PwC and AWS: managed security services

PwC’s Cybersecurity helps clients drive shareholder value through seamless and safe cloud adoption and operations


Companies recognize the need to accelerate their digitization journey, but often at the expense of cyberdefense functions. With the constant threat of ever-evolving cyber attacks, the need for vigilance is greater than ever before. But let’s face it - it can be hard to keep up with the vast number of technology tools and how they work together to protect against cyber threats.

Enter PwC and AWS’ Managed Security Services. Together, we can help you get the most out of your cyber operating models and technology. More importantly, we can help you evolve your cyber capabilities over time through ongoing cyber reviews, design, implementation and operations.

The Challenge: Enterprises often try to solve tomorrow’s business problems with yesterday’s cyber operating model

The opportunity: Create a future-focused security model to meet your business challenges head on

PwC has longstanding cybersecurity and privacy operations

Manage IAM identities and protect sensitive information in real-time with speed and agility using:

  • IAM/PAM managed cloud hosting
  • IAMaaS operations
  • On-prem IAM/PAM operations
  • Manual provisioning & automation

Build and operate an end-to-end vulnerability management program, perform high volume security testing, and monitor for change over time. Service offerings include: 

  • VM-as-a-Service
  • High-volume security testing
  • Continuous perimeter monitoring

Provide 24/7/365 security event monitoring, provide security engineering support, and implement automation that can decrease time to detection and resolution of security incidents. Service offerings include: 

  • 24/7 monitoring and response
  • Security technology engineering
  • Network and Host monitoring
  • Process automation and orchestration

Establish highly-repeatable, high volume compliance and security assessments that can provide a holistic view of risk across your enterprise consistently and efficiently. Service offerings include: 

  • Cyber cloud controls assessments
  • Application risk assessments
  • TPRM
  • Forensic monitoring

Establish robust eDiscovery and analytics. Create agile, scalable, document review. And get assistance with performing reputational- and integrity-based due diligence. Service offerings include: 

  • Discovery Managed Services
  • Managed Review
  • Forensic Intelligence

Complementary capabilities so you can meet cyber security challenges head on

Trust. It’s the foundation of what our cloud, cyber and managed services are built on. With 24/7/365 monitoring available by PwC, organizations that are fully-managed by PwC can be confident and trust in their security defenses.

With 3500+ cyber practitioners and an industry leading incident response and forensics practice, PwC additionally provides AWS Managed Security Services. Together, our global reach can enhance threat visibility and provide content and automation excellence across assessment, design, implementation, and operations. Explore below how we’re working with AWS to help bring you a transformative security managed services experience.

Vulnerability Management

AWS Infrastructure Vulnerability Scanning

  • Quickly and easily see where your organization may be vulnerable using AWS’ automated scanning tools
  • Get automated vulnerability scans on new VPC and EC2 instances to help keep your organization running securely

Cloud Security Best Practices and Compliance

AWS Resource Inventory Visibility

  • Capture your AWS inventory and assets, monitor for unauthorized changes, and detect and remove terminated personnel in one central view.

AWS Security Industry Leading Practices Monitoring

  • Stay on top of leading practices by monitoring any misconfigurations

AWS Compliance Monitoring

  • Continuous compliance monitoring and auto-ticketing can enable you to manage configuration changes and deviations from CIS / PCI security standards

Threat Detection & Response

Monitor, Triage Security Events

  • Fully managed organizations can benefit from remediation activities in the event of a security issue as well as reduced false positive security breaches. We’ll also manage, monitor and help mitigate and contain any unwanted activities

24/7 Incident Alerting and Response

  • PwC Cyber Operations offers 24/7/365 monitoring in place to help when a high-priority incident occurs

Network Security

Distributed Denial of Service (DDoS) Mitigation

  • Protect and secure your DDoS from cyber attacks using AWS Shield
  • Using PwC’s ClientView ticketing system, you’ll be regularly alerted of any threats to your network

Managed Network Intrusion Detection / Prevention System (IDS / IPS)

  • Mitigate risks to your network or host on AWS environment by integrating, monitoring, and managing ISV-approved tools

Host and Endpoint Security

Managed Detection and Response for AWS Endpoints

  • Detect, contain, and investigate security incidents using ISV partner-approved tools through the ClientView ticketing system
  • Address potential incidents with your network fast with remediation guidance

Application Security

Managed Web Application Firewall (WAF)

  • PwC’s Threat Intelligence services feed can provide additional threat analytics from AWS WAF log data and send information to your SIEM or Log Aggregation tool
  • Get real-time feedback on detailed findings and additional rules that should be implemented to help mitigate any identified threats through our ClientView system

Managed Security Services with PwC and AWS can help you to:

Navigate a complex regulatory environment

Leverage thought leadership from PwC’s global network of cyber professionals to keep up with emerging business requirements.


Manage an extensive people function

Scale resources and expertise on demand to keep pace with the unpredictable adversary and evolving threatscape.

Keep current with advancements in technology

Rationalize cyber tech to reduce inefficiencies and enhance transparency of performance.

Reduce cyber-related cost pressures

Stabilize cyber program costs with an approach that can provide significant savings.

Case studies

How a major educational services provider improved its security by moving to the cloud

This educational services organization operates globally with over 9,000 locations and millions of customers. The challenge: replacing an outdated, heavy-weight system and moving to the cloud. Learn how PwC was able to deliver a solution that addressed their concerns during the COVID-19 pandemic.


How a digital transformation helped a major real estate developer protect against cyber crimes

Based in Hong Kong, this real estate developer has been in business for several decades. Noticing the shift toward technology and innovation, the real estate developer turned to PwC to help combat the competitive market and the threat of ransomware attacks. The result - 100% of the organization’s key indicators were met along with a complete transformation into the cloud and more.


Required fields are marked with an asterisk(*)

By submitting your email address, you acknowledge that you have read the Privacy Statement and that you consent to our processing data in accordance with the Privacy Statement (including international transfers). If you change your mind at any time about wishing to receive the information from us, you can send us an email message using the Contact Us page.

Contact us

Scott Gelber

Principal, Cybersecurity, Privacy & Forensics, PwC US

Chris O'Connor

Managing Director, Cyber Managed Services, PwC US

Jeff Spaeth

AWS MSSP Director, PwC US