Cyber Posture Management Senior Associate

Advisory

Not Applicable

Managed Services

Senior Associate

At PwC, our people in cybersecurity focus on protecting organizations from cyber threats through advanced technologies and strategies. They work to identify vulnerabilities, develop secure systems, and provide proactive solutions to safeguard sensitive data.

As a cybersecurity generalist at PwC, you will focus on providing comprehensive security solutions and experience across various domains, maintaining the protection of client systems and data. You will apply a broad understanding of cybersecurity principles and practices to address diverse security challenges effectively.

As a Cyber Posture Management Senior Associate, you’ll work as part of a team of problem solvers, helping to solve business issues, deliver high quality client service and operational efficiency. Responsibilities include but are not limited to:

• Continuously monitor the health of security and data protection systems, taking appropriate actions to ensure their optimal performance and integrating new data sources into security and data protection platforms.
• Provide troubleshooting and support for configurations and management of security and data protection systems. And ensure systems are patched and updated to meet security requirements, maintaining optimal performance and compliance. Being available for on‑call rotation to address urgent data protection issues and incidents.
• Create and tune policies, enforce policies and best practices, ensuring compliance with industry standards and regulatory requirements. Also, understand and maintain security platforms, ensuring they are used to their full potential.
• Manage and optimize tools and technologies to ensure they are effectively configured, tuned, and updated to protect against emerging threats. Build and maintain Standard Operating Procedures (SOP), Current State Assessments (CSA), and runbooks for documentation purposes.
• Work closely with client focal points to provide regular updates (weekly/monthly/quarterly). Coordinate with internal and external stakeholders, building and maintaining positive working relationships. Provide knowledge transfer sessions to peers and client personnel as required.
• Stay up to date on the latest trends, threats, and techniques. Conduct research and evaluate new tools and technologies to enhance the organization’s security capabilities.
• Lead or participate in incident response activities, including investigating incidents containing threats, and coordinating with other teams for timely resolution.
• Ensure the identification, assessment, reporting, communication, mitigation, and monitoring of security incidents.
• Ensure compliance with SLAs, process adherence, and drive process improvements to achieve operational objectives.
• Revise and develop processes to strengthen the current Operations Framework, reviewing policies and highlighting challenges in managing. Monitor operational metrics data during reporting periods.
• Implement change requests (CR) that include upgrades and new feature implementations for security tools.

• Experience in security device management including SIEM, EDR, DLP platforms and/or other security devices including Proxy, Email Security and other security technologies. Expertise in managing and implementing Data Pipeline solutions and a background working in a MSSP and/or SOC environment.
• Technical and hands‑on experience with two or more of the following technologies: Splunk, Azure Sentinel, QRadar, Arcsight, Proofpoint, McAfee Endpoint Protection, Checkpoint, CrowdStrike, Microsoft Purview, Microsoft AIP, Microsoft Defender for Cloud Apps.
• Knowledge of various operating system flavors including but not limited to Windows, macOS, and Linux.
• Minimum 3 years of hands‑on experience with two or more of the following technologies including EDR, DP, SIEM and Network Security. Consulting experience in a Big 4 or similar is an asset, and project‑management experience.
• Business continuity for client systems by maintaining robust protection measures. Ability to manage a few projects, meet deadlines and manage stakeholder expectations.
• Awareness and adherence to relevant regulatory requirements such as HIPAA, GDPR, PCI‑DSS, and others, maintaining compliance across all data protection activities. Technical designations such as CISSP, CISA, CISM, OSCP, CEH, ECSA, GPEN, GWAPT will be considered an advantage.
• Industry certifications from Palo Alto, Microsoft Azure/AWS, Microsoft DLP/AIP are a strong asset.
• A bachelor’s degree in a relevant field is often preferred, such as Computer Science, Information Technology, Cybersecurity, or a related discipline.
• Strong verbal and written communication skills to effectively communicate with team members, stakeholders, and management, including the ability to explain technical concepts to non‑technical audiences. Experience in vendor management. Ability to handle high‑pressure situations with key stakeholders internally and externally.
• Willingness to adapt to evolving threats and technologies, continuously learning and updating skills to stay ahead of emerging threats in the cybersecurity landscape. Ability to work effectively in a team environment, collaborating with colleagues from diverse backgrounds and disciplines to achieve common security goals.
• Good analytical, problem‑solving and interpersonal skills. In addition to technical skills, soft skills such as analytical thinking, communication, problem‑solving, teamwork, and adaptability are expected for effectively collaborating with colleagues, communicating with stakeholders, and addressing security challenges.
• PwC Canada is committed to cultivating an inclusive, hybrid work environment.

This position ensures continuity and upholds our standards of excellence following the departure of a valued team member.

The salary range for this position is $84,700 – $134,700. The posted salary range represents the expected hiring range for PwC locations in major city centres. Given our national recruiting approach, ranges may vary for positions in other locations. At PwC Canada, base salary is determined by your skills, experience, qualifications and work location. In addition to base salary, eligible employees may have opportunities to participate in variable incentive pay programs which are designed to reward individual and firm‑wide achievements. We are committed to offering competitive compensation and adhere to all relevant pay transparency legislation. During the hiring process, our Talent Acquisition team will provide details about our comprehensive total rewards package.

We’re inspiring and empowering our people to change the world. Powered by the latest technology, you’ll be a part of diverse teams helping public and private clients build trust and deliver sustained outcomes. This meaningful work, and our continuous development environment, will take your career to the next level. We reward your impact, and support your wellbeing, through a competitive compensation package, inclusive benefits and flexibility programs that will help you thrive in work and life. Learn more about our Application Process and Total Rewards Package at https://jobs-ca.pwc.com/ca/en/life-at-pwc

PwC Canada acknowledges that we work and live across Turtle Island, on the land that is now known as Canada, which are the lands of the ancestral, treaty and unceded territories of the First Nations, Métis and Inuit Peoples. We recognize the systemic racism, colonialism and oppression that Indigenous Peoples have experienced and still go through, and we commit to allyship and solidarity.

We’re committed to providing accommodation throughout the application, interview, and employment process. If you require accommodation to be at your best, please let us know during the application process. The use of artificial intelligence (AI) in recruiting is just getting started, so we know you have questions about how and why we use it. At certain points during our recruiting process, we rely on AI to improve your experience. This could be during resume review or curating personalized job recommendations, asking you clarifying questions via a chatbot or during our interview scheduling to improve your experience. Our use of AI helps ensure we combat bias by evaluating candidates equally and fairly, without seeing identity information, such as your name, or gender for example). AI also helps us better predict successful hires by reviewing all applicants for a role and the relationship between your skills, experience and likely success at PwC Canada. While AI supports parts of our recruitment process, final hiring decisions always involve human review. For more information about our use and protection of your data, please refer to our Privacy Policy (https://www.pwc.com/ca/en/privacy-policy.html).

Nous tenons à répondre à vos besoins tout au long du processus de demande d’emploi, d’entrevue et d’embauche. Si vous avez besoin de mesures d’adaptation pour être parfaitement à l’aise, faites‑le‑nous savoir à l’étape de la demande d’emploi. L’utilisation de l’intelligence artificielle (IA) dans le domaine du recrutement en est à ses balbutiements. Nous savons que vous pourriez vous demander comment et pourquoi nous y avons recours. À certains stades de notre processus de recrutement, nous comptons sur l’IA pour améliorer votre expérience. Par exemple, pendant l’examen du curriculum vitæ ou l’élaboration d’une liste de recommandations personnalisées, un agent conversationnel pourrait vous demander des précisions ou fixer avec vous un rendez‑vous pour l’entrevue. L’IA nous aide à mieux lutter contre les préjugés, car l’évaluation des candidats se fait de façon juste et équitable, sans que les informations d’identification comme le nom ou le sexe soient connues. Elle nous permet également de mieux repérer les bons candidats pour un poste et d’évaluer le lien entre leurs compétences, leur expérience et leurs chances de réussir chez PwC Canada. Bien que l’IA facilite certaines étapes de notre processus de recrutement, les décisions finales d’embauche sont toujours prises par des personnes. Pour en savoir plus sur l’utilisation et la protection de vos données personnelles, consultez notre politique sur la protection des renseignements confidentiels (https://www.pwc.com/ca/fr/privacy-policy.html).