Line of Service
Advisory
Industry/Sector
FS X-Sector
Specialism
Risk
Management Level
Director
Job Description & Summary
At PwC, our people in cybersecurity focus on protecting organisations from cyber threats through advanced technologies and strategies. They work to identify vulnerabilities, develop secure systems, and provide proactive solutions to safeguard sensitive data.
In threat intelligence and vulnerability management at PwC, you will focus on identifying and analysing potential threats to an organisation's security, as well as managing vulnerabilities to prevent cyber attacks. You will play a crucial role in safeguarding sensitive information and enabling the resilience of digital infrastructure.
*Why PWCAt PwC, you will be part of a vibrant community of solvers that leads with trust and creates distinctive outcomes for our clients and communities. This purpose-led and values-driven work, powered by technology in an environment that drives innovation, will enable you to make a tangible impact in the real world. We reward your contributions, support your wellbeing, and offer inclusive benefits, flexibility programmes and mentorship that will help you thrive in work and life. Together, we grow, learn, care, collaborate, and create a future of infinite experiences for each other. Learn more about us.At PwC, we believe in providing equal employment opportunities, without any discrimination on the grounds of gender, ethnic background, age, disability, marital status, sexual orientation, pregnancy, gender identity or expression, religion or other beliefs, perceived differences and status protected by law. We strive to create an environment where each one of our people can bring their true selves and contribute to their personal growth and the firm's growth. To enable this, we have zero tolerance for any discrimination and harassment based on the above considerations.
Role Summary
As a Director within the Cyber Security & Risk Consulting practice, you will lead large-scale cyber transformation, regulatory advisory, and security engineering programs across Financial Services institutions and Global Capability Centers (GCCs).
This role requires deep cyber domain expertise, strong regulatory acumen, commercial ownership, and the ability to advise Boards and CXOs on complex cyber risk matters. The Director will drive revenue growth, lead strategic engagements, and position the firm as a trusted cyber advisor in the FS ecosystem.
Responsibilities
Cyber Strategy & Transformation Leadership
- Define enterprise cyber security strategy aligned to business, digital, and cloud transformation objectives.
- Design and implement security operating models (centralized, federated, hybrid).
- Lead enterprise-wide cyber maturity assessments across governance, SOC, cloud, IAM, data security, and resilience.
- Drive cyber transformation programs including:
- SOC modernization & detection engineering maturity
- Zero Trust architecture design
- Cloud security transformation
- Identity & Access Management strategy
- Data protection & encryption frameworks
- Threat intelligence & proactive defense programs
- Advise on secure digital banking, API security, fintech integrations, and open banking security controls.
Advanced Cyber Security Expertise
Provide hands-on advisory and oversight across:
- Security Operations & Threat Management
- SOC strategy, transformation, and performance optimization.
- Detection engineering and use-case maturity enhancement.
- SIEM/SOAR/XDR architecture design and optimization.
- Threat hunting frameworks aligned to MITRE ATT&CK.
- Incident response, cyber forensics, and breach readiness.
- Red team / purple team program advisory.
- Cloud & Infrastructure Security
- Cloud security governance (AWS, Azure, GCP).
- Secure DevSecOps integration.
- Container & Kubernetes security oversight.
- Cloud posture management and configuration risk controls.
- Network security architecture (segmentation, SASE, ZTNA).
- IAM and Privileged Access Management frameworks.
- Zero Trust access models.
- Data classification, encryption, and DLP strategy.
- Privacy-by-design advisory.
- AI/ML security risk governance.
- Ransomware resilience programs.
- Third-party cyber risk and supply chain security.
- Operational technology (where applicable in FS ecosystems).
Regulatory & Compliance Advisory (FS Focused)
- Lead regulatory transformation engagements aligned to RBI, SEBI CSCRF, IRDAI, and global FS regulations.
- Support supervisory audits, thematic inspections, and remediation governance.
- Build board-level cyber reporting frameworks.
- Align cyber programs to NIST CSF, ISO 27001, COBIT, and global best practices.
- Design operational resilience and crisis management frameworks for regulated entities.
GCC & Cross-Border Cyber Programs
- Design global cyber governance alignment between GCCs and parent institutions.
- Establish centralized SOC and cyber command centers within GCC environments.
- Drive cross-border cyber policy harmonization.
- Build GCC cyber centers of excellence across threat management and risk governance.
- Support global transformation programs with regional regulatory alignment.
Revenue, Growth & Market Leadership
- Own and grow a defined cyber security portfolio within FS.
- Drive multi-million revenue targets and margin accountability.
- Lead large RFP pursuits, solution design, and commercial structuring.
- Develop sector-focused cyber propositions (e.g., Digital Banking Security, GCC SOC Optimization, Regulatory Remediation Programs).
- Identify and capitalize on cross-service line opportunities.
Required Qualifications & Skills
- 15–20+ years of experience in Cyber Security & Risk Consulting within Financial Services.
- Demonstrated expertise across both cyber governance and technical security domains.
- Leading complex cyber transformation programs
- Managing large portfolios and revenue targets
- Advising CXOs and Board-level stakeholders
- Deep regulatory knowledge (RBI, SEBI, IRDAI, global FS regulators).
- Strong exposure to SOC architecture, detection engineering, cloud security, IAM, and resilience programs.
Preferred Certifications:
CISSP, CISM, CRISC, ISO 27001 LA/LI, CCSP, Cloud Security certifications.
Leadership Attributes
- Strong executive presence and commercial acumen.
- Ability to translate cyber risk into measurable business impact.
- Balanced strategic thinker with strong technical credibility.
- Growth-oriented, market-driven, and delivery-accountable.
- High integrity and strong governance mindset.
Mandatory skill sets: GRC, Cyber Strategy
Preferred skill sets: GRC, Cyber Strategy
Years of experience required: 13+years
Education qualification: Any Graduation
Education (if blank, degree and/or field of study not specified)
Degrees/Field of Study required: MBA (Master of Business Administration), Bachelor of Engineering
Degrees/Field of Study preferred:
Certifications (if blank, certifications not specified)
Required Skills
Cybersecurity Strategy Development
Optional Skills
Accepting Feedback, Accepting Feedback, Active Listening, Analytical Thinking, Cloud Security, Coaching and Feedback, Communication, Conducting Research, Creativity, Cyber Defense, Cyber Threat Intelligence, Embracing Change, Emotional Regulation, Empathy, Encryption, Inclusion, Influence, Information Security, Innovation, Intellectual Curiosity, Intelligence Analysis, Intelligence Report, Intrusion Detection, Intrusion Detection System (IDS), IT Operations + 28 more
Desired Languages (If blank, desired languages not specified)
Travel Requirements
Available for Work Visa Sponsorship
Government Clearance Required
Job Posting End Date
May 10, 2026
