At PwC, our cybersecurity professionals focus on protecting organizations from cyber threats using advanced technologies and strategies. They work to identify vulnerabilities, develop secure systems, and offer proactive solutions to safeguard sensitive data. As a cybersecurity generalist at PwC, you will focus on providing comprehensive security solutions and expertise across various domains, maintaining the protection of client systems and data. You will apply a broad understanding of cybersecurity principles and practices to effectively address a variety of security challenges. We invite you to join our global community of specialists, who combine ingenuity and passion with the latest technology to solve today's and tomorrow's challenges. Transform your potential into a unique experience. Join us as an Offensive Security Senior to be part of our team and develop different projects.
As an Offensive Security Senior at PwC, your main challenges will include:
- Design, plan, and execute Red Team campaigns and simulations.
- Technically lead offensive security projects.
- Perform offensive research to identify new vulnerabilities, techniques, and tools that can be applied in real simulations.
- Participate in defining processes, methodologies, and best practices within the Red Team area.
Key Responsibilities:
Line of Service
Advisory
Industry/Sector
Not Applicable
Specialism
Cybersecurity & Privacy
Management Level
Senior Associate
Job Description & Summary
En PwC, nuestra gente en ciberseguridad se centra en proteger a las organizaciones de las amenazas cibernéticas mediante tecnologías y estrategias avanzadas. Trabajan para identificar vulnerabilidades, desarrollar sistemas seguros y ofrecer soluciones proactivas para salvaguardar datos sensibles.
Como generalista de ciberseguridad en PwC, te enfocarás en proporcionar soluciones de seguridad integrales y experiencia en diversos dominios, manteniendo la protección de los sistemas y datos de los clientes. Aplicarás un entendimiento amplio de los principios y prácticas de ciberseguridad para abordar de manera efectiva una variedad de desafíos de seguridad.
Te invitamos a sumarte a nuestra comunidad de especialistas en todo el mundo, que combinan ingenio y pasión con la última tecnología para resolver los desafíos de hoy y mañana. Transformá tu potencial en una experiencia única.
Sumate como Offensive Security Senior para formar parte de nuestro equipo y desarrollar diferentes proyectos.
Principales desafíos
- Diseñar, planificar y ejecutar campañas y simulaciones de Red Team.
- Liderar técnicamente proyectos de seguridad ofensiva.
- Realizar research ofensivo para identificar nuevas vulnerabilidades, técnicas y herramientas que puedan ser aplicadas en simulaciones reales.
- Participar en la definición de procesos, metodologías y mejores prácticas dentro del área de Red Team.
Requisitos
- Sólida experiencia en ciberseguridad ofensiva, pentesting, explotación de vulnerabilidades en aplicaciones web, redes, sistemas operativos y servicios críticos.
- Formación académica en Ingeniería en Sistemas, Ingeniería en Informática, Ciencias de la Computación, Telecomunicaciones o carreras afines.
- Formación específica y certificaciones profesionales en seguridad informática y ciberseguridad ofensiva, tales como OSCP (Offensive Security Certified Professional), OSCE, CEH (Certified Ethical Hacker), eCPPT, o similares.
- Cursos o especializaciones en Red Teaming, pentesting, hacking ético, análisis de vulnerabilidades y seguridad ofensiva.
- Dominio de herramientas ofensivas como Cobalt Strike, Metasploit, BloodHound, Empire, y otras plataformas para simulación de ataques persistentes.
- Contar preferentemente con conocimientos de:
- Frameworks y estándares de seguridad (MITRE ATT&CK, NIST, ISO 27001).
- Protocolos de red, infraestructura IT, seguridad en la nube (AWS, Azure, Google Cloud) y entornos híbridos.
- Idioma inglés intermedio.
Todas las personas calificadas serán consideradas para trabajar en PwC sin importar etnia; credo; color; religión; nacionalidad; edad; discapacidad; neurodiversidad; orientación sexual; identidad o expresión de género; estado civil, o cualquier otra condición protegida por la ley. PwC se enorgullece de ser una organización inclusiva y brindar igualdad de oportunidades.
- Comprender la importancia de la correcta gestión de la información.
- Conocimiento en seguridad de la información y protección de datos.
- Correcta gestión de la seguridad de la información.
Education (if blank, degree and/or field of study not specified)
Degrees/Field of Study required:
Degrees/Field of Study preferred:
Certifications (if blank, certifications not specified)
Required Skills
Optional Skills
Accepting Feedback, Accepting Feedback, Active Listening, Agile Methodology, Analytical Thinking, Azure Data Factory, Communication, Creativity, Cybersecurity, Cybersecurity Framework, Cybersecurity Policy, Cybersecurity Requirements, Cybersecurity Strategy, Embracing Change, Emotional Regulation, Empathy, Encryption Technologies, Inclusion, Intellectual Curiosity, Learning Agility, Managed Services, Optimism, Privacy Compliance, Regulatory Response, Security Architecture {+ 8 more}
Desired Languages (If blank, desired languages not specified)
Travel Requirements
Not Specified
Available for Work Visa Sponsorship?
No
Government Clearance Required?
No
Job Posting End Date
Eligibility / Qualification Required:
- Solid experience in offensive cybersecurity, pentesting, exploitation of vulnerabilities in web applications, networks, operating systems, and critical services.
- Academic background in Systems Engineering, Computer Engineering, Computer Science, Telecommunications, or related fields.
- Specific training and professional certifications in information security and offensive cybersecurity, such as OSCP (Offensive Security Certified Professional), OSCE, CEH (Certified Ethical Hacker), eCPPT, or similar.
- Courses or specializations in Red Teaming, pentesting, ethical hacking, vulnerability analysis, and offensive security.
- Proficiency in offensive tools such as Cobalt Strike, Metasploit, BloodHound, Empire, and other platforms for persistent attack simulation.
- Preferably have knowledge of: Security frameworks and standards (MITRE ATT&CK, NIST, ISO 27001). Network protocols, IT infrastructure, cloud security (AWS, Azure, Google Cloud), and hybrid environments.
- Intermediate English language proficiency.
- Understand the importance of correct information management.
- Knowledge in information security and data protection.
- Correct management of information security.
Required Skills:
- Accepting Feedback
- Active Listening
- Agile Methodology
- Analytical Thinking
- Azure Data Factory
- Communication
- Creativity
- Cybersecurity
- Cybersecurity Framework
- Cybersecurity Policy
- Cybersecurity Requirements
- Cybersecurity Strategy
- Embracing Change
- Emotional Regulation
- Empathy
- Encryption Technologies
- Inclusion
- Intellectual Curiosity
- Learning Agility
- Managed Services
- Optimism
- Privacy Compliance
- Regulatory Response
- Security Architecture
Desired Languages:
General Conditions:
All qualified individuals will be considered for employment at PwC regardless of ethnicity; creed; color; religion; nationality; age; disability; neurodiversity; sexual orientation; gender identity or expression; marital status, or any other condition protected by law. PwC is proud to be an inclusive organization and provide equal opportunities.
- Travel Requirements Not Specified
- Available for Work Visa Sponsorship? No
- Government Clearance Required? No
How to Apply:
No explicit application instructions (e.g., email address, application portal URL, postal address) were provided in the text. Applicants are advised to refer to the original job posting source for application details.
View Official Posting & Apply