Line of Service
AdvisoryIndustry/Sector
FS X-SectorSpecialism
RiskManagement Level
ManagerJob Description & Summary
At PwC, our people in cybersecurity focus on protecting organisations from cyber threats through advanced technologies and strategies. They work to identify vulnerabilities, develop secure systems, and provide proactive solutions to safeguard sensitive data.Why PWC
At PwC, you will be part of a vibrant community of solvers that leads with trust and creates distinctive outcomes for our clients and communities. This purpose-led and values-driven work, powered by technology in an environment that drives innovation, will enable you to make a tangible impact in the real world. We reward your contributions, support your wellbeing, and offer inclusive benefits, flexibility programmes and mentorship that will help you thrive in work and life. Together, we grow, learn, care, collaborate, and create a future of infinite experiences for each other. Learn more about us.
At PwC, we believe in providing equal employment opportunities, without any discrimination on the grounds of gender, ethnic background, age, disability, marital status, sexual orientation, pregnancy, gender identity or expression, religion or other beliefs, perceived differences and status protected by law. We strive to create an environment where each one of our people can bring their true selves and contribute to their personal growth and the firm’s growth. To enable this, we have zero tolerance for any discrimination and harassment based on the above considerations.
Responsibilities:
Security Analyst Requirement
1. Perform technical assessments of SDLC processes, including code deployment, version control, CI/CD pipelines, and automated testing.
2. Review and validate controls around source code management (e.g., Git), build automation (e.g., Jenkins, Azure DevOps), and release management.
3. Evaluate the use of infrastructure-as-code (IaC), containerization (e.g., Docker, Kubernetes), cloud-native development practices and recovery strategies.
4. Assess the effectiveness of security controls embedded in the SDLC, secrets management including Key Management and secure coding practices.
5. Collaborate with engineering, architecture, and DevOps teams to identify control gaps and recommend improvements.
6. Support assurance work by collecting and reviewing the evidence and preparing the working paper.
Mandatory skill sets:
1. Understanding of GitHub, experience with CI/CD pipelines ie Jenkins, Azure DevOps, GitHub Action.
2. Familiarity with Azure and understanding of cloud-native resources and Infrastructure as Code (IaC).
DevSecOPS, Okta, IAM
Preferred skill sets:
DevSecOPS, Okta, IAM
Years of Experience required:
8 to 10 years
Education qualification:
B.Tech
Education (if blank, degree and/or field of study not specified)
Degrees/Field of Study required: Bachelor of TechnologyDegrees/Field of Study preferred:Certifications (if blank, certifications not specified)
Required Skills
DevSecOpsOptional Skills
Accepting Feedback, Accepting Feedback, Active Listening, Analytical Thinking, Cloud Security, Coaching and Feedback, Communication, Conducting Research, Creativity, Cyber Defense, Cyber Threat Intelligence, Embracing Change, Emotional Regulation, Empathy, Encryption, Inclusion, Information Security, Intellectual Curiosity, Intelligence Analysis, Intelligence Report, Intrusion Detection, Intrusion Detection System (IDS), IT Operations, Learning Agility, Malware Analysis {+ 21 more}Desired Languages (If blank, desired languages not specified)
Travel Requirements
Not SpecifiedAvailable for Work Visa Sponsorship?
NoGovernment Clearance Required?
NoJob Posting End Date