Line of Service
Advisory
Industry/Sector
Not Applicable
Specialism
Cybersecurity & Privacy
Management Level
Senior Associate
Job Description & Summary
A career in our Advisory Acceleration Centre is the natural extension of PwC’s leading class global delivery capabilities. We provide premium, cost effective, high quality services that support process quality and delivery capability in support for client engagements.
To really stand out and make us fit for the future in a constantly changing world, each and every one of us at PwC needs to be a purpose-led and values-driven leader at every level. To help us achieve this we have the PwC Professional our global leadership development framework. It gives us a single set of expectations across our lines, geographies and career paths, and provides transparency on the skills we need as individuals to be successful and progress in our careers, now and in the future.
As a Senior Associate, you’ll work as part of a team of problem solvers, helping to solve complex business issues from strategy to execution. PwC Professional skills and responsibilities for this management level include but are not limited to:
Year of Experience
5-8 Years
Position Requirements
Minimum of 5-8 years of prior experience in SIEM Technologies, Information Security Expertise in SIEM
solutions like Splunk, ArcSight and Azure Sentinel Tools.
.
Expertise in building use cases around NIST and MITRE ATT&CK framework to enable detection at
various stages of a cyber attack.
.
. Implementation of use cases using SPL/KQL with complex correlation across different data sources.
. Development of dashboards/workbooks, alerts.
. Implementation of SOAR workflows using Logic Apps, Phantom, Demisto etc.
Preferred Knowledge
. Basic knowledge of User Entity Behaviour, Machine Learning models.
. Scripting knowledge of python is an added advantage.
Assist in administration, maintenance and optimization of the Splunk Enterprise and Splunk
ES.
.
. Integrating log sources with Sentinel using REST API.
. Working knowledge of all architectural components of SIEM
. Knowledge about cloud environment and hybrid environments
Implementation of clustered environment and related concepts such as High availability,
parallel processing etc.
.
Working knowledge in Azure services like Security center, azure monitor, log analytics, NSG,
Storage, Azure Functions,defender ATP, etc.
.
. Experience of threat intelligence and threat hunting is added advantage.
Preferred Skill
SIEM Technologies, Information SecurityExpertise in SIEM solutions like Splunk, ArcSightand
Azure Sentinel Tools.
.
. KQL/SPL
Professional and Educational Background
. Bachelor’s Degree Preferred.
Education
Degrees/Field of Study required:
Degrees/Field of Study preferred:
Certifications
Required Skills
Optional Skills
Desired Languages
Travel Requirements
0%
Available for Work Visa Sponsorship
No
Government Clearance Required
No
Job Posting End Date
Job Description DESCRIPTION Come build the future with us! In Payments Security, we protect foundational systems and products that allow...
Apply For This JobJob Description Microsoft Services India Global Delivery (IGD) delivers end-to-end solutions to Microsoft’s customers by enabling accelerated adoption and productive...
Apply For This JobJob Description What impact will you make Every day, your work will make an impact that matters, while you thrive...
Apply For This JobJob Description Company Description Redington Limited is a company that specializes in reducing Technology Friction through innovation, technology, and partnership....
Apply For This JobJob Description Job Title: Assistant Manager – Cyber Security Third Party Contract Location: Bangalore ABOUT UNILEVER: Be part of the...
Apply For This JobJob Description Job Description (Posting). Senior Information Security Analyst: Job Description About Wells Fargo India Wells Fargo India enables global...
Apply For This Job