Job Description

Line of Service Internal Firm ServicesIndustry/Sector Not ApplicableSpecialism OperationsManagement Level Senior Associate & Summary A career in Information Technology, within Internal Firm Services, will provide you with the opportunity to support our core business functions by deploying applications that enable our people to work more efficiently and deliver the highest levels of service to our clients. Youll focus on managing the design and implementation of technology infrastructure within PwC, developing and enhancing both client and internal facing applications within PwC, and providing technology tools that help create a competitive advantage for the Firm to drive strategic business growth.Our Information Technology Security team assists PwC in designing and creating sustainable security solutions to provide foundational capabilities and operational discipline through a focus on enterprise requirements and prioritisation, Information Technology security architecture, and the software development lifecycle.Job Profile Name: Information Security - Information Security Generalist
Template: Cloud Security EngineerJob Summary:A career in Cloud Security Operations, within Internal Firm Services, will provide you with the opportunity to focus on supporting our global internal infrastructure operations and security technologies. Using industry vendors such as Microsoft, Amazon, Google, and other cloud platforms, you will implement and support innovative services for our network of firms. Youll be at the forefront of Internal Firm Services around the globe supporting innovative technology solutions that optimize business processes or enable scalable technology. Our team helps Internal Firm Services support their cloud security components and infrastructure architecture. As part of the team, youll focus on the cloud
security configuration, platform policy management, and all cloud security.:ResponsibilitiesAs a Cloud Security Engineer, youll work as part of a team of problem solvers to support mission critical operations and ensure continued compliance with important Cybersecurity principles in a Cloud environment. This will require using a variety of modern technologies and techniques across multiple providers (Microsoft Azure, Amazon AWS, Google GCP, etc.) while supporting multiple cloud service implementations (IaaS, SaaS, PaaS). Specific responsibilities include but are not limited to:

• Lead the configuration and support of security products, and technologies
• Lead troubleshooting effort to resolve complex technical challenges for our stakeholders
• Develop and maintain documentation for security solutions and processes
• Identify areas of cloud security improvements and drive respective work stream activities
• Provide Cloud Security-related trainings to team members as required
• Lead and solve customer support requests, and coordinate and prioritize resolutions
• Maintain platform and application security posture; and identify, recommend, and or remediate risks associated within the cloud infrastructure
• Work closely with architect teams while developing security controls
• Drive mitigation of reported risks from continuous monitoring solutions
• Maintain the Azure Governance Policy repositories and pipelines
• Design and build internal cloud-based tools to automate security as part of DevOps cycle
• Maintain current and relevant knowledge of policy management, cloud computing, cloud vulnerabilities, and best practices
• Help drive Cloud Security Practices in IaaS/ PaaS and SaaS implementations.
• Conduct cloud security assessments to identify areas of risk and ensure any gaps are remediated
• Collaborate with application development teams for remediation of policy compliance via automated pipelines
• Use build and deployment processes (CI/CD) to promote code to staging and production environments.

Preferred Knowledge/Skills

• 5+ years of experience in Cloud and or information security field

• Cloud platform certifications such as Microsoft, Google, Amazon Web Services
• Proficiency in scripting programming languages - ARM Templates, JSON, PowerShell, Python, YAML
• Data Modeling, Cleaning, Normalizing and Visualization experience.
• Cloud security configuration experience - (Load Balancer, Security Groups, CASB, Key Management)
• Experience with version control systems VSTS and Visual code, Azure DevOps

• Experience with Linux and Windows Operating Systems administration

• IT and Security management best practice (ITIL, COBIT, ISO standards)
• Experience with cloud platform security policy management
• Experience in administration/management of continuous monitoring solutions
• Understanding of container security and orchestration concepts and best practices

• Experience in writing and maintaining risk assessment reports (RARs) and plans of action and milestones (POAMs) for systems hosted in the Cloud
• Excellent verbal and written communication skills to deliver and present documentation, reports, architecture, and findings.

Desired Certifications / Skills

• ISC2 CCSP Certified Cloud Security Professional
• ITIL Certification(s)
• Experience building infrastructure and platforms using Azure Resource Manager, HashiCorp tooling (Terraform, Packer, Vault)
• Familiarity with security frameworks CSA, NIST, CIS, PCI DSS, etc
• Aptitude & willingness to build skills to identify and assess cloud security vulnerabilities and risks
• Ability clearly explain security/compliance risks and recommended remediation
• Demonstrated experience in creating reporting & metrics using Excel (i.e. pivot tables), and Splunk
• Experience in defending attacks utilizing Information Security technologies, including web application firewalls, anti-DDoS technologies, advanced anti-malware solutions, and network forensics and visibility solutions

Mandatory skill sets-Information SecurityCloud SecurityPreferred skill sets-PowerShellPythonJSONYAMLYear of experience required-5
Qualifications-Bachelor of engineering or equivalentEducation (if blank, degree and/or field of study not specified) Degrees/Field of Study required:Degrees/Field of Study preferred:Certifications (if blank, certifications not specified)Required Skills Endpoint Security, Public Key InfrastructureOptional Skills Cloud Access Security Broker (CASB)Desired Languages (If blank, desired languages not specified)Travel RequirementsAvailable for Work Visa Sponsorship?Government Clearance Required?Job Posting End Date

PwC