Pwc

FS X-Sector

INAssociateVAPTGCCAdvisoryBangalore

Bangalore, India FULL TIME

The Brief

“IN_Associate_VAPT_GCC_Advisory_Bangalore at Pwc. Skills: Penetration Testing, Vulnerability Management, Active Directory, Social Engineering. Conduct network security analyses. Administer and manage security products”

What You'll Achieve.

Safeguard sensitive information; Enable resilience of digital infrastructure; Protect against threats; Propel transformation; Drive growth; Ensure protection; Deliver continuous operational improvements; Increase cybersecurity investment; Detect, respond, and remediate threats; Demonstrate business impact

Industry & Context.

FS X Sector

Problems you'll solve

Identify vulnerabilities; Develop secure systems; Provide proactive solutions; Identify and analyse potential threats; Manage vulnerabilities; Detect, respond, and remediate threats; Identify security-critical vulnerabilities; Compromise Active Directory environments; Balance project economics with unanticipated issues

What They're Looking For.

Must Have

In-depth knowledge of technical concepts such as application security, network segregation, access controls, IDS/IPS devices, physical security, and information security risk management, Hands-on experience with networking protocols, TCP/IP stack, systems architecture, and operating systems, Ability to perform penetration testing activities using manual stealthy techniques and advanced red team engagements, Capability to identify security critical vulnerabilities without using a scanning tool, Experience in compromising Active Directory environments and demonstrating business impact, Skills in social engineering/phishing activities, including reconnaissance, developing phishing campaigns, and creating malicious payloads, Effective participation in client discussions and meetings, and communicating potential add-on services based on identified weaknesses, Proven record of preparing concise and accurate documents and project deliverables, Ability to balance project economics with unanticipated issues and create a positive work environment for the team

Nice to Have

Expertise in security testing tools like BurpSuite, Mimikatz, Cobalt Strike, PowerSploit, Metasploit, Nessus, HP Web Inspect, and tools from Kali Linux, Proficiency in common programming and scripting languages such as Python, PowerShell, Ruby, Perl, Bash, JavaScript, or VBScript, Deep understanding of well-known cybersecurity frameworks and industry-leading practices such as OWASP, NIST CSF, PCI DSS, and NY-DFS, Experience with traditional security operations, event monitoring, and SIEM tools, Demonstrated ability to manage engagements, mentor junior staff, and balance project economics, documentation skills and proficiency with MS Office and Google Docs, Ability to create a positive team environment and manage workloads effectively, Proactive in seeking guidance, clarification, and feedback, and keeping leadership informed of progress and issues

What You'll Do.

Conduct network security analyses

Administer and manage security products

Oversee firewall and VPN administration

Utilize scripting languages for automation

Work with operating systems and network environments

Apply networking concepts

Use network assessment tools

Perform penetration testing activities

Execute red team engagements

Identify security critical vulnerabilities

Compromise Active Directory environments

Conduct social engineering and phishing activities

Participate in client discussions

Manage engagements with junior staff

Prepare project deliverables

Balance project economics

Monitor team workloads

Meet client expectations

Respect team members' work-life quality

Seek guidance and clarification

Keep leadership informed

How You'll Work.

Team & Collaboration

Work with junior staff; Create a positive team environment; Respect team members' work-life quality; Seek guidance and clarification; Keep leadership informed of progress and issues

Communication Scope

Client Discussions; Communicate potential add-on services; Documenting and presenting findings

Process & Methodology

Manage engagements, Balance project economics, Manage workloads

Free ATS check

Applying for this IN_Associate_VAPT_GCC_Advisory_Bangalore role?

Most applicants get filtered before a human reads their resume. See if yours makes the cut.

Should you apply? AI reads your resume vs this job — match score, gaps to address, ATS keywords.

Skill Signal 51 detected

Core

Penetration Testing ×6

Social Engineering ×6

Red Team Engagements ×4

Required

Vulnerability Management ×3

Active Directory ×3

Network Security Analysis ×3

Security Tools Management ×3

Firewall Administration ×3

VPN Administration ×3

Scripting ×3

Automation ×3

System Management ×3

Network Management ×3

Nice to have

Python

Linux

Windows Operating Systems

TCP/IP

Cybersecurity

Risk Management

Threat Intelligence

Information Security

Security Operations

Phishing

Role Details

Seniority

mid

Type

FULL TIME

Experience

2–+ yrs

Education

Bachelor of Technology

AI-Extracted Insights

Domain Areas

application-security

network-segregation

access-controls

physical-security

information-security-risk-management

cybersecurity-frameworks

owasp

nist-csf

How to Apply on Workday

Workday has a multi-step form — save your progress after every section.
"Apply With LinkedIn" can fail or lose data; manual entry is more reliable.
Watch for the "Submit for Review" final step — hitting "Save" alone does not submit.
Job requisition numbers are useful when following up with HR by email.

ANONYMOUS · UNFILTERED

What do employees actually say about Pwc?

Real rants from real employees. Read before you apply.

Read Company Rants →