Cyber Posture Management Senior Associate

As a Cyber Posture Management Senior Associate, you’ll work as part of a team of problem solvers, helping to solve business issues, deliver high quality client service and operational efficiency.

• Continuously monitor the health of security and data protection systems, taking appropriate actions to ensure their optimal performance and integrating new data sources into security and data protection platforms.
• Provide troubleshooting and support for configurations and management of security and data protection systems, ensure systems are patched and updated to meet security requirements, maintaining optimal performance and compliance, and be available for on‑call rotation to address urgent data protection issues and incidents.
• Create and tune policies, enforce best practices, ensuring compliance with industry standards and regulatory requirements, and understand and maintain security platforms, ensuring they are used to their full potential.
• Manage and optimize tools and technologies to ensure they are effectively configured, tuned, and updated to protect against emerging threats, and build and maintain SOP, CSA, and runbooks for documentation purposes.
• Work closely with client focal points to provide regular updates (weekly/monthly/quarterly), coordinate with internal and external stakeholders, build positive working relationships, and provide knowledge transfer sessions to peers and client personnel as required.
• Stay up to date on the latest trends, threats, and techniques, conduct research and evaluate new tools and technologies to enhance the organization’s security capabilities.
• Lead or participate in incident response activities, including investigating incidents containing threats, and coordinating with other teams for timely resolution.
• Ensure the identification, assessment, reporting, communication, mitigation, and monitoring of security incidents.
• Ensure compliance with SLAs, process adherence, and drive process improvements to achieve operational objectives.
• Revise and develop processes to strengthen the current Operations Framework, reviewing policies and highlighting challenges in managing, and monitor operational metrics data during reporting periods.
• Implement change (CR) that include upgrades and new feature implementations for security tools.

• Experience in security device management including SIEM, EDR, DLP platforms and other security devices such as Proxy, Email Security and other security technologies; expertise in managing and implementing Data Pipeline solutions and a background working in an MSSP and/or SOC environment.
• Technical and hands‑on experience with two or more of the following technologies: Splunk, Azure Sentinel, QRadar, Arcsight, Proofpoint, McAfee Endpoint Protection, Checkpoint, CrowdStrike, Microsoft Purview, Microsoft AIP, Microsoft Defender for Cloud Apps.
• Knowledge of various operating system flavors including Windows, MacOS and Linux.
• Minimum 3 years of hands‑on experience with two or more of the following technologies including EDR, DP, SIEM and Network Security; consulting experience in a Big 4 or similar is an asset, and project management experience.
• Business continuity for client systems by maintaining robust protection measures, with the ability to manage a few projects, meet deadlines and manage stakeholder expectations.
• Awareness and adherence to relevant regulatory requirements such as HIPAA, GDPR, PCI‑DSS and others, maintaining compliance across all data protection activities; technical designations such as CISSP, CISA, CISM, OSCP, CEH, ECSA, GPEN, GWAPT will be considered an advantage.
• Industry certifications from Palo Alto, Microsoft Azure/AWS, Microsoft DLP/AIP are a strong asset.
• A bachelor's degree in a relevant field is often preferred, such as Computer Science, Information Technology, Cybersecurity, or a related discipline.
• Strong verbal and written communication skills to effectively communicate with team members, stakeholders, and management, including the ability to explain technical concepts to non‑technical audiences; experience in performing vendor management, handling high pressure situations with key stakeholders internally and externally.
• Willingness to adapt to evolving threats and technologies, continuously learning and updating skills to stay ahead of emerging threats in the cybersecurity landscape; ability to work effectively in a team environment, collaborating with colleagues from diverse backgrounds and disciplines to achieve common security goals.
• Good analytical, problem‑solving and interpersonal skills.
• PwC Canada is committed to cultivating an inclusive, hybrid work environment. Exact expectations for your team can be discussed with your interviewer‑.

We’re inspiring and empowering our people to change the world. Powered by the latest technology, you’ll be a part of diverse teams helping public and private clients build trust and deliver sustained outcomes. This meaningful work, and our continuous development environment, will take your career to the next level. We reward your impact, and support your wellbeing, through a competitive compensation package, inclusive benefits and flexibility programs that will help you thrive in work and life.

PwC Canada acknowledges that we work and live across Turtle Island, on the land that is now known as Canada, which are the lands of the ancestral, treaty and unceded territories of the First Nations, Métis and Inuit Peoples. We recognize the systemic racism, colonialism, and oppression that Indigenous Peoples have experienced and still go through, and we commit to allyship and solidarity.