NIS - Red Team Technical Manager

Company: PwC
Location: Richmond
Posted on: June 12, 2021

Job Description:

A career in Information Security, within Internal Firm Services, will provide you with the opportunity to develop and support our internal security technologies and services across the entire global and local PwC network. You'll focus on being the forefront of designing, developing, and implementing information technology including hardware, software, and networks that enhances security of internal information and protect our firms intellectual assets.

To really stand out and make us fit for the future in a constantly changing world, each and every one of us at PwC needs to be a purpose-led and values-driven leader at every level. To help us achieve this we have the PwC Professional; our global leadership development framework. It gives us a single set of expectations across our lines, geographies and career paths, and provides transparency on the skills we need as individuals to be successful and progress in our careers, now and in the future.

As a Manager, you'll work as part of a team of problem solvers, helping to solve complex business issues from strategy to execution. PwC Professional skills and responsibilities for this management level include but are not limited to:

• Develop new skills outside of comfort zone.
• Act to resolve issues which prevent the team working effectively.
• Coach others, recognise their strengths, and encourage them to take ownership of their personal development.
• Analyse complex ideas or proposals and build a range of meaningful recommendations.
• Use multiple sources of information including broader stakeholder views to develop solutions and recommendations.
• Address sub-standard work or work that does not meet firm's/client's expectations.
• Use data and insights to inform conclusions and support decision-making.
• Develop a point of view on key global trends, and how they impact clients.
• Manage a variety of viewpoints to build consensus and create positive outcomes for all parties.
• Simplify complex messages, highlighting and summarising key points.
• Uphold the firm's code of ethics and business conduct.

Job Requirements and Preferences:

Basic Qualifications:

Minimum Degree Required:

High School Diploma

Minimum Years of Experience:

4 year(s)

Preferred Qualifications:

Degree Preferred:

Bachelor Degree

Preferred Knowledge/Skills:

Demonstrates extensive abilities and/or a proven record of success in the following areas:

• Planning, scoping, coordinating and managing Red Team, Purple Team and penetration tests on a global level from initiation to project closure;
• Leading Red Team and penetration testing assessments;
• Presenting findings within a context of overall risk to the enterprise to senior leadership;
• Building and maintaining relationships with internal teams;
• Collaborating with multiple stakeholders across functional and technical skill sets;
• Providing day to day oversight of teams performing multiple assessments concurrently;
• Training and developing junior team members;
• Executing tasks aligned to the Red Team with autonomy;
• Establishing thought leadership at the Network Information Security (NIS) and firm-wide level in a particular knowledge area;
• Demonstrating cultural dexterity and modifying behavior to the environment/culture;
• Demonstrating appropriate judgement prior to escalating to management and/or a member(s) of the senior leadership team (SLT);
• Fostering healthy work relationships by demonstrating appropriate conflict-resolution skills;
• Influencing others through leadership interactions with external clients, within NIS, across functions, and with Internal Firm Services leadership;
• Collaborating with Information Technology (IT) and NIS to align information security policies and standards, evaluations, and technological tools;
• Demonstrating experience performing Red Team and penetration testing assessments;
• Demonstrating experience with common pentesting and Red Team tools such as Cobalt Strike, Mimikatz, Impacket, and Burp Pro;
• Demonstrating leadership experience;
• Developing custom tools (C/C++, C#, Python, Go, PowerShell);
• Demonstrating thorough knowledge of Active Directory;
• Demonstrating knowledge of the MITRE ATT&CK Framework;
• Demonstrating knowledge of threat actors and the ability to replicate the tactics, techniques and procedures leveraged by adversaries; and,
• Demonstrating prior system administration, incident response, Security Operations Center (SOC) or network engineering experience preferred.

Keywords: PwC, Richmond , NIS - Red Team Technical Manager, Other , Richmond, Virginia