TotalCyber.io
Cyber Security jobs across the world
Copyright 2024 All Rights Reserved by YipCraft
We will contibute 1% of your purchase to remove CO2 from the atmosphere.
Line of Service
AdvisoryIndustry/Sector
FS X-SectorSpecialism
RiskManagement Level
Senior AssociateJob Description & Summary
A career within Cybersecurity and Privacy services, will provide you with the opportunity to help our clients implement an effective cybersecurity programme that protects against threats, propels transformation, and drives growth. As companies pivot toward a digital business model, exponentially more data is generated and shared among organisations, partners and customers. We play an integral role in helping our clients ensure they are protected by developing transformation strategies focused on security, efficiently integrate and manage new or existing technology systems to deliver continuous operational improvements and increase their cybersecurity investment, and detect, respond, and remediate threats.CP&F Threat Management Cyber Penetration Testing (CPT²) Senior Associate
A career in our Cybersecurity, Privacy, & Forensics will provide you the opportunity to solve our clients
most critical business and data protection related challenges. You will be part of a growing team driving
strategic programs, data analytics, innovation, deals, cyber resiliency, response, and technical
implementation activities. You will have access to not only the top Cybersecurity, Privacy, and Forensics
professionals at PwC, but at our clients and industry analysts across the globe.
The Cyber Penetration Testing (CPT²) team focuses on delivering threat actor simulation services, device
or application assessments, and penetration tests. You will help clients understand the tangible risks they
face from a variety of threat actors and what they target to include different postures, scenarios, or
targeted assets. Working as a member of CPT² also provides the opportunity to directly help clients
enhance or tune their preventative, and detective controls on a proactive basis.
Our team focuses on assessment and recommendation services that blend deep technical manual
tradecraft with targeted automation to simulate real threats to a client’s environments. As a part of this
center of excellence, you will drive change at PwC’s clients by providing risk outside of the theoretical
while contributing to the technical acumen of the practice and amplifying your own personal capabilities.
To really stand out and make us fit for the future in a constantly changing world, each and every one of us
at PwC needs to be a purpose-led and values-driven leader at every level. To help us achieve this we have
the PwC Professional; our global leadership development framework. It gives us a single set of
expectations across our lines, geographies and career paths, and provides transparency on the skills we
need as individuals to be successful and progress in our careers, now and in the future.
As a Senior Associate, you'll work as part of a team of problem solvers, helping to solve complex business
issues from strategy to execution. PwC Professional skills and responsibilities for this management level
include but are not limited to:
Use feedback and reflection to develop self awareness, personal strengths and address
development areas.
Delegate to others to provide stretch opportunities, coaching them to deliver results.
Demonstrate critical thinking and the ability to bring order to unstructured problems.
Use a broad range of tools and techniques to extract insights from current industry or sector
trends.
Review your work and that of others for quality, accuracy and relevance.
Know how and when to use tools available for a given situation and can explain the reasons for
this choice.
Seek and embrace opportunities which give exposure to different situations, environments and
perspectives.
Use straightforward communication, in a structured way, when influencing and connecting with
others.
Able to read situations and modify behavior to build quality relationships.
Uphold the firm's code of ethics and business conduct.
Basic Qualifications:
Minimum Degree Required:Bachelor Degree
Minimum Years of Experience:3-4 year(s)
Preferred Fields of Study: Computer and Information Science, Information Technology, Computer
Applications, Computer Engineering, Information CyberSecurity
Certification(s) Preferred:Offensive Security Certified Professional (OSCP), GIAC Penetration
Tester (GPEN), Certified as GIAC Web Application Penetration Tester (GWAPT).
Preferred Knowledge/Skills:
Demonstrates thorough knowledge and/or a proven record of success in the following areas:
Technical concepts such as application security, network segregation, access controls, IDS/IPS
devices, physical security, and information security risk management;
Security testing tools, such as BurpSuite, Mimikatz, Cobalt Strike, PowerSploit, Metasploit,
Nessus, HP Web Inspect, or other tools included within the Kali Linux distribution;
Networking protocols, TCP/IP stack, systems architecture, and operating systems;
Common programming and scripting languages, such as Python, PowerShell, Ruby, Perl, Bash,
JavaScript, or VBScript;
Well-known Cybersecurity frameworks and industry-leading practices such as OWASP, NIST
CSF, PCI DSS, and NY-DFS; and,
Traditional security operations, event monitoring, and Security Information and Event
Management (SIEM) tools.
Demonstrates thorough abilities and/or a proven record of success in the following areas:
Performing penetration testing activities within a client’s environment, emphasizing manual
stealthy testing techniques;
Executing stealthy penetration testing, advanced red team, or adversary simulation engagements
using commercially / freely available offensive security tools and utilities built into operating
systems;
Understanding Windows and Linux operating system setup, management, and power usage, e.g.,
cmd, bash, network troubleshooting, virtual machines; .
Identifying security critical vulnerabilities without utilizing a vulnerability scanning tool, i.e.,
knowledge of exploitable vulnerabilities and ability to execute stealthy penetration testing
engagements;
Compromising Active Directory environments and demonstrating business impact by identifying
and obtaining access to business critical assets/information;
Performing social engineering / phishing activities such as reconnaissance of targets, developing
phishing campaigns (e.g., emails and websites), web hosting administrator, developing malicious
phishing payloads, or pivoting through phished systems;
Participating actively in client discussions and meetings and communicating a broad range of
potential add-on services based on identified weaknesses;
Managing engagements with junior staff;
Preparing concise and accurate documents, leveraging and utilizing MS Office and Google Docs to
complete related project deliverables, as necessary;
Balancing project economics management with the occurrence of unanticipated issues.
Creating a positive environment by monitoring workloads of the team while meeting client
expectations and respecting the work-life quality of team members;
Proactively seeking guidance, clarification, and feedback; and,
Keeping leadership informed of progress and issues.
Mandatory skill sets-VAPT
Preferred skill sets-VAPT
Year of experience required-4-8 years
Qualifications- B.Tech
Education (if blank, degree and/or field of study not specified)
Degrees/Field of Study required:Degrees/Field of Study preferred:Certifications (if blank, certifications not specified)
Required Skills
Optional Skills
Desired Languages (If blank, desired languages not specified)
Travel Requirements
Available for Work Visa Sponsorship?
Government Clearance Required?
Job Posting End Date
Senior Associate
Location
Chennai - Menon Eternity
Workplace
Onsite
Type
Full-time