Cyber Defense & Engineering - Cloud Security Consultant, Director

Industry/Sector

Not Applicable

Specialism

Cybersecurity & Privacy

Management Level

Director

Job Description & Summary

At PwC, our people in cybersecurity focus on protecting organisations from cyber threats through advanced technologies and strategies. They work to identify vulnerabilities, develop secure systems, and provide proactive solutions to safeguard sensitive data.

In cloud security at PwC, you will be responsible for designing, implementing and elevating the security posture across our clients' cloud environments, covering IaaS, PaaS and SaaS. Your work will involve having a deep technical knowledge of cloud security and you will work with one or more Cloud Service Providers (CSP) to implement security protocols, monitor for potential security breaches, conduct risk assessments and vulnerability testing of cloud-based systems, and stay up to date with the latest security threats and trends in cloud technology.

Translating the vision, you set the tone, and inspire others to follow. Your role is crucial in driving business growth, shaping the direction of client engagements, and mentoring the next generation of leaders. You are expected to be a guardian of PwC's reputation, understanding that quality, integrity, inclusion and a commercial mindset are all foundational to our success. You create a healthy working environment while maximising client satisfaction. You cultivate the potential in others and actively team across the PwC Network, understanding tradeoffs, and leveraging our collective strength.

Examples of the skills, knowledge, and experiences you need to lead and deliver value at this level include but are not limited to:

• Lead in line with our values and brand.

• Develop new ideas, solutions, and structures; drive thought leadership.

• Solve problems by exploring multiple angles and using creativity, encouraging others to do the same.

• Balance long-term, short-term, detail-oriented, and big picture thinking.

• Make strategic choices and drive change by addressing system-level enablers.

• Promote technological advances, creating an environment where people and technology thrive together.

• Identify gaps in the market and convert opportunities to success for the Firm.

• Adhere to and enforce professional and technical standards (e.g. refer to specific PwC tax and audit guidance) the Firm's code of conduct, and independence requirements.

Minimum Degree Required

Bachelor's Degree

Minimum Year(s) of Experience

10 year(s)

Preferred Qualifications

Preferred Fields of Study

Computer Engineering,Computer Applications,Computer Programming,Computer Science,Cybersecurity,Information CyberSecurity,Information Security,Information Technology,Management Information Systems

Preferred Knowledge/Skills

Demonstrates extensive abilities and/or a proven record of success as a team leader in the following areas:

• Define and drive enterprise cloud security strategies by aligning security architecture, governance, and risk management to business objectives and regulatory requirements, enabling secure and scalable adoption of multi-cloud platforms.

• Lead large-scale, multi-workstream cloud security programs across AWS, Azure, or GCP environments, ensuring delivery quality across complex client engagements

• Advise executive stakeholders on cloud risk, security architecture, and security transformation roadmaps, translating technical risks into business impact and investment priorities

• Set the direction for cloud governance frameworks and ensure their consistent adoption across multi-cloud environments, driving scalable control enforcement and compliance outcomes

• Oversee the design and implementation of secure-by-design cloud landing zones and Infrastructure-as-Code standards, enabling rapid, scalable, and compliant application deployment across enterprise environments

• Define enterprise IAM strategies including zero trust architecture, privileged access management, and identity models, balancing security, usability, and regulatory compliance across global environments

• Drive the design and adoption of secure cloud network architectures, including segmentation, private connectivity, and zero trust principles, standardizing patterns across business units and client environments

• Establish data protection and governance strategies for cloud platforms, including encryption, key management, data classification, and secure data lifecycle management across analytics and AI ecosystems

• Define and scale Cloud Security Posture Management (CSPM/CNAPP) programs, including risk prioritization models, automated remediation, and compliance alignment across enterprise environments

• Drive resilience strategy for cloud platforms, including high availability, disaster recovery, and business continuity planning, ensuring alignment with enterprise risk tolerance and operational requirements

• Lead security strategy for AI/ML and data platforms, ensuring protection of models, pipelines, and sensitive data across the lifecycle while enabling secure innovation

• Oversee enterprise cloud security assessments, leveraging data-driven insights from configurations, code, permissions, and logs to inform risk posture and remediation strategies

• Build and scale high-performing cloud security teams, including talent development, coaching, and leadership pipeline creation, fostering a culture of innovation and delivery excellence

• Drive business development and revenue growth, originating and expanding cloud security engagements, leading pursuits, and contributing to account strategy and client expansion

• Develop strategic alliances with cloud and security vendors (e.g., AWS, Microsoft, Google, CNAPP providers), driving joint solutions, accelerators, and market differentiation

• Lead the development of firm accelerators, including reusable architectures, frameworks, and automation tooling to scale delivery and enhance margins

• Champion innovation in AI-enabled security solutions, leveraging automation and generative AI to improve delivery efficiency, risk detection, and decision-making

• Represent the firm in thought leadership and industry forums, contributing to market presence and shaping perspectives on cloud security and emerging risks

Travel Requirements

Up to 40%

Job Posting End Date

The salary range for this position is: $155,000 - $410,000. Actual compensation within the range will be dependent upon the individual's skills, experience, qualifications and location, and applicable employment laws. All hired individuals are eligible for an annual discretionary bonus. PwC offers a wide range of benefits, including medical, dental, vision, 401k, holiday pay, vacation, personal and family sick leave, and more. To view our benefits at a glance, please visit the following link: https://pwc.to/benefits-at-a-glance

As PwC is an equal opportunity employer, all qualified applicants will receive consideration for employment at PwC without regard to race; color; religion; national origin; sex (including pregnancy, sexual orientation, and gender identity); age; disability; genetic information (including family medical history); veteran, marital, or citizenship status; or, any other status protected by law.

PwC does not intend to hire experienced or entry level job seekers who will need, now or in the future, PwC sponsorship through the H-1B lottery, except as set forth within the following policy: https://pwc.to/H-1B-Lottery-Policy.

Learn more about how we work: https://pwc.to/how-we-work

For only those qualified applicants that are impacted by the Los Angeles County Fair Chance Ordinance for Employers, the Los Angeles' Fair Chance Initiative for Hiring Ordinance, the San Francisco Fair Chance Ordinance, San Diego County Fair Chance Ordinance, and the California Fair Chance Act, where applicable, arrest or conviction records will be considered for Employment in accordance with these laws. At PwC, we recognize that conviction records may have a direct, adverse, and negative relationship to responsibilities such as accessing sensitive company or customer information, handling proprietary assets, or collaborating closely with team members. We evaluate these factors thoughtfully to establish a secure and trusted workplace for all.

Applications will be accepted until the position is filled or the posting is removed, unless otherwise set forth on the following webpage. Please visit this link for information about anticipated application deadlines: https://pwc.to/us-application-deadlines