IN-Sr Associate_EDG Engineer_Managed Services_ Advisory _Mumbai

PwC

2-5 Years | Mumbai, Maharashtra, India (On Site) | Full Time | 1 weeks ago
Apply Now

Job Summary

At PwC, our cybersecurity team protects organizations from cyber threats using advanced technologies and strategies, identifying vulnerabilities, developing secure systems, and providing proactive solutions. As a cybersecurity generalist, you will offer comprehensive security solutions across various domains, maintaining client system and data protection. You will apply a broad understanding of cybersecurity principles to address diverse security challenges effectively. We are seeking a professional to join our Cybersecurity and Privacy services team, helping clients implement effective cybersecurity programs that protect against threats.

Must Have

  • Identification and remediation of new vulnerabilities and risk analysis for Infrastructure
  • Identifying and maintaining Key metrics and SLA on Infrastructure Security
  • Ensure that vulnerability assessments are performed to evaluate effectiveness of security controls in applications, middleware, databases, network and operating systems
  • Thorough experience in configurations reviews against CIS benchmarks and security standards
  • Ensure all Hardening and Patching activities are conducted and tracked as per defined policies
  • Create/Update hardening documents and build audit file for automated testing
  • Knowledge of current and emerging security threats and techniques for exploiting security vulnerabilities
  • Conduct security penetration testing to identify vulnerabilities and potential security risks
  • Design and implement security solutions to protect enterprise systems, applications, data, assets, and people
  • Collaborate with cross-functional teams to ensure security measures are integrated into all aspects of the organization's operations
  • Perform Internal/ External Penetration Testing on Jio Infrastructure and producing reports with recommendations for detailed penetration testing findings
  • Ensure deployment, configuration, management, and integration of EDR solutions in enterprise or hybrid environments
  • Implement and manage EDR security solution for attack surface risk management (ASM) and XDR, enhancing threat detection and response capabilities
  • Sound understanding of Azure/GCP/AWS environment activities
  • Perform Vulnerability Assessment & Penetration Testing for networks (internal & external), applications, APIs & cloud assets along with Red & Purple Team assessments
  • Safeguarding information, infrastructures, applications, and business processes against cyber threats
  • Proactively create, share, and read reports as part of the penetration testing activities
  • Responsible for utilizing threat intelligence to identify new threats in our environment
  • Coordinating with stakeholders to remediate identified vulnerabilities, and ensuring closure through thorough cross-validation

Good to Have

  • Accepting Feedback
  • Active Listening
  • Agile Methodology
  • Analytical Thinking
  • Azure Data Factory
  • Communication
  • Creativity
  • Cybersecurity
  • Cybersecurity Framework
  • Cybersecurity Policy
  • Cybersecurity Requirements
  • Cybersecurity Strategy
  • Embracing Change
  • Emotional Regulation
  • Empathy
  • Encryption Technologies
  • Inclusion
  • Intellectual Curiosity
  • Learning Agility
  • Managed Services
  • Optimism
  • Privacy Compliance
  • Regulatory Response
  • Security Architecture

Job Description

Line of Service

Advisory

Industry/Sector

FS X-Sector

Specialism

Risk

Management Level

Senior Associate

Job Description & Summary

At PwC, our people in cybersecurity focus on protecting organisations from cyber threats through advanced technologies and strategies. They work to identify vulnerabilities, develop secure systems, and provide proactive solutions to safeguard sensitive data.

As a cybersecurity generalist at PwC, you will focus on providing comprehensive security solutions and experience across various domains, maintaining the protection of client systems and data. You will apply a broad understanding of cybersecurity principles and practices to address diverse security challenges effectively.

*Why PWC*

At PwC, you will be part of a vibrant community of solvers that leads with trust and creates distinctive outcomes for

our clients and communities. This purpose-led and values-driven work, powered by technology in an environment that drives innovation, will enable you to make a tangible impact in the real world. We reward your contributions, support your wellbeing, and offer inclusive benefits, flexibility programmes and mentorship that will help you thrive in work and life. Together, we grow, learn, care, collaborate, and create a future of infinite experiences for

each other. Learn more

about us

.

At PwC, we believe in providing equal employment opportunities, without any discrimination on the grounds of gender, ethnic background, age, disability, marital status, sexual orientation, pregnancy, gender identity or expression, religion or other beliefs, perceived differences and status protected by law. We strive to create an environment where each one of our people can bring their true selves and contribute to their personal growth and the firm’s growth. To enable this, we have zero tolerance for any discrimination and harassment based on the above considerations. "

Job Description & Summary: We are seeking a professional to join our Cybersecurity and Privacy services team, where you will have the opportunity to help clients implement effective cybersecurity programs that protect against threats.

Responsibilities:

  • Identification and remediation of new vulnerabilities and risk analysis for Infrastructure is a key responsibility.
  • Identifying and maintaining Key metrics and SLA on Infrastructure Security.
  • Ensure that vulnerability assessments are performed to evaluate effectiveness of security controls in applications, middleware, databases, network and operating systems.
  • Thorough experience in configurations reviews against CIS benchmarks and security standards.
  • Ensure all Hardening and Patching activities are conducted and tracked as per defined policies.
  • Create/Update hardening documents and build audit file for automated testing.
  • Knowledge of current and emerging security threats and techniques for exploiting security vulnerabilities.
  • Conduct security penetration testing to identify vulnerabilities and potential security risks along with designing and implement security solutions to protect enterprise systems, applications, data, assets, and people.
  • Collaborate with cross-functional teams to ensure security measures are integrated into all aspects of the organization's operations.
  • Perform Internal/ External Penetration Testing on Jio Infrastructure and producing reports with recommendations for detailed penetration testing findings.
  • Ensure deployment, configuration, management, and integration of EDR solutions in enterprise or hybrid environments.
  • Implement and manage EDR security solution for attack surface risk management (ASM) and XDR, enhancing threat detection and response capabilities.
  • Sound understanding of Azure/GCP/AWS environment activities and Perform Vulnerability Assessment & Penetration Testing for networks (internal & external), applications, APIs & cloud assets along with Red & Purple Team assessments.
  • Safeguarding information, infrastructures, applications, and business processes against cyber threats.
  • Proactively create, share, and read reports as part of the penetration testing activities.
  • Responsible for utilizing threat intelligence to identify new threats in our environment, coordinating with stakeholders to remediate identified vulnerabilities, and ensuring closure through thorough cross-validation

Education (if blank, degree and/or field of study not specified)

Degrees/Field of Study required: Bachelor of Engineering

Degrees/Field of Study preferred:

Certifications (if blank, certifications not specified)

Required Skills

Endpoint Detection and Response (EDR)

Optional Skills

Accepting Feedback, Accepting Feedback, Active Listening, Agile Methodology, Analytical Thinking, Azure Data Factory, Communication, Creativity, Cybersecurity, Cybersecurity Framework, Cybersecurity Policy, Cybersecurity Requirements, Cybersecurity Strategy, Embracing Change, Emotional Regulation, Empathy, Encryption Technologies, Inclusion, Intellectual Curiosity, Learning Agility, Managed Services, Optimism, Privacy Compliance, Regulatory Response, Security Architecture {+ 8 more}

Desired Languages (If blank, desired languages not specified)

Travel Requirements

Not Specified

Available for Work Visa Sponsorship?

No

Government Clearance Required?

No

Job Posting End Date

10 Skills Required For This Role

Cross Functional Risk Management Ethical Hacking Game Texts Agile Development Automated Testing Html Aws Azure Threat Intelligence