At PwC, our people in cybersecurity focus on protecting organisations from cyber threats through advanced technologies and strategies. They work to identify vulnerabilities, develop secure systems, and provide proactive solutions to safeguard sensitive data. In cybersecurity incident management at PwC, you will focus on effectively responding to, and mitigating, cyber threats, maintaining the security of client systems and data. You will be responsible for identifying, analysing, and resolving security incidents to minimise potential damage and protect against future attacks.

As a Senior Associate, you’ll work as part of a team of problem solvers, helping to solve complex business issues from strategy to execution. Responsibilities include but are not limited to:

Roles & Responsibilities:

• Continuously monitor security alerts to identify critical system or data impacts and provide remediation guidance to clients
• Respond to escalated security alerts receiving from Tier1 analysts, conduct investigations and client notification
• Responsible for investigating alerts/incidents, analysing attack methods, researching new defense techniques and tools, and documenting procedures
• Perform thorough investigations by integrating data from diverse sources to gain a complete understanding of security incidents.
• Perform in-depth analysis of suspicious files or activities to determine the nature of malware, its capabilities, and potential impact.
• Serve as a technical point of escalation and provide mentoring for L1 security analysts
• Ensure incident identification, assessment, communication, and escalation to the client
• Ensure compliance to SLA, process adherence and process improvements to achieve operational objectives
• Update and maintain Standard Operating Procedure (SOP) document, playbooks and other documentations
• Prepare reports, summaries, and other forms of communication that may be both internal and client facing
• Participate in an on-call rotation to handle escalations outside standard business hours.
• Revise and develop processes to strengthen the current Security Operations Framework, and recommend updates
• Stay informed about industry trends and security best practices.
• Collaborate with stakeholders to maintain positive working relationships and ensure cohesive operations

Experience & Skills:

• Relevant experience in Information Technology and Information Security
• Proficient in Incident Response and Management
• In-depth knowledge of security concepts such as cyber-attacks and techniques, threat vectors, risk management, incident management, etc.
• Experience in MSSP environment
• CISSP and GIAC certifications preferred
• Knowledge of various security tools (e.g. SIEM, EDR, etc.) as well as operating system flavors including but not limited to Windows, Linux, Unix
• Knowledge of applications, databases, middleware to address security threats
• Proficient in preparation of reports, dashboards, and documentation
• Excellent communication and initiative skills
• Experience in performing vendor management
• Ability to handle high pressure situations with key stakeholders
• Good analytical skills, problem solving and interpersonal skill
• Fluent in French and English would be an asset
• A demonstrated commitment to valuing differences and working alongside diverse people and perspective

Qualifications:

• A bachelor's degree is a relevant area of study with a preference for Computer Science or Computer Engineering
• Industry certifications (CISSP/GIAC suite/EC-Council) are an asset
• Minimum of 4 years in Information Technology
• Minimum of 3 years in Information Security

We’re committed to providing accommodation throughout the application, interview, and employment process. If you require accommodation to be at your best, please let us know during the application process.

The use of artificial intelligence (AI) in recruiting is just getting started, so we know you have questions about how and why we use it. At certain points during our recruiting process, we rely on AI to improve your experience. This could be during resume review or curating personalized job recommendations, asking you clarifying questions via a chatbot or during our interview scheduling to improve your experience. Our use of AI helps ensure we combat bias by evaluating candidates equally and fairly, without seeing identity information, such as your name, or gender for example). AI also helps us better predict successful hires by reviewing all applicants for a role and the relationship between your skills, experience and likely success at PwC Canada. While AI supports parts of our recruitment process, final hiring decisions always involve human review. For more information about our use and protection of your data, please refer to our Privacy Policy (https://www.pwc.com/ca/en/privacy-policy.html). 638485WD