Managed Detection Response Director

Line of Service

Advisory

Industry/Sector

Not Applicable

Specialism

Managed Services

Management Level

Director

Job Description & Summary

A career within Cyber as a Service, will provide you with the opportunity to help our clients operate effective cybersecurity operations that protects against threats, propels transformation, and drives growth. As companies pivot toward a digital business model, exponentially more data is generated and shared among organizations, partners and customers. We play an integral role in helping our clients ensure they are protected by cyber operations focused on security, efficiently integrate and manage new or existing technology systems to deliver continuous operational improvements and increase their cybersecurity investment, and detect, respond, and remediate threats.

Meaningful work you’ll be part of: 

As a Managed Detection Response Director, you’ll work as part of a team of problem solvers, helping to solve complex business issues from strategy to execution. Responsibilities include but are not limited to:   

 

Leadership and Strategy: 

• Define and execute the strategic vision for the Security Operations and MDR function, aligning it with PwC Canada's overall cybersecurity and business objectives. 

• Provide leadership and guidance to a team of cybersecurity professionals across multiple geographies (in 24x7 environment), fostering a culture of innovation, collaboration, and continuous improvement. 

• Collaborate with other leaders within the Cybersecurity and Privacy practice to develop integrated solutions and services for clients. 

 

Thought Leadership and Innovation: 

• Stay abreast of the latest cybersecurity threats, trends, and industry best practices, and apply this knowledge to enhance the firm's offerings and approach to cybersecurity. 

• Prioritize innovation requirements, set project scope, and collaborate with development teams to deliver quality results. 

• Develop and maintain technical documentation.

MDR Capability Building: 

• Maintain and continue to build a state-of-the-art Security Operations Center (SOC) equipped with cutting-edge tools, technologies, and methodologies for threat detection, incident response, and threat hunting. 

• Enhance the Managed Detection and Response (MDR) services offering, providing clients with proactive threat monitoring, rapid incident response, and containment capabilities. 

• Conduct regular assessments of the SOC and MDR capabilities to identify areas for improvement and ensure the highest level of service delivery. 

 

Client Engagement and Delivery: 

• Engage with clients to understand their unique cybersecurity challenges and requirements and develop tailored solutions to address their needs. 

• Manage SLA and SLO commitments. 

• Act as a subject matter expert during client engagements, advising on Security Operations, MDR, threat hunting, threat content and playbook automation. 

• Lead the delivery of complex cybersecurity projects and steady state managed operations, ensuring high-quality, timely, and cost-effective solutions. 

Experience and skills you’ll use to solve 

• Minimum of 8-10 years of relevant experience in cybersecurity with proven track record of successfully leading and managing large cybersecurity teams, including remote and geographically dispersed resources.

• Experience working with diverse clients, understanding their business challenges, and providing strategic cybersecurity guidance. 

• In-depth knowledge of cybersecurity technologies, including SIEM, EDR, threat intelligence platforms, and other relevant tools. 

• Strong communication and presentation skills, with the ability to articulate complex technical concepts to non-technical stakeholders. 

• Proven expertise in incident response operations, including containment, eradication, and recovery across hybrid environments. 

• Strong Cybersecurity Operations experience in the Power and Utilities sector. Specifically for MDR (Managed Detection and Response services) for IT and OT environments.   

• Operational experience in securing cloud environments (AWS, Azure, GCP, OCI). 

• Ability to evaluate and recommend architecture changes based on operational impact.  

• Preferred Certifications: CISSP , CISM, OSCP, GCIH (GIAC Certified Incident Handler). 

• A firm understanding of cybersecurity frameworks such as those published by leading organizations (e.g. NIST, SANS, ISO etc.). Ability to translate framework to practical advice to clients. 

• The position is based in Toronto Canada, with travel to client sites and other PwC offices as required. 

• PwC Canada is committed to cultivating an inclusive, hybrid work environment. Exact expectations for your team can be discussed with your interviewer.   

 

Why you’ll love PwC 

We’re inspiring and empowering our people to change the world. Powered by the latest technology, you’ll be a part of diverse teams helping public and private clients build trust and deliver sustained outcomes. This meaningful work, and our continuous development environment, will take your career to the next level. We reward your impact, and support your wellbeing, through a competitive compensation package, inclusive benefits and flexibility programs that will help you thrive in work and life. Learn more about our Application Process and Total Rewards Package at: https://jobs-ca.pwc.com/ca/en/life-at-pwc 

 

Education (if blank, degree and/or field of study not specified)

Degrees/Field of Study required:

Degrees/Field of Study preferred:

Certifications (if blank, certifications not specified)

Required Skills

Optional Skills

Accepting Feedback, Accepting Feedback, Active Listening, Analytical Thinking, Coaching and Feedback, Communication, Creativity, Cybersecurity Framework, Cybersecurity Governance, Cybersecurity Risk Management, Cybersecurity Strategy, Cybersecurity Threat Mitigation, Cyber Threat Intelligence, Digital Forensics, Embracing Change, Emotional Regulation, Empathy, Firewall (Network Security), Forensic Investigation, Incident Management, Incident Remediation, Incident Response Plan, Inclusion, Influence, Innovation {+ 27 more}

Desired Languages (If blank, desired languages not specified)

Travel Requirements

Not Specified

Available for Work Visa Sponsorship?

No

Government Clearance Required?

No

Job Posting End Date

At PwC Canada, our most valuable asset is our people and we grow stronger as we learn from one another. We’re committed to creating an equitable and inclusive community of solvers where everyone feels that they truly belong. We understand that experience comes in many forms and building trust in society and solving important problems is only possible if we reflect the mosaic of the society we live in.

We’re committed to providing accommodations throughout the application, interview, and employment process. If you require an accommodation to be at your best, please let us know during the application process.

To learn more about inclusion and diversity at PwC Canada: https://www.pwc.com/ca/en/about-us/diversity-inclusion.html. Be a part of The New Equation.

Chez PwC Canada, notre atout le plus précieux, c’est notre personnel. Et c’est en apprenant les uns des autres que nous devenons plus forts. Nous avons à cœur de créer une communauté équitable et inclusive de professionnels de la résolution de problèmes, dans laquelle chacun se sent vraiment à sa place. Nous savons que l’expérience peut prendre diverses formes et, pour nous, donner confiance au public et résoudre des problèmes importants n’est possible que si notre milieu de travail reflète la diversité de la société dans laquelle nous vivons.

Nous tenons à répondre à vos besoins tout au long du processus de demande d’emploi, d’entrevue et d’embauche. Si vous avez besoin de mesures d’adaptation pour être parfaitement à l’aise, faites-le-nous savoir à l’étape de la demande d’emploi.

Pour en savoir plus sur l’inclusion et la diversité chez PwC Canada: https://www.pwc.com/ca/fr/about-us/diversity-inclusion.html. Faites partie de La Nouvelle équation.