IT Services- Penetration Testing Manager (US Remote)

Line of Service

Internal Firm Services

Industry / Sector

Not Applicable

Specialism

IFS - Internal Firm Services - Other

Management Level

Manager

Job Description & Summary

At PwC, our people in cybersecurity focus on protecting organisations from cyber threats through advanced technologies and strategies. They work to identify vulnerabilities, develop secure systems, and provide proactive solutions to safeguard sensitive data.

Those in penetration testing at PwC will focus on penetration testing (or pen testing) which is a security exercise where a cybersecurity consultant attempts to find and exploit vulnerabilities in a computer system. The purpose of this simulated attack is to identify any weak spots in a system's defences which attackers could take advantage of.

Enhancing your leadership style, you motivate, develop and inspire others to deliver quality. You are responsible for coaching, leveraging team members unique strengths, and managing performance to deliver on client expectations. With your growing knowledge of how business works, you play an important role in identifying opportunities that contribute to the success of our Firm. You are expected to lead with integrity and authenticity, articulating our purpose and values in a meaningful way. You embrace technology and innovation to enhance your delivery and encourage others to do the same.

Examples of the skills, knowledge, and experiences you need to lead and deliver value at this level include but are not limited to :

Analyse and identify the linkages and interactions between the component parts of an entire system.

Take ownership of projects, ensuring their successful planning, budgeting, execution, and completion.

Partner with team leadership to ensure collective ownership of quality, timelines, and deliverables.

Develop skills outside your comfort zone, and encourage others to do the same.

Effectively mentor others.

Use the review of work as an opportunity to deepen the expertise of team members.

Address conflicts or issues, engaging in difficult conversations with clients, team members and other stakeholders, escalating where appropriate.

Uphold and reinforce professional and technical standards (e.g. refer to specific PwC tax and audit guidance), the Firm's code of conduct, and independence requirements.

This position will be part of PwC IT Services (US) LLC, a member of the PwC network of firms. PwC IT Services (US) LLC (a wholly owned subsidiary of PwC IT Services Limited) provides technology services to other PwC member firms. PwC refers to the PwC network and / or one or more of its member firms, each of which is a separate legal entity. Please see www.pwc.com / structure for further details.

Global LoS :

Internal Firm Services

Global Network :

Internal Firm Services

Job Requirements and Preferences :

Basic Qualifications :

Minimum Degree Required :

High School Diploma

Minimum Years of Experience :

4 year(s)

Preferred Qualifications :

One of the following Certifications :

Offensive Security Certified Professional (OSCP)

Offensive Security Certified Expert (OSCE)

Certified Red Team Professional (CRTP)

Degree Preferred : Bachelor Degree

Preferred Knowledge / Skills :

Demonstrates thorough abilities and / or a proven record of success in the following areas :

Planning, scoping, coordinating and managing penetration tests on a global level from initiation to project closure;

Leading penetration testing assessments;

Executing tasks aligned to the Pentest Team with autonomy;

Presenting findings within a context of overall risk to the enterprise to senior leadership;

Contributing to the development of a teams technical acumen;

Establishing thought leadership at the Network Information Security (NIS) and firm-wide level in a particular knowledge area;

Demonstrating appropriate judgement prior to escalating to management and / or a member(s) of the senior leadership team (SLT);

Fostering healthy work relationships by demonstrating appropriate conflict-resolution skills;

Demonstrating cultural dexterity and modifying behavior to the environment / culture;

Building and maintaining relationships with internal teams;

Collaborating with multiple stakeholders across functional and technical skill sets;

Influencing others through leadership interactions with external clients, within NIS, across functions, and with Internal Firm Services leadership;

Collaborating with Information Technology (IT) and NIS to align information security policies and standards, evaluations, and technological tools;

Demonstrated experience in managing risk related to performing penetration tests and an understanding of how identified security issues can impact business operations;

Demonstrating experience performing penetration testing assessments;

Demonstrating experience with common pentesting tools such as Rubeus, Mimikatz, Impacket, Certify, ForgeCert, ROADTools, ADOKit, and Burp Pro;

Demonstrating leadership experience;

Demonstrating proficiency in understanding programing or scripting languages (C / C++, C#, Python, Go, PowerShell);

Demonstrating knowledge of Active Directory concepts;

Demonstrating knowledge of Cloud infrastructure concepts in one of the following platforms : Azure, AWS, GCP;

Demonstrating knowledge of Windows architecture and internals;

Demonstrating high level understanding of the principles of information security engineering, architecture, and application security; and,

Demonstrating prior system administration, incident response, Security Operations Center (SOC) or network engineering experience preferred.

This is a U.S. based role and PwC IT Services (US) LLC does not intend to hire external job seekers who will need, now or in the future, PwC IT Services (US) LLC sponsorship through the H-1B lottery.

The salary range for this position is : $111,000 -$213,000 , plus individuals may be eligible for an annual discretionary bonus. For roles that are based in Maryland, this is the listed salary range for this position. Actual compensation within the range will be dependent upon the individual's skills, experience, qualifications and location, and applicable employment laws.

Education (if blank, degree and / or field of study not specified)

Degrees / Field of Study required :

Degrees / Field of Study preferred :

Certifications (if blank, certifications not specified)

Required Skills

Optional Skills

Accepting Feedback, Accepting Feedback, Active Listening, Analytical Thinking, Bash (Programming Language), Coaching and Feedback, Common Vulnerability Scoring System (CVSS), Communication, Creativity, Cybersecurity, Embracing Change, Emotional Regulation, Empathy, Encryption, Ethical Hacking, Firewall (Network Security), Inclusion, Information Security, Information Security Management System (ISMS), Information Security Risk Assessments, Intellectual Curiosity, Intrusion Detection System (IDS), IT Infrastructure, Kali Linux, Learning Agility {+ 30 more}

Desired Languages (If blank, desired languages not specified)

Travel Requirements

Up to 20%

Available for Work Visa Sponsorship?

No

Government Clearance Required?

No

Job Posting End Date

All qualified applicants will receive consideration for employment at PwC IT Services (US) LLC without regard to race; creed; color; religion; national origin; sex; age; disability; sexual orientation; gender identity or expression; genetic predisposition or carrier status; veteran, marital, or citizenship status; or any other status protected by law. PwC IT Services (US) LLC is proud to be an equal opportunity employer.

For only those qualified applicants that are impacted by the Los Angeles County Fair Chance Ordinance for Employers, the Los Angeles' Fair Chance Initiative for Hiring Ordinance, the San Francisco Fair Chance Ordinance, San Diego County Fair Chance Ordinance, and the California Fair Chance Act, where applicable, arrest or conviction records will be considered for Employment in accordance with these laws. At PwC, we recognize that conviction records may have a direct, adverse, and negative relationship to responsibilities such as accessing sensitive company or customer information, handling proprietary assets, or collaborating closely with team members. We evaluate these factors thoughtfully to establish a secure and trusted workplace for all.

We offer a comprehensive, flexible and competitive benefits program. It provides access to programs that can be tailored to meet the personal health and financial well-being needs of our employees and their families. Our benefits include medical, dental and vision coverage, health savings accounts; mental health support, family and caregiver support, a robust time off policy inclusive of sick, vacation and holiday time; and a retirement savings plan with Roth features and company match.