Job Description

Line of Service

Internal Firm Services

Industry/Sector

Not Applicable

Specialism

IFS - Information Technology (IT)

Management Level

Senior Associate

& Summary

At PwC, our people in Offensive Security focus on improving the organization’s resilience against dedicated adversaries by testing key elements of the security program, including technology, people, and process. They work to identify areas for improvement, demonstrate potential business impact, and help strengthen PwC’s ability to prevent, detect, contain, and remediate cyber threats.

Those in the Red Team at PwC will focus on simulating realistic adversary activity through full-scope operations, purple teaming, and security initiatives. This includes simulating compromise to achieve specific objectives, collaborating with Blue Teams to validate detection and monitoring coverage, and supporting ongoing security hygiene efforts to identify security issues across PwC environments.

Focused on collaboration and resilience, you are building meaningful relationships with security teams and stakeholders while learning how to support and improve offensive security operations. Navigating increasingly complex security scenarios, you are growing your technical expertise in red teaming, adversary simulation, detection validation, and security hygiene.

You are expected to anticipate the needs of your team, communicate findings clearly, and deliver high-quality work that helps strengthen PwC’s security posture. Embracing ambiguity, you are comfortable operating in realistic and evolving attack scenarios, asking thoughtful questions, and using each engagement as an opportunity to learn, improve, and drive measurable security outcomes.

This position will be part of PwC IT Services (US) LLC, a member of the PwC network of firms. PwC IT Services (US) LLC (a wholly owned subsidiary of PwC IT Services Limited) provides technology services to other PwC member firms. PwC refers to the PwC network and/or one or more of its member firms, each of which is a separate legal entity. Please see www.pwc.com/structure for further details.

Custom Orgs

GlobalLoS

Internal Firm Services

Global Network:

Internal Firm Services

Job Requirements and Preferences

Basic Qualifications

MinimumDegree Required:

High School Diploma

Minimum Years of Experience:

2 year(s)

Preferred Qualifications

One of the following Certifications:

- Offensive Security Certified Professional (OSCP)

- Certified Red Team Professional (CRTP)

Degree Preferred:

Bachelor's degree

Preferred Knowledge/Skills:

Demonstrates thorough abilities and/or a proven record of success in the following areas:

• Proactivelyassistingmanagement in the scoping,planningand execution of assessments;

• Performing Red Team and penetration testing assessments;

• Executing tasks aligned to the Red Team with autonomy;

• Presenting technical findings with a focus on business impact to management;

• Contributing to the development of a team’s technical acumen;

• Establishing thought leadership at the Network Information Security (NIS) and firm-wide level in a particular knowledge area;

• Demonstrating cultural dexterity andmodifyingbehavior to the environment/culture;

• Collaborating with multiple stakeholders across functional and technical skill sets;

• Assistingin collaborating with Information Technology (IT) and NIS to align information security policies and standards, evaluations, and technological tools;

• Demonstratingappropriate judgmentprior to escalating to management;

• Fostering healthy work relationships bydemonstratingappropriate conflict-resolutionskills;

• Demonstrating experience performing Red Team and penetration testing assessments;

• Demonstrating experience with commonpentestingand Red Team tools such as Cobalt Strikeor Nighthawk,Mimikatz,Impacket,ADOKit, ROAD Tools, Certify, Rubeus,and Burp Pro;

• Demonstrating experience with automation of the deployment of applications and infrastructure (Ansible, Terraform);

• Demonstratingproficiencywith a programing or scripting language (C/C++, C#, Python, Go, PowerShell);

• Demonstrating knowledge of Active Directory concepts;

• Demonstrating knowledge of Windows architecture and internals;

• Demonstrating knowledge of threat actors and the ability to replicate the tactics, techniques and proceduresleveragedby adversaries;

• Demonstrating high level understanding of the principles of information security engineering, architecture, and application security; and,

• Demonstrating prior system administration, incident response, Security Operations Center (SOC)or network engineering experience preferred.

This is a U.S. based role and PwC IT Services (US) LLC does not intend to hire external job seekers who will need, now or in the future, PwC IT Services (US) LLC sponsorship through the H-1B lottery.

The salary range for this position is: $86,500 - $166,000. Actual compensation within the range will be dependent upon the individual's skills, experience, qualifications and location, and applicable employment laws. Additionally, individuals may be eligible for an annual discretionary bonus. For roles that are based in Maryland, this is the listed salary range for this position.

Education (if blank, degree and/or field of study not specified)

Degrees/Field of Study required:Degrees/Field of Study preferred:

Certifications (if blank, certifications not specified)

Required Skills

Optional Skills

Accepting Feedback, Accepting Feedback, Active Listening, Analytical Thinking, Bash (Programming Language), Common Vulnerability Scoring System (CVSS), Communication, Creativity, Cybersecurity, Embracing Change, Emotional Regulation, Empathy, Encryption, Ethical Hacking, Firewall (Network Security), Inclusion, Information Security, Information Security Management System (ISMS), Information Security Risk Assessments, Intellectual Curiosity, Intrusion Detection System (IDS), IT Infrastructure, Kali Linux, Learning Agility, Microsoft Active Directory {+ 25 more}

Desired Languages (If blank, desired languages not specified)

Travel Requirements

Up to 20%

Available for Work Visa Sponsorship?

No

Government Clearance Required?

No

Job Posting End Date

All qualified applicants will receive consideration for employment at PwC IT Services (US) LLC without regard to race; creed; color; religion; national origin; sex; age; disability; sexual orientation; gender identity or expression; genetic predisposition or carrier status; veteran, marital, or citizenship status; or any other status protected by law. PwC IT Services (US) LLC is proud to be an equal opportunity employer.For only those qualified applicants that are impacted by the Los Angeles County Fair Chance Ordinance for Employers, the Los Angeles' Fair Chance Initiative for Hiring Ordinance, the San Francisco Fair Chance Ordinance, San Diego County Fair Chance Ordinance, and the California Fair Chance Act, where applicable, arrest or conviction records will be considered for Employment in accordance with these laws. At PwC, we recognize that conviction records may have a direct, adverse, and negative relationship to responsibilities such as accessing sensitive company or customer information, handling proprietary assets, or collaborating closely with team members. We evaluate these factors thoughtfully to establish a secure and trusted workplace for all.We offer a comprehensive, flexible and competitive benefits program. It provides access to programs that can be tailored to meet the personal health and financial well-being needs of our employees and their families. Our benefits include medical, dental and vision coverage, health savings accounts; mental health support, family and caregiver support, a robust time off policy inclusive of sick, vacation and holiday time; and a retirement savings plan with Roth features and company match.