Cybersecurity – Network Security, Director

at PWC
Published July 21, 2021
Location San Diego, CA
Category Default  
Job Type Full-time  


Specialty/Competency: Cybersecurity & Privacy
Industry/Sector: Not Applicable
Time Type: Full time
Government Clearance Required: No
Available for Work Sponsorship: Yes
Travel Requirements: Up to 40%

A career in our Cybersecurity, Privacy and Forensics will provide you the opportunity to solve our clients most critical business and data protection related challenges. You will be part of a growing team driving strategic programs, data analytics, innovation, deals, cyber resilency, response, and technical implementation activities. You will have access to not only the top Cybersecurity, Privacy and Forensics professionals at PwC, but at our clients and industry analysts across the globe. Our Cyber Defense team focuses on helping our clients design and implement an effective cybersecurity program and technologies that protect against threats, support business objectives, and enables growth. As businesses move to a digital world, more data is generated and shared among organisations, partners and customers; to have business value, that data needs to be protected. You'll play an integral role in helping our clients ensure they are protected by developing solutions focused on security, efficiently integrate and manage new or existing technology systems to deliver continuous operational improvements and increase their cybersecurity investment, and detect, respond, and remediate threats. In joining, you'll be a part of a team that values technical and business acumen and provides training and development to extend and develop your skills, while fostering a strong collaborative culture. You'll have the opportunity to help organisations design and create sustainable security solutions at enterprise scale, through a focused approach on enterprise requirements and prioritisation, information technology security architecture, and the software development lifecycle.

To really stand out and make us fit for the future in a constantly changing world, each and every one of us at PwC needs to be an authentic and inclusive leader, at all grades/levels and in all lines of service. To help us achieve this we have the PwC Professional; our global leadership development framework. It gives us a single set of expectations across our lines, geographies and career paths, and provides transparency on the skills we need as individuals to be successful and progress in our careers, now and in the future.

As a Director, you'll work as part of a team of problem solvers, helping to solve complex business issues from strategy to execution. PwC Professional skills and responsibilities for this management level include but are not limited to:

  • Arrange appropriate assignments and experiences to support others' learning and development.

  • Seek out different ways to use current and relevant technological advances.

  • Analyse marketplace trends - economical, social, cultural, technological - to identify opportunities and create value propositions.

  • Deploy methods to keep up with, and stay ahead of, new developments and ideas.

  • Offer a global perspective in stakeholder discussions and when shaping solutions/recommendations.

  • Drive and take ownership for developing networks that help deliver what is best for stakeholders.

  • Proactively manage stakeholders to create positive outcomes for all parties.

  • Uphold the firm's code of ethics and business conduct.

    Job Requirements and Preferences:

    Basic Qualifications:

    Minimum Degree Required:
    Bachelor Degree

    Minimum Years of Experience:
    10 year(s)

    Required Knowledge and Skills:

    10+ years of experience in cloud security, network security, security architecture, data security, and/or cyber defense

    Preferred Qualifications:

    Preferred Fields of Study:
    Information CyberSecurity, Computer and Information Science, Management Information Systems

    Preferred Knowledge/Skills:

    Demonstrates thought leader-level abilities with, and/or a proven record of success directing efforts in the following areas:

    • Network security architecture concepts including topology, protocols, components, and principles (e.g., application of defense-in-depth);

    • Network security implementations (e.g., host-based IDS, IPS, access control lists), including their function and placement in a network;

    • Laws, regulations, policies, and ethics as they relate to cybersecurity and privacy;

    • Common regulatory requirements such as OCC HS, FFIEC, GLBA, NY DFS, GDPR etc. as well as industry frameworks such as ISO 27001/2, NIST CSF, COBIT, ISO, and PCI;

    • Current FRCP Guidelines and evidential continuity industry leading practice including chain of custody;

    • Enterprise Cloud solutions across IaaS, PaaS & SaaS, such as AWS, Azure, OpenStack, Cloud Foundry, Salesforce, Microsoft Office 365, Box etc.;

    • Enterprise security and Cloud security specific solutions such as IAM/IdaaS, CASB, Identity Governance, Cloud SOC/SIEM, Key Management & Encryption, Public, Private and Hybrid cloud solutions;

    • The Risk Management Framework Assessment Methodology;

    • IoT protocols (e.g., MQTT, COAP, DDNS), implementation and consumption of REST APIs, with an understanding of WS-Security, simulated devices usage experience (e.g., Raspberry Pi and Amazon Dash), and security concepts, including OAUTH and OIDC;

    • Cyber defense and vulnerability assessment tools and their capabilities; and,

    • Business continuity and disaster recovery continuity of operations plans.

    Demonstrates thought leader-level abilities with, and/or a proven record of success directing efforts in the following areas:

    • Develop policy, plans, and strategy in compliance with laws, regulations, policies, and standards in support of organizational cyber activities;

    • Apply cybersecurity and privacy principles to organizational requirements (relevant to confidentiality, integrity, availability, authentication, non-repudiation);

    • Apply network security architecture concepts including topology, protocols, components, and principles (e.g., application of defense-in-depth);

    • Translate, track, and prioritize information needs and intelligence collection requirements across the extended enterprise;

    • Coordinate with senior leadership of an organization to identify the organizational risk posture based on the aggregated risk from the operation and use of the systems for which the organization is responsible;

    • Coordinate with senior leadership of an organization to provide oversight for all risk management-related activities across the organization to help establish consistent and effective risk acceptance decisions;

    • Assess and forecast manpower requirements to meet organizational objectives;

    • Establish information security management processes are integrated with strategic and operational planning processes;

    • Oversee the development and update of the life cycle cost estimate; and,

    • Share meaningful insights about the context of an organization’s threat environment that improves its risk management posture.

    All qualified applicants will receive consideration for employment at PwC without regard to race; creed; color; religion; national origin; sex; age; disability; sexual orientation; gender identity or expression; genetic predisposition or carrier status; veteran, marital, or citizenship status; or any other status protected by law. PwC is proud to be an affirmative action and equal opportunity employer.