Jobfoundry
Jobfoundry
PwC

Risk Services, Senior Associate / Assistant Manager - Offensive Security (Security Testing Delivery)

PwC
ConsultingSingapore - Marina One, SingaporeOnsitePosted 6 days ago
Apply Now

About the role

AI summarised

We are seeking an experienced offensive security professional to take a leadership role in delivering end-to-end Security Testing engagements (VAPT, HCR, SCR, etc.) within our Risk and Security Controls practice. This role requires a blend of strong technical expertise in security assessments, proven project management capabilities, and a commercial mindset to help clients strengthen their information technology security posture.

ConsultingOnsite

Key Responsibilities

  • Own and manage Security Testing engagements end-to-end, including scoping, scheduling, resource allocation, execution, quality review, reporting, and closure.
  • Manage multiple concurrent projects while ensuring adherence to SLAs, timelines, and quality benchmarks.
  • Develop project plans, trackers, and status dashboards for all active engagements.
  • Conduct technical assessments including Vulnerability Assessments and Penetration Testing (VAPT) across networks, web applications, mobile apps, APIs, cloud environments, and infrastructure.
  • Simulate cyber-targeted attacks using adversary TTPs when red team engagements are required.
  • Prepare detailed reports and presentations outlining identified vulnerabilities, attack paths, and actionable remediation recommendations for technical and executive audiences.
  • Define and continuously improve Security Testing delivery processes, templates, checklists, and methodologies for operational efficiency.

Requirements

  • Bachelor's degree in Computer Engineering/Science, Information Security, or a related technical discipline (or equivalent work experience).
  • Minimum 3-5 years of relevant experience in offensive security or Security Testing, preferably in a consulting environment.
  • Proven track record managing multiple Security Testing projects simultaneously under tight deadlines.
  • Hands-on experience in end-to-end engagement delivery (scoping, execution, reporting, and closure).
  • Experience with effort estimation, scoping, and pricing of security assessment engagements.
  • Ability to conduct kick-off calls, weekly status reviews, and post-engagement debriefs with clients.