Manager - DevSecOps and Emerging Technology Security Advisory

IN_Associate_DevSecOps_Advisory Corporate_Advisory_Gurugram

Line of Service

Advisory

Industry/Sector

Not Applicable

Specialism

Risk

Management Level

Associate

Job Description & Summary

At PwC, our people in cybersecurity focus on protecting organisations from cyber threats through advanced technologies and strategies. They work to identify vulnerabilities, develop secure systems, and provide proactive solutions to safeguard sensitive data.

In threat intelligence and vulnerability management at PwC, you will focus on identifying and analysing potential threats to an organisation's security, as well as managing vulnerabilities to prevent cyber attacks. You will play a crucial role in safeguarding sensitive information and enabling the resilience of digital infrastructure.

Why PWC

At PwC, you will be part of a vibrant community of solvers that leads with trust and creates distinctive outcomes for our clients and communities. This purpose-led and values-driven work, powered by technology in an environment that drives innovation, will enable you to make a tangible impact in the real world. We reward your contributions, support your wellbeing, and offer inclusive benefits, flexibility programmes and mentorship that will help you thrive in work and life. Together, we grow, learn, care, collaborate, and create a future of infinite experiences for each other. Learn more about us.

At PwC, we believe in providing equal employment opportunities, without any discrimination on the grounds of gender, ethnic background, age, disability, marital status, sexual orientation, pregnancy, gender identity or expression, religion or other beliefs, perceived differences and status protected by law. We strive to create an environment where each one of our people can bring their true selves and contribute to their personal growth and the firm’s growth. To enable this, we have zero tolerance for any discrimination and harassment based on the above considerations.

Responsibilities:

Security Analyst Requirement 

1.            Perform technical assessments of SDLC processes, including code deployment, version control, CI/CD pipelines, and automated testing. 

2.           Review and validate controls around source code management (e.g., Git), build automation (e.g., Jenkins, Azure DevOps), and release management. 

3.           Evaluate the use of infrastructure-as-code (IaC), containerization (e.g., Docker, Kubernetes), cloud-native development practices and recovery strategies. 

4.           Assess the effectiveness of security controls embedded in the SDLC, secrets management including Key Management and secure coding practices. 

5.           Collaborate with engineering, architecture, and DevOps teams to identify control gaps and recommend improvements. 

6.           Support assurance work by collecting and reviewing the evidence and preparing the working paper. 

Mandatory skill sets:

1.            Understanding of GitHub, experience with CI/CD pipelines ie Jenkins, Azure DevOps, GitHub Action. 

2.           Familiarity with Azure and understanding of cloud-native resources and Infrastructure as Code (IaC). 

  DevSecOPS, Okta, IAM

Preferred skill sets:

DevSecOPS, Okta, IAM

Years of Experience required:

8 to 10 years 

Education qualification:

B.Tech

Education (if blank, degree and/or field of study not specified)

Degrees/Field of Study required: Bachelor of EngineeringDegrees/Field of Study preferred:

Certifications (if blank, certifications not specified)

Required Skills

Security Requirements

Optional Skills

Accepting Feedback, Accepting Feedback, Active Listening, Cloud Security, Communication, Conducting Research, Cyber Defense, Cyber Threat Intelligence, Emotional Regulation, Empathy, Encryption, Inclusion, Information Security, Intellectual Curiosity, Intelligence Analysis, Intelligence Report, Intrusion Detection, Intrusion Detection System (IDS), IT Operations, Malware Analysis, Malware Detection Tools, Malware Intelligence Gathering, Malware Research, Malware Reverse Engineering, Malware Sandboxing {+ 11 more}

Desired Languages (If blank, desired languages not specified)

Travel Requirements

Not Specified

Available for Work Visa Sponsorship?

No

Government Clearance Required?

No

Job Posting End Date

March 10, 2026

Experience Level

Senior Level