Cyber Incident Response | Director | Cyber Consulting | Advisory

As a Cyber Incident and Crisis Director youll work as part of a team of problem solvers helping to resolve complex cyber security incidents and reform and improve business strategies to mitigate and reduce risk of future impact. The PwC Evolved Professional skills and responsibilities for this management level include but are not limited to:

Responsibilities:

• Manage Cyber Incident Response engagements providing leadership and technical subject matter expertise

• Assist our clients in preparing detecting analysing containing and recovering from a variety of threats e.g. ransomware data leaks compromised accounts

• Provide Compromise Assessment and Threat Hunting services on a proactive basis to our clients

• Work with the team to develop realistic Incident Response scenarios for Cyber simulations and tabletop exercises

• Collaborate with leading bodies such as NCSC and ENISA to improve frameworks early warning capabilities and knowledge sharing

• Help us grow the Incident Response team and service offerings

• Identify and evaluate the latest technologies tools and methods

• Keep apprised of the latest threats

• Be acutely aware of the legal and regulatory requirements faced by our clients

Requirements:

• Significant experience in Crisis Management and Incident Response

• Experience in leading technical teams

• Strong investigative skills

• Knowledge of digital forensic techniques

• Experience with collecting data from a variety of sources such as end-points servers mobile devices and cloud based assets

• Knowledge of more esoteric skills such as malware analysis network forensics and memory forensics is a plus

• Experience with different SIEMs and EDR/MDR platforms is a plus

• Experience performing Red Team actions (e.g. penetration testing) is a plus

• Problem solving skills to resolve issues effectively while maintaining a high level of flexibility professionalism and integrity

• Customer focused mindset

• Excellent oral and written communication skills

• Able to produce high-quality reports conveying complex highly technical information to a variety of audiences

• Ability to influence technical discussions and decisions

• One or more technical security certifications is a plus:

  • SANS/GIAC (GCFE GCFA GCFR GCIH GNFA GREM other technical certs)

  • Offensive Security (OSCP OSEP OSED OSWE OSEE)

  • ISC (CISSP CCSP or other certs)

  • ISACA (CISA CISM CGEIT CRISC or other certs)

• 10 years of experience in cyber security digital forensics or a related field

• 10 years of full-time dedicated experience in Incident Response focused roles

• Bachelors degree in Computer Science Engineering Mathematics related field; or additional relevant professional experience