading class global delivery capabilities. We provide premium, cost effective, high quality services that support process quality and delivery capability in support for client engagements.
To really stand out and make us fit for the future in a constantly changing world, each and every one of us at PwC needs to be an authentic and inclusive leader, at all grades/levels and in all lines of service. To help us achieve this we have the PwC Professional; our global leadership development framework. It gives us a single set of expectations across our lines, geographies and career paths, and provides transparency on the skills we need as individuals to be successful and progress in our careers, now and in the future.
As a Senior Associate, you'll work as part of a team of problem solvers, helping to solve complex business issues from strategy to execution. PwC Professional skills and responsibilities for this management level include but are not limited to:
Use feedback and reflection to develop self awareness, personal strengths and address development areas.
Delegate to others to provide stretch opportunities and coach to help deliver results.
Develop new ideas and propose innovative solutions to problems.
Use a broad range of tools and techniques to extract insights from from current trends in business area.
Review your work and that of others for quality, accuracy and relevance.
Share relevant thought leadership.
Use straightforward communication, in a structured way, when influencing others.
Able to read situations and modify behavior to build quality, diverse relationships.
Uphold the firm's code of ethics and business conduct.
Job Requirements and Preferences :
Basic Qualifications :
Minimum Degree Required :
Minimum Years of Experience :
Preferred Qualifications :
Preferred Fields of Study :
Information CyberSecurity, Information Technology, Management Information Systems, Computer and Information Science
Certification(s) Preferred :
GSEC, SEC+, Network+, Certified Incident Handler (GCIH), Certified Intrusion Analyst (GIAC)
Preferred Knowledge/Skills :
Demonstrates thorough knowledge and/or proven record of success in the following:
Understanding Networking and applying Network Principles (including the OSI Model, TCP/IP, DNS, HTTP, SMTP), System Administration, and Security Architecture;
Applying Incident Response Frameworks and Handling Procedures;
Applying vulnerability management and penetration testing of systems, applications, and networks; and,
Understanding information security, compliance, assurance, and/or other security industry leading practices and principles.
Demonstrates thorough level of ability and/or proven record of success with:
Working in a shift environment in the assigned shifts, with holidays aligned with client schedules;
Leading daily huddles, shift handovers, preparing reports or providing inputs for reports as assigned;
Acting as a shift leader, monitoring alert workload, distributing alerts to analysts, and monitoring SLA adherence;
Acting as the escalation point for Level 1 analysts based on the defined processes;
Performing investigations into SIEM, DLP, Host (end point) security issues and determining if a security concern is present, and escalating to leadership as appropriate;
Monitoring and analyzing alerts from a wide array of security devices and systems (SIEM’s, Firewalls, IDS/IPS, Systems, Networks, Anti-virus, etc.);
Applying the security incident response process: identification, containment and remediation on a 24x7 basis;
Applying scripting language skills in Python or PowerShell;
Preparing materials (reports, presentations, spreadsheets, etc.) to help enable informed decision making;
Acquiring and utilizing knowledge on new technologies and solutions, emerging threats and vulnerabilities;
Running and analyzing a vulnerability scan as per the client schedules;
Working with SIEMs, proxy tools, DLP, windows, UNIX and application logs;
Analyzing logs from Network security devices, hands on experience with SIEM technology, network security devices, identity and access management principles, DLP incident evidence gathering utilizing and applying into projects analytic skills for problem analysis and resolution;
Communicating information regarding the security threat landscape to leadership and clients;
Identifying security threats, exploits, attack vectors and leading security investigations; and,
Monitoring the local threat ops channels/SIEM/AV/DLP Policy violation consoles and notifying the client/stakeholders of any suspicious/malicious activity within agreed SLA timelines.
All qualified applicants will receive consideration for employment at PwC without regard to race; creed; color; religion; national origin; sex; age; disability; sexual orientation; gender identity or expression; genetic predisposition or carrier status; veteran, marital, or citizenship status; or any other status protected by law. PwC is proud to be an affirmative action and equal opportunity employer.