IT Services- Red Team Senior Associate
About The Position
At PwC, our people in Offensive Security focus on improving the organization’s resilience against dedicated adversaries by testing key elements of the security program, including technology, people, and process. They work to identify areas for improvement, demonstrate potential business impact, and help strengthen PwC’s ability to prevent, detect, contain, and remediate cyber threats. Those in the Red Team at PwC will focus on simulating realistic adversary activity through full-scope operations, purple teaming, and security initiatives. This includes simulating compromise to achieve specific objectives, collaborating with Blue Teams to validate detection and monitoring coverage, and supporting ongoing security hygiene efforts to identify security issues across PwC environments. Focused on collaboration and resilience, you are building meaningful relationships with security teams and stakeholders while learning how to support and improve offensive security operations. Navigating increasingly complex security scenarios, you are growing your technical expertise in red teaming, adversary simulation, detection validation, and security hygiene. You are expected to anticipate the needs of your team, communicate findings clearly, and deliver high-quality work that helps strengthen PwC’s security posture. Embracing ambiguity, you are comfortable operating in realistic and evolving attack scenarios, asking thoughtful questions, and using each engagement as an opportunity to learn, improve, and drive measurable security outcomes. This position will be part of PwC IT Services (US) LLC, a member of the PwC network of firms. PwC IT Services (US) LLC (a wholly owned subsidiary of PwC IT Services Limited) provides technology services to other PwC member firms. PwC refers to the PwC network and/or one or more of its member firms, each of which is a separate legal entity. Please see www.pwc.com/structure for further details.
Requirements
- Minimum 2 year(s) of experience
- Demonstrating experience performing Red Team and penetration testing assessments
- Demonstrating experience with common pentesting and Red Team tools such as Cobalt Strike or Nighthawk, Mimikatz, Impacket, ADOKit, ROAD Tools, Certify, Rubeus, and Burp Pro
- Demonstrating experience with automation of the deployment of applications and infrastructure (Ansible, Terraform)
- Demonstrating proficiency with a programing or scripting language (C/C++, C#, Python, Go, PowerShell)
- Demonstrating knowledge of Active Directory concepts
- Demonstrating knowledge of Windows architecture and internals
- Demonstrating knowledge of threat actors and the ability to replicate the tactics, techniques and procedures leveraged by adversaries
- Demonstrating high level understanding of the principles of information security engineering, architecture, and application security
Nice To Haves
- Offensive Security Certified Professional (OSCP)
- Certified Red Team Professional (CRTP)
- Bachelor's degree
- Prior system administration, incident response, Security Operations Center (SOC) or network engineering experience
Responsibilities
- Assisting management in the scoping, planning and execution of assessments
- Performing Red Team and penetration testing assessments
- Executing tasks aligned to the Red Team with autonomy
- Presenting technical findings with a focus on business impact to management
- Contributing to the development of a team’s technical acumen
- Establishing thought leadership at the Network Information Security (NIS) and firm-wide level in a particular knowledge area
- Demonstrating cultural dexterity and modifying behavior to the environment/culture
- Collaborating with multiple stakeholders across functional and technical skill sets
- Assisting in collaborating with Information Technology (IT) and NIS to align information security policies and standards, evaluations, and technological tools
- Demonstrating appropriate judgment prior to escalating to management
- Fostering healthy work relationships by demonstrating appropriate conflict-resolution skills
Benefits
- Medical coverage
- Dental coverage
- Vision coverage
- Health savings accounts
- Mental health support
- Family and caregiver support
- Robust time off policy inclusive of sick, vacation and holiday time
- Retirement savings plan with Roth features and company match
Stand Out From the Crowd
Upload your resume and get instant feedback on how well it matches this job.
What This Job Offers
Job Type
Full-time
Career Level
Senior
Education Level
High school or GED
