**Job Description & Summary** At PwC, our cybersecurity professionals focus on protecting organizations against cyber threats through advanced technologies and strategies. They work to identify vulnerabilities, develop secure systems, and provide proactive solutions to safeguard sensitive data. As a cybersecurity generalist at PwC, you will focus on delivering comprehensive security solutions and possess experience across multiple domains, ensuring protection of clients’ systems and data. You will apply a broad understanding of cybersecurity principles and practices to effectively address diverse security challenges. Responsible for identifying, assessing, and tracking risks related to security flaws in systems, applications, and infrastructure: **1. Identification and Monitoring** * Conduct regular scans using *Vulnerability Management* tools (e.g., Qualys, Tenable, Rapid7, XM Cyber, Orca, SecOps ServiceNow). * Monitor vulnerability alerts and reports from internal and external systems. **2. Analysis and Prioritization** * Assess vulnerability criticality based on metrics such as **CVSS** (Common Vulnerability Scoring System). * Prioritize remediation considering business impact and exploitability risk. * Lead follow-up meetings with the client, engaging with their key vendors. **3. Remediation and Mitigation** * Collaborate with the client’s infrastructure, development, and security teams to apply patches or implement compensating controls. * Ensure remediation deadlines align with internal policies and compliance requirements. **4. Communication and Reporting** * Prepare clear reports for management and technical teams, showing status, trends, and risks. * Communicate critical vulnerabilities promptly and effectively. **5. Continuous Improvement** * Evaluate new tools and processes to increase efficiency. * Track emerging threat and vulnerability trends. * Identify opportunities for service quality improvement and review. Hybrid work model. Location: São Paulo/SP #LI-DNI