Threat Response Analyst

Job Description & Summary

About the team

The Cyber Threat Defence team is a senior team of engineers that develops, socializes, and deploys novel mitigations to counter threat activity observed in Incident Response operations and Threat Intelligence. This senior technical role utilizes a unique mix of security engineering, penetration testing, and incident response tradecraft to improve the security of the PwC network of firms. Highly qualified candidates will excel in business communication and messaging in addition to technical disciplines.

Job Description & Summary

•  Mitigations and Countermeasures Engineering

•  Automations and Tool Development

•  Digital Forensics/Incident Response

​Requirements of the role

• Well rounded knowledge in computer networking, operating systems (both Windows and Unix based operating systems), virtualization (cloud and on-premise), and modern architecture (containers, orchestration, CI/CD, etc).

• Understanding of investigative theory and best practices for effective analysis with ability to apply these skills to various areas of the role. Advanced Incident Response skills, including host/network forensics, log analysis, and timeline correlation, are valued but not a prerequisite for the role.

• Understanding of common attack methodologies. Training, direct experience, or at a minimum ongoing interest in penetration testing is desired in this role. While this role is not actively conducting penetration testing engagements, being able to conduct experiments utilizing tools and techniques can greatly enhance the effectiveness in detection and mitigation development.

• Strong understanding and application of the Cyber Kill Chain Framework, MITRE ATT&CK, and other industry frameworks.

• Effective utilization of training opportunities by collaborating with peers and training junior analysts. Genuine motivation to learn and grow in this field and in own career.

• All DFIR, offensive security, development, infrastructure, and malware analysis training and certifications are valued and considered. Certifications are not a requirement, but demonstration of equivalent knowledge, experience, and projects is expected at this level.

• GIAC (GCFA, GCFE, GNFA, GPEN, GXPN, GMON, etc)

• Offensive Security (OSCP, OSCE), SpectreOps, Zero Point Security, and related offensive security training

• Microsoft, Google, and Amazon cloud certifications

• Leadership and management training

Our Benefits and Fun

• Stable, but challenging working environment providing plenty of opportunities for your continuous professional growth.

• Fair salary plus annual bonus corresponding with your performance

• Paid time off 30 days, 3 well being days and 2 extra days off from the company at the end of the year.

• High-end Ultrabook and iPhone with unlimited data.

• The possibility to set your work schedule flexibly. We also offer part-time work from home.

• Benefit program with 55.000 points that you can use for holidays, education, food vouchers, sports, health... Simply on what you enjoy.

• Support for your education and development: we offer business and digital training and many other training and workshops to further develop your personal and professional skills.

PwC is the largest audit team in the Czech Republic, law, tax, consulting and technology, data or forensic teams. Find out how easy it is to combine this knowledge when you're in the right place. With us, you will get the opportunity to see how business is done in large companies. We are part of an international network of companies with more than 364,000 colleagues in 151 countries. At PwC, we create an inclusive work environment where everyone can be themselves and find their place and opportunity to develop.

Are you interested in our offer? Let us know about yourself and we will discuss more details together!

Ochrana osobních údajů pro žadatele o zaměstnání  / Privacy Statement for Recruitment Applicants 

#LI-PN1