Security Architect - Senior Associate
PwC UK – Manchester, United Kingdom
About The Role
PwC’s global cybersecurity strategy revolves around four key points: identify, control, and reduce the attack surface across the member firm network and increase our adversaries’ cost of attack.
As a Security Architect within the UK CISO function, you will work primarily with internal stakeholders in a non-client facing role. You will provide security architecture and technical expertise in support of the UK CISO’s strategic goals and enable the UK firm’s technology enablement strategy.
Key Responsibilities
* Support business teams to design secure technology solutions aligned to the strategy of the global Network of PwC member firms.
* Engage business and technology stakeholders at all levels of seniority and specialism to gather goals and requirements.
* Perform architecture design reviews and threat modelling to identify potential risks.
* Put forward controls and mitigations that ensure PwC UK’s data and reputation are protected.
* Contribute to reference architectures to promote security by design.
* Help evolve security governance and procedures used by both PwC UK and the global Network of member firms.
* Support Senior Architects and take an active role in impactful security projects and initiatives across all technology domains, with a current focus on Cloud and AI Security.
* Assess any risks associated with new technologies or proposed changes in recommended architectures and design patterns, and advise on important security-related technologies.
* Contribute to the delivery of technology transformation programmes and global security initiatives.
Required Skills & Qualifications
* 2–3 years in Information Security or adjacent roles (e.g., Security Engineering, Security Operations, Application Security).
* Foundational understanding of enterprise security concepts such as IAM, network security basics, encryption/key management, vulnerability management, application security, data security, etc.
* Ability to read and produce basic architecture diagrams and write clear, concise security requirements.
* Strong communicator, collaborative, curious and comfortable learning new technologies.
* Cyber Security or Security Architecture certifications welcome from recognised institutions, e.g., ISC2, ISACA, CompTIA, SABSA, BCS.
* Exposure to at least one major cloud provider (Azure, AWS, GCP) and its core security services.
* Domain landscape knowledge of governance and technical security principles.
* Experience participating in design or change reviews.
Candidate Profile
* Strong communicator, comfortable working with business teams and technical audiences with a passion and interest in the cyber security arena.
* Able to build relationships and collaborate with a range of UK and global stakeholders including global information security experts, emerging technology specialists and risk teams.
* Problem-solver who can prioritise and identify problems and exercise sound judgement to elevate when appropriate.
* Ability to adapt and learn new concepts quickly and advocate/champion the principles of security best practice.
* Broad understanding of technology and how security is applied to technology in an enterprise setting.
* Inquisitive nature and intuition regarding what questions to ask, when, and their relative significance.
* Ability to frame threats and exposures in a business context recognised by non-technical staff and executives.
* High level understanding of PwC’s business model, service offerings, and business operating environment as it pertain to the firm’s threat landscape.
Benefits
PwC UK offers a dynamic work environment, professional development opportunities, and a commitment to diversity and inclusion.
#J-18808-Ljbffr