CD-Cyber Security- Crisis And Resilience-Senior Associate-Bangalore

At PwC, our people in cybersecurity focus on protecting organisations from cyber threats through advanced technologies and strategies. They work to identify vulnerabilities, develop secure systems, and provide proactive solutions to safeguard sensitive data. In threat intelligence and vulnerability management at PwC, you will focus on identifying and analysing potential threats to an organisations security, as well as managing vulnerabilities to prevent cyber attacks. You will play a crucial role in safeguarding sensitive information and enabling the resilience of digital infrastructure.

• Position Requirements
• Facilitate planning, design, implementation, and testing of technology and operational resilience concepts within client environments
• Apply resilience methodologies across client networks, including being able to anticipate resilience risks, help our clients withstand the impact of a disruption, support recovery processes to quickly and efficiently minimize operational, financial, reputational, technological impacts, and facilitate our client’s evolution towards a more resilient environment
• Strong knowledge in incident response and readiness processes, and the ability to apply cyber, incident, or security principles to resilience strategies
• Experience with common global resilience regulatory requirements or guidance such as NIS Directive (UK) Sheltered Harbor, FFIEC BCM handbook, OFAC, etc. as well as industry frameworks such as CERT-RMM, CRR, MITRE Cyber Resiliency Engineering Framework, NIST CSF, COBIT, ISO, etc.
• Support response and recovery activities for critical technology disruptions including cyberattacks, natural disasters, man-made disasters, and other logical and physical scenarios
• Advise in transforming traditional disaster recovery (DR) and business continuity (BC) solutions to secure, agile, scalable, and redundant resilient programs to withstand disruptions
• Recognize gaps in existing business plans and develop future state resilience strategies leveraging cross-functional synergies to create, enhance, and maintain enterprise resilience, including the development of target resilience operating models, fusion resilience centers, resilience program and/or teams, etc.
• Expertise in ransomware attacks and approaches, threat vectors, detection techniques, threat models, and ransomware prevention and mitigation strategies
• Conduct scenario testing in collaboration with clients, including the development of testing scenarios mimicking significant network and environment disruptions, creation of step by step testing plans, and execution of technical testing vialive recovery, restoration, and rebuilding of networks, platforms, and systems
• Demonstrate deep knowledge of technical resilience concepts, including networking resilience building redundancies across networks, cloud resilience facilitating recovery in virtualized environments, and understanding and designing data vaulting solutions to protect data and enable efficient and secure recovery processes
• Drive technology transformations, including the execution of various resilience assessments, identification of disruption blast radiuses, conducting impact and risk analyses, assessment of existing tools and platforms and ability to provide recommendations for new / enhanced resilient technology and solutions, creation of resilience and recovery plans and documentation, and testing activities
• Ability to identify mission critical systems and analyze / map secondary and tertiary dependencies across the environment to determine recovery priority to enable more efficient recovery processes
• Develop step-by-step, technical cyber recovery and decryption plans supporting our client’s ability to rapidly recover from a critical disruption
• Exposure to backup technology and platforms, and creation of enhanced backup strategies to support secure storage, replication, and segmented recovery environments aligning to defined recovery objectives (RPO’s / RTO’s)
• Identify, track, and report meaningful resilience performance/progress metrics on the state of resiliency, business continuity, and disaster recovery
• Provide guidance on security and resilient architecture, assisting clients with reducing their attack surface and optimizing their resilience capabilities to adapt to modern threats
  
  

• Bachelors Degree Preferred.