Cybersecurity Security Operations and Crisis / Incident Management | Director | Cyber Consulting | Advisory

Client Support & Consulting Leadership 

• Lead and manage Cyber Incident Response engagements, delivering expert technical and strategic guidance to clients facing complex cybersecurity incidents and crises. 

• Advise clients on preparing, detecting, analysing, containing and recovering from various cyber threats such as ransomware, data breaches and account compromises. 

• Provide thought leadership and best practice recommendations to evolve client security operations capabilities and incident response frameworks. 

• Partner with clients to design and run realistic incident response crisis simulations and tabletop exercises to strengthen organisational readiness. 

• Support clients in aligning incident handling processes with regulatory requirements, including NIS2, GDPR and industry best practice guidelines / standards. 

Business Development & Client Relationship Management 

• Drive the development of a strong consulting pipeline by identifying and pursuing new business opportunities within existing and new clients. 

• Cultivate and expand long-term client relationships, acting as a trusted advisor on cybersecurity incident management and security operations strategies. 

• Collaborate with PwC’s wider teams and ecosystems to deliver integrated solutions that meet client needs. 

• Represent PwC at industry events, forums and in collaboration with bodies such as the NCSC and ENISA to showcase expertise and influence market thinking. 

Security Operations & Incident Response Expertise 

• Lead Security Operations Centre (SOC) advisory services, helping clients establish or mature 24/7 security monitoring, threat hunting and incident response capabilities. 

• Oversee the development and continuous improvement of SOC processes, incident response playbooks and threat detection methodologies tailored to client risk profiles. 

• Guide threat intelligence and threat hunting initiatives, ensuring clients stay ahead of evolving threat landscapes through proactive monitoring and advanced analytics. 

Team Development & Leadership 

• Recruit, develop, mentor and inspire a diverse consulting team, fostering a high-performance, collaborative culture aligned with PwC’s values. 

• Provide coaching and leadership to technical teams to build skills in incident response, digital forensics, threat hunting and security operations advisory. 

• Drive continuous learning and innovation to keep the team and services at the forefront of cybersecurity advancements. 

Governance & Reporting 

• Manage collaboration with external service providers such as managed security service providers (MSSPs) supporting clients’ SOC and incident response functions. 

• Deliver regular performance metrics, incident reviews and strategic insights to client leadership teams to support informed decision-making. 

Your Profile 

• Bachelor's degree in Cyber Security, Computer Science, Engineering, Mathematics or related discipline. 

• Minimum 10+ years of experience in Cyber Security with extensive experience dedicated to Incident Response, Crisis Management and Security Operations. 

• Proven track record of building, leading and consulting on SOC, preferably across hybrid or outsourced models. 

• Experience providing cybersecurity advisory services to clients in a consulting environment, including client engagement and business development responsibilities. 

• Strong technical knowledge of cyber security monitoring tools (SIEM, EDR, MDR, IDP/IPS etc.), forensic techniques, threat hunting and hands-on incident response. 

• Familiarity with red team activities and penetration testing is beneficial. 

• Demonstrated ability to effectively engage with regulators, law enforcement, third parties and external authorities during cyber security incidents. 

• Excellent communication skills with experience delivering impactful presentations and producing high-quality reports for diverse audiences. 

• Proven leadership skills with experience in mentoring teams and driving high-performance cultures. 

• Relevant professional certifications such as CISSP, CISM, SANS GIAC, OSCP, or equivalent is highly desirable.