Job Description & Summary

Cybersecurity at PwC is above all an adventure. That of a team that has been building for over ten years, based on legitimacy acquired through constant effort in competence and relevance (technological or not), and on an international strike force.

It is also a lab from which tailored approaches and tools emerge to meet demanding but loyal clients. And it is a strong, committed, and benevolent collective, within which everyone can develop skills, initiatives, and a rich perspective on a complex subject.

We are looking for a Director to join our CSIRT team. The ideal candidate will have at least 6 years of experience in security incident management and cyber threat response coordination.

What you can expect from us

Responsibilities:

Operational:

• Technically supervise the CSIRT team, ensuring a rapid and effective response to security incidents, from initial investigations to remediation and presentation of results to different levels of the organization.
• Coordinate with internal teams and external partners to ensure fluid communication and rapid incident resolution.
• Perform real-time incident response.
• Conduct digital investigations to identify indicators of compromise.
• Perform structured threat hunting to identify weak signals.
• Propose new rules and means to implement to improve overall detection.
• Recommend incident circumvention and remediation measures.
• Monitor tactics, techniques, and procedures used by cyber threat actors and their trends.
• Conduct post-incident analyses to identify vulnerabilities and recommend improvements.
• Maintain technological watch on new threats and cybersecurity trends.

Managerial:

• Be responsible for the quality of the team's work and initiate corrective actions if necessary for their operations.
• Advise teams based on their expertise.
• Support teams in carrying out their missions.
• Ensure close follow-up of CTI team members to strengthen their skills and effectiveness.
• Ensure collaborative working conditions allowing innovation, motivation, and employee retention.

Commercial:

• Develop and promote CSIRT expertise: writing articles, assisting in communication support, etc.

What we can expect from you

• Strong technical skills, and ability to communicate complex technical and risk management issues to senior executives in the context of their business.
• Excellent knowledge of analysis and investigation methodologies and tools that enable detection, understanding, and limitation of the impacts of information system compromise.
• Ability to work under pressure and make quick and effective decisions.
• Excellent communication skills, both oral and written.
• Cybersecurity certifications (CISSP, CISM, ISO 27035 Lead Incident Manager, ISO 27001 Lead Implementer, SANS 508, ...).
• You have already held a similar position (CSIRT/CERT) and have solid experience in digital investigation (forensic).
• You master the different stages of incident response and know how to lead it.
• Proficiency in English is essential.
• Knowledge of Chinese, Persian or Russian would be a plus.

These benefits we offer

Work Environment and Flexibility

• Flexibility with the FlexWork charter: extended telework, geographical mobility, FlexTime, Dress for your day.
• Crystal Park (Neuilly-sur-Seine site): 2-hectare private park, concierge, music room, gym, Café Joyeux.

Development

• International and internal mobility after 12 months of seniority.
• New World. New Skills program for upskilling on future challenges (ESG, technologies, diversity inclusion) and access to an on-demand training platform.

Commitment

• Credit of 3 days per year on working time for societal engagement missions.
• Sustainable mobility pass to cover your sustainable mobility expenses.

Health/Well-being

• Be Well, Work Well program to take care of your health (Gymlib partnership, United heroes application, sports associations, mindfulness training).
• Family Care program to support you in your parenting projects as well as in difficult times.

And also: RTT, health insurance and provident fund, company restaurants and meal vouchers, benefits from the Inter-Company Committee…

All our offers are open to people with disabilities.