Job Summary
As a Director, you will lead cybersecurity incident response engagements, helping clients address complex incidents and improve security strategies.
You will advise on detection, containment, recovery, and provide thought leadership to evolve clients' security operations.
Key Responsibilities
Lead and manage Cyber Incident Response engagements, delivering expert technical and strategic guidance.
Advise clients on preparing, detecting, analyzing, containing, and recovering from cyber threats such as ransomware, data breaches and account compromises.
Provide thought leadership and best-practice recommendations to evolve client security operations and incident response frameworks.
Design and run realistic incident response crisis simulations and tabletop exercises to strengthen organisational readiness.
Align incident handling with regulatory requirements, including NIS2, GDPR, and industry best-practice guidelines.
Drive business development, identifying and pursuing new opportunities within existing and new clients.
Collaborate with PwC's wider teams and ecosystems to deliver integrated solutions.
Represent PwC at industry events and collaborate with bodies such as NCSC and ENISA.
Lead SOC advisory services, supporting establishment or maturation of 24/7 monitoring, threat hunting and incident response capabilities.
Oversee development and continuous improvement of SOC processes, playbooks and threat detection methodologies.
Guide threat intelligence and hunting initiatives, ensuring proactive monitoring and advanced analytics.
Recruit, develop and mentor a diverse consulting team, fostering a high-performance culture.
Manage collaboration with external service providers such as MSSPs, and deliver performance metrics and strategic insights to client leadership.
Qualifications
Bachelor's degree in Cyber Security, Computer Science, Engineering, Mathematics or related discipline.
Minimum 10+ years' experience in Cyber Security focused on Incident Response, Crisis Management and Security Operations.
Proven track record of building, leading and consulting on SOC, preferably across hybrid or outsourced models.
Experience providing cybersecurity advisory services in a consulting environment with client engagement and business development responsibilities.
Strong technical knowledge of SIEM, EDR, MDR, IDP/IPS, forensic techniques, threat hunting and hands-on incident response.
Familiarity with red-team activities and penetration testing is beneficial.
Demonstrated ability to engage with regulators, law enforcement, third parties and external authorities during incidents.
Excellent communication skills with experience delivering impactful presentations and reports.
Proven leadership skills with mentoring experience and driving high-performance cultures.
Relevant certifications such as CISSP, CISM, SANS GIAC, OSCP or equivalent are highly desirable.
Benefits
Competitive compensation and inclusive employee benefits, flexibility programs to support work-life balance.
EEO Statement
We are an equal-opportunity employer and do not discriminate on the basis of race, religion, color, national origin, sex, gender, sexual orientation, age, marital status, veteran status, or disability status.
We provide reasonable accommodation for applicants with disabilities.
#J-*****-Ljbffr