Manager, Threat and Vulnerability Management
PwC
Toronto, ON
8d ago

Achieve your full potential in an environment where there is flexibility to cultivate your personal brand and knowledge base.

Our Consulting & Deals practice :

Our extensive selection of services provides businesses with the value they’re looking for. Through expert advice and assistance based on our financial, analytical and business process skills, we enhance the performance of companies of all sizes.

Our clients value our ability to draw on our national and international network of professionals to deliver fast, proven results.

The Opportunity : Manager Threat and Vulnerability Management

As companies pivot toward a digital business model, the amount of data generated and shared among organizations, partners and customers is growing at an exponential rate.

This digital information has become the lifeblood of today’s interconnected business ecosystem and is increasingly valuable to organizations and to skilled threat actors.

Business digitization has also exposed companies to new digital vulnerabilities, making effective cybersecurity and privacy more important than ever.

Responsibilities & Tasks

Your Role as a Manager Threat and Vulnerability Management, you will join our growing Incident and Threat Management (ITM) practice to meet our clients’ demand for high quality, independent advice and delivery capability focusing on Threat and Vulnerability Management (TVM) within our broader portfolio of Incident and Threat Management capabilities.

In return, we will surround you with the best people in the business, the environment in which to challenge yourself and learn, and clients who appreciate their need for excellence and change.

The primary responsibilities are to :

  • Establish credibility with prospective clients by demonstrating knowledge of Threat and Vulnerability Management (TVM) and identify opportunities for assistance.
  • Lead the delivery of penetration testing, red teaming and vulnerability management services on all clients serviced by the ITM team, providing technical leadership and delivery support in the following areas :
  • oDesign and delivery of vulnerability management programs (build scanning processes, facilitate tool selection, recommend technology placement and configuration, develop remediation processes, etc.)

    oConduct threat modelling, design and delivery of red teaming scenarios

    oNetwork infrastructure vulnerability assessments and penetration tests

    oApplication vulnerability assessments and penetration tests

    oWireless network testing

    oDesign and oversee social engineering campaigns

    oSecure source code reviews

    Provide thought leadership and direction for the ITM practice.

  • Manage the end to end delivery (including scheduling) of multiple projects spanning multiple resources and teams.
  • Assist with / lead the development of the support processes and systems that create the foundation for a project.
  • Acting as a technical reference point for your specialist discipline.
  • Mentoring and developing junior staff as required.
  • Support the sales function by generating opportunities, responding to proposals, develop statements of work, etc.
  • Maintain a project plan and overview of all ongoing, past and future work.
  • Contribute to the Intellectual Property of the firm by driving the development of toolkits, methodologies, accelerators and training
  • This position may require some travel and will be based out of our Toronto Office.Other locations in Canada may be available.

    Requirements : General Requirements :

    General Requirements :

    Demonstrable ability in the following areas is required for this position :

  • Bachelor or Masters degree in Information Security, Computer Science, Engineering or Business.
  • Technical credentials such as OSCP, CEH, ECSA, ELPT, GPEN, GWAPT will be considered an advantage.
  • Minimum of 5 years of experience in vulnerability assessments and penetration testing with a preference on those who have consulting experience in a Big 4 or have delivered / participated in vulnerability management programs in large organizations.
  • Solid mix of business and technical capabilities, and the ability to communicate complex technical and risk management issues to senior executives within the context of their business.
  • Clear, articulate and confident written and verbal communication skills.
  • Strong project management, facilitation and delivery skills.
  • The ability to manage engagement financials and risk.
  • The ability to manage a number of projects, meet deadlines and manage stakeholder expectations.
  • Technical Requirements :

  • Threat and Vulnerability Management
  • Strong understanding and familiarity with vulnerability assessment and penetration testing methodologies
  • Red team tools, tactics, procedures
  • Database commands (Oracle, MS-SQL, DB2, MySQL)
  • Execution of vulnerability assessments and penetration testing (application, networks and infrastructure)
  • Wireless and Cellular penetration testing (802.11 x, 3G)
  • Proven experience with execution and management of the entire vulnerability assessment and penetration testing engagement lifecycle
  • Experience, at minimum with the following tools, suites and frameworks : Qualys, Nessus, Kali Linux, Metasploit, IBM Rational AppScan (including AppScan Source) or equivalent source code analysis tools, web application proxies (e.
  • g. Burp Suite), and Cobalt Strike.

    Why Work for PwC

    We know there’s no one-size-fits-all concept when it comes to flexibility.Everyone defines flexibility differently depending on your career and personal goals and stage in life.

    As part of our PwC culture, we know that to be at your best, you need time to rest, refresh and recharge. Our myLife flexibility programmes provide you with the opportunities to meet both your family and career needs.

    PwC is committed to building a diverse workforce representative of the communities we serve. We encourage and are pleased to consider all qualified candidates, without regard to ethnicity, colour, religion, sex, sexual orientation, gender identity, aboriginal status, age, disability or persons who may require an accommodation, to apply.

    PwC : the Opportunity of a Lifetime

    Apply
    Apply
    My Email
    By clicking on "Continue", I give neuvoo consent to process my data and to send me email alerts, as detailed in neuvoo's Privacy Policy . I may withdraw my consent or unsubscribe at any time.
    Continue
    Application form