Line of Service
Cybersecurity & Privacy
Job Description & Summary
We believe that challenges are better solved together. That’s why you’ll join a diverse, global community of solvers – an unexpected mix of people that come together to build trust in society and solve important problems. With us, you are encouraged to lead with your heart and values, and where your unique skills are developed and put to work in unexpected and exciting ways, superpowered by technology.
Our Risk Assurance Practice provides an invaluable safeguard in today’s complex operating environment with insights and independent assurance. We work with clients to deliver business control to help them to protect and strengthen every aspect of their business from people to performance, systems to strategy, business plans to business resilience. We help clients manage, mitigate and control risks from potential cybersecurity breaches to possible breaks in the supply chain. We assess and prepare businesses by looking into their technology, finance, data analytics, regulatory requirements, data security and privacy, internal audit, and the third parties our clients rely on, to help clients deliver quality results and meet their strategic objectives.
A career in our Risk and Security Controls practice, within Information Technology Risk Assurance services, will allow you to develop and apply strategies that help clients leverage enterprise technologies so they can get a higher return on their investment, mitigate risks, streamline processes, and find operational inefficiencies. We assist clients in understanding and challenging their current risk profiles and develop strategies to build digital confidence by embracing opportunities to stay competitive through building trust and resilience into their technology systems. We cover a wide range of disciplines, including risk evaluation, operational and strategic Information Technology processes, project governance, application implementation, data integrity, cyber security, and accounting/audit.
Our team helps organizations analyses and assess the security environment and application of our client’s information technology systems. You’ll be part of a highly empowered collaborative team focused on both helping our clients be both better prepared to defend against adversaries on their network, as well as responding to active incidents within their network. Together we can build trust in society and solve important problems.
How will you value add?
Work with PwC’s Clients to deliver Cyber Incident Response services which are aimed at investigating, and containing security incidents for our clients, with a particular focus on advanced targeted attacks
Advise Clients to improve their cyber incident readiness which cover incident response training, playbook development, mock incidents and guiding our clients through the implementation of response and containment procedures
Present technical material in a clear, organized briefing to a mix of technical and non-technical personnel
Determine the extent of the compromise, attributes of any malware and possible data ex-filtrated
Maintain current knowledge of tools and best-practices in advanced persistent threats; tools, techniques, and procedures of attackers; and forensics and incident response
Perform cyber threat monitoring/hunting to detect sign of compromise or malicious activities in our clients’ IT environment
Support other PwC cyber security services when required
Self-motivated and able to demonstrate a passion for this type of work.
At least 8 years’ experience in an analytical role of either network forensics analyst, threat analyst, incident response or security engineer/ consultant
Demonstrates knowledge and experiences in incident handling processes-including preparation, identification, containment, eradication, and recovery-to protect enterprise environments;
Demonstrates thorough abilities and/or a proven record of success in the following areas: Network Analysis, Memory Analysis, Endpoint Analysis, Cyber Incident Lifecycle, NIST 800-61;
Demonstrable experience with at least two of the following tools including, X-Ways, Rekall, Volatility, EnCase, IDA, Regripper, OllyDbg, Wireshark, Network Miner, NFdump, GREP, Crowdstrike Falcon, CarbonBlack Response, Tanium, F-Response and PLASO/Log2Timeline
Experience in investigating cyber incidents in Cloud environment is a plus
Qualification in Incident Response and Forensics such as GCFA, GCFE, GREM, GCIH CHFI, ECIH, CREST Registered Intrusion Analyst, Certified Network or Host Intrusion Analyst are desirable
Education (if blank, degree and/or field of study not specified)
Degrees/Field of Study required:
Degrees/Field of Study preferred:
Certifications (if blank, certifications not specified)
Desired Languages (If blank, desired languages not specified)
Available for Work Visa Sponsorship?
Government Clearance Required?
Job Posting End Date
Job ID: 326214WD
About PwC Singapore
At PwC, our purpose is to build trust in society and solve important problems - this is at the core of everything we do from the value we provide to our clients and society to the decisions we make as a corporate.
Our services started with audit and assurance over a century ago. As times change and the issues faced by businesses and individuals evolved, we have developed specialised capabilities in tax, advisory and consulting to help you address emerging new challenges across focus areas like digital transformation, cyber security and privacy, data, sustainability, mergers and acquisitions, and more.
In Singapore, we have more than 3,500 partners and staff to help resolve complex issues and identify opportunities for public, private and government organisations to progress. As part of the PwC network of more than 284,000 people in 155 countries, we are among the leading professional services networks in the world focusing on helping organisations and individuals create the value they are looking for.