A career in our cybersecurity, privacy and forensics will provide you the opportunity to solve our clients most critical business and data protection related challengesYou will be part of a growing team driving strategic programs, data analytics, innovation, deals, cyber resilency, response, and technical implementation activitiesYou will have access to not only the top cybersecurity, privacy and forensics professionals at pwc, but at our clients and industry analysts across the globeOur corporate and threat intelligence team focuses on assisting our clients with reputational due diligence, social media monitoring, intelligence consulting and investigative mattersOur team includes staff with dozens of language skills, strong writing and investigative skills and diverse backgroundsWe use these skills to help out clients make informed business decisions in our fast paced business environment.
To really stand out and make us fit for the future in a constantly changing world, each and every one of us at pwc needs to be an authentic and inclusive leader, at all grades/levels and in all lines of serviceTo help us achieve this we have the pwc professional; our global leadership development frameworkIt gives us a single set of expectations across our lines, geographies and career paths, and provides transparency on the skills we need as individuals to be successful and progress in our careers, now and in the future.
As a senior associate, you`ll work as part of a team of problem solvers, helping to solve complex business issues from strategy to executionPwc professional skills and responsibilities for this management level include but are not limited to:
Use feedback and reflection to develop self awareness, personal strengths and address development areas.
Delegate to others to provide stretch opportunities and coach to help deliver results.
Develop new ideas and propose innovative solutions to problems.
Use a broad range of tools and techniques to extract insights from from current trends in business area.
Review your work and that of others for quality, accuracy and relevance.
Share relevant thought leadership.
Use straightforward communication, in a structured way, when influencing others.
Able to read situations and modify behavior to build quality, diverse relationships.
Uphold the firm`s code of ethics and business conduct.
Job requirements and preferences:
Minimum degree required:
Minimum years of experience:
Demonstrates thorough abilities and/or a proven record of success as a team leader:
Developing collection and tracking techniques to identify new threat actors and campaigns, monitor the activity of known actors, and methodically attribute new activity from both open and closed data sources using a variety of bespoke, commercial and open source tools and systems;
Participating in analysis surges to renew and further develop knowledge on new and existing threat actors;
Applying a robust analytical methodology to support conclusions in relation to specific threat actors, and an ability to rationalize and articulate your conclusions;
Understanding of network protocols, attack lifecycles and actor tradecraft;
Supporting the generation of analytic content, detection concepts, and network and host based detection methods;
Performing static and dynamic reverse engineering in order to identify and classify new samples, understand c2 protocols and functional capability;
Researching and developing new tools and scripts to continually update or improve our threat intelligence automation processes, collection methods and analytical capability;
Supporting incident response and managed cyber defense teams with ad-hoc analysis requests, and organizing the collection, processing and analysis of artifacts and indicators identified from client incidents;
Supporting business as usual operations such as monitoring open source for new information and responding to ad-hoc client rfis; and,
Delivering reports and presentations based on research into emerging threats, sharing your findings with clients, or with the public or security community via blogs, conference presentations etc.
Demonstrates thorough abilities and/or a proven record of success in:
Understanding of common analysis techniques and frameworks used in cti, such as threat modeling techniques like the diamond model, kill chain, and f3ead;
Understanding and knowledge of open source and commercial platforms, tools and frameworks used within threat intelligence teams, such as threat intelligence platforms, malware sandboxes and reverse engineering tools, such as ghidra or ida pro;
Understanding of and experience with maltego, including custom transforms, and its use in mapping out intrusion sets;
Having an understanding and baseline knowledge of threat actors, attribution concepts, and high profile cyber incidents;
Providing experience in python;
Exploiting common intelligence datasets, including commercial repositories of information relating to malware and internet data (domain, ip, netflow, certificate tracking etc.), and closed sources including incident response and other bespoke collection; and,
Reading and communication in the some of the following languages skills - in particular mandarin, cantonese, russian, or persian/farsi.
At pwc, our work model includes three ways of working: virtual, in-person, and flex (a hybrid of in-person and virtual)Visit the following link to learn more: https://pwc.to/ways-we-work.
Pwc does not intend to hire experienced or entry level job seekers who will need, now or in the future, pwc sponsorship through the h-1b lottery, except as set forth within the following policy: https://pwc.to/h-1b-lottery-policy.
All qualified applicants will receive consideration for employment at pwc without regard to race; creed; color; religion; national origin; sex; age; disability; sexual orientation; gender identity or expression; genetic predisposition or carrier status; veteran, marital, or citizenship status; or any other status protected by lawPwc is proud to be an affirmative action and equal opportunity employer.
For positions based in san francisco, consideration of qualified candidates with arrest and conviction records will be in a manner consistent with the san francisco fair chance ordinance.
For positions in colorado, visit the following link for information related to colorado`s equal pay for equal work act: https://pwc.to/coloradoadvisoryseniorassociate.
Posted 30+ days ago