Line of Service

Advisory

Industry/Sector

Specialism

Cybersecurity & Privacy

Management Level

Senior Associate

Job Description & Summary

At PwC, our people in risk and compliance focus on maintaining regulatory compliance and managing risks for clients, providing advice, and solutions. They help organisations navigate complex regulatory landscapes and enhance their internal controls to mitigate risks effectively.

As a risk management generalist at PwC, you will provide advisory and practical support to teams across a wide range of specialist risk and compliance areas.

Focused on relationships, you are building meaningful client connections, and learning how to manage and inspire others. Navigating increasingly complex situations, you are growing your personal brand, deepening technical expertise and awareness of your strengths. You are expected to anticipate the needs of your teams and clients, and to deliver quality. Embracing increased ambiguity, you are comfortable when the path forward isn’t clear, you ask questions, and you use these moments as opportunities to grow.

Examples of the skills, knowledge, and experiences you need to lead and deliver value at this level include but are not limited to:

Respond effectively to the diverse perspectives, needs, and feelings of others.
Use a broad range of tools, methodologies and techniques to generate new ideas and solve problems.
Use critical thinking to break down complex concepts.
Understand the broader objectives of your project or role and how your work fits into the overall strategy.
Develop a deeper understanding of the business context and how it is changing.
Use reflection to develop self awareness, enhance strengths and address development areas.
Interpret data to inform insights and recommendations.
Uphold and reinforce professional and technical standards (e.g. refer to specific PwC tax and audit guidance), the Firm's code of conduct, and independence requirements.

Key Responsibilities

Conduct risk assessments and audits for operational technology systems to identify security weaknesses and potential threats.

Identify and assess security risks and vulnerabilities in OT systems.

Design and implement security controls and measures to protect OT systems from cyber threats, including intrusion detection systems, firewalls, access controls, and network segmentation.

Develop OT security architecture and network segmentation designs.

Collaborate with clients' cross-functional teams, including OT engineers, IT professionals, and management, to ensure cybersecurity considerations are integrated into the design, deployment, and maintenance of OT systems.

Stay updated on emerging threats, vulnerabilities, and industry best practices related to OT cybersecurity.

Provide technical expertise and guidance regarding OT security standards, policies, and procedures.

Prepare and conduct security training and awareness programs, including OT-specific training for clients and internal teams.

Conduct compliance assessments and prepare for OT certifications such as IEC 62443.

Draft assessment reports including Executive Summary, observations/recommendations/peer comparisons, benchmark, etc.

Contribute to practice enablement and business development activities (development of SOW’s, RFPs in alignment to client’s requirement, etc.)

Drive initiatives to develop innovation quotient (publishing whitepapers, help develop business case for an innovative technical idea to seek investments, point of view, etc.)

Position Requirements

OT (Operational Cybersecurity) experience, possibly in the industry or at another firm, with a strong understanding of OT systems and networks such as PLCs, DCSs, and other systems.

Solid understanding of industrial control systems (ICS), supervisory control and data acquisition (SCADA) systems, and other OT technologies.

Knowledge of OT-specific protocols and standards such as Modbus, DNP3, IEC 61850, and OPC.

Good understanding of OT cybersecurity frameworks such as NIST 800-82 and ISA 62443 preferred.

Knowledge of network security/hardening, whitelisting, and cybersecurity best practices.

Familiarity with network segmentation techniques and security architecture for OT systems.

Experience in industrial communication network and system security IEC 62443 standards.

Knowledge of NIST CSF.

Good knowledge of cybersecurity principles, theories, and techniques.

Demonstrate application of business acumen while leveraging technologies.

Desired Knowledge

Experience with OT monitoring tools or certifications preferred for products such as Claroty, Nozomi, Tenable, Armis, or other systems.

Relevant OT certifications such as GICSP, IAS 62443, or similar are preferred.

In-depth knowledge and understanding of OT security regulations and requirements.

OT security assessments, risk assessments, and security risk analysis.

Excellent leadership, teamwork, and collaboration skills.

Knowledge of emerging OT security threats and vulnerabilities, and the ability to quickly adapt to new technologies and solutions.

Experience with OT security tools and labs for development and processing.

Years of experience

Minimum of 3-8 years of experience in an Operational Technology (OT) environment.

Professional and Educational Background

BE / B Tech / MCA / MS / MBA (Field of Study: Computer and Information Science, Information Cybersecurity, Information Technology, Management Information Systems).

Additional Information

Travel Requirements: Not Applicable

Line of Service: Advisory

Industry: Consulting

Location: Bangalore, Hyderabad, Mumbai, Kolkata

Education (if blank, degree and/or field of study not specified)

Degrees/Field of Study required:Degrees/Field of Study preferred:

Certifications (if blank, certifications not specified)

Required Skills

Optional Skills

Accepting Feedback, Accepting Feedback, Active Listening, Analytical Thinking, Anti-Money Laundering (AML), Coaching and Training, Communication, Compliance Advisement, Compliance Oversight, Compliance Program Implementation, Compliance Risk Assessment, Confidential Information Handling, Contract Review, Contractual Risk Mitigation, Contractual Risk Monitoring, Contract Writing, Creativity, Crisis Management, Data Loss Prevention (DLP), Data Security, Discretion and Business Ethics, Embracing Change, Emotional Regulation, Empathy, Financial Risk Management {+ 32 more}

Desired Languages (If blank, desired languages not specified)

Travel Requirements

Not Specified

Available for Work Visa Sponsorship?

Government Clearance Required?

Job Posting End Date

Company

For job seekers

For companies

Cyber Security jobs

SRC_Operational Technology_Senior Associate

SRC_Operational Technology_Senior Associate

SRC_Operational Technology_Senior Associate

Location

Workplace

Type

Posted

Website

Similar Jobs

SRC_Operational Technology_Senior Associate