isecjobs.com

IN-Senior Associate SOC Managed Services Advisory Mumbai

Mumbai Shivaji Park

Full Time Senior-level / Expert USD 57K - 106K *
PwC logo

PwC

We are a community of solvers combining human ingenuity, experience and technology innovation to help organisations build trust and deliver sustained outcomes.

View all jobs at PwC

Apply now Apply later

Line of Service

Advisory

Industry/Sector

FS X-Sector

Specialism

Risk

Management Level

Senior Associate

Job Description & Summary

A career within Cybersecurity and Privacy services, will provide you with the opportunity to help our clients implement an effective cybersecurity programme that protects against threats, propels transformation, and drives growth. As companies pivot toward a digital business model, exponentially more data is generated and shared among organisations, partners and customers. We play an integral role in helping our clients ensure they are protected by developing transformation strategies focused on security, efficiently integrate and manage new or existing technology systems to deliver continuous operational improvements and increase their cybersecurity investment, and detect, respond, and remediate threats.

*Why PWC

At PwC, you will be part of a vibrant community of solvers that leads with trust and creates distinctive outcomes for our clients and communities. This purpose-led and values-driven work, powered by technology in an environment that drives innovation, will enable you to make a tangible impact in the real world. We reward your contributions, support your wellbeing, and offer inclusive benefits, flexibility programmes and mentorship that will help you thrive in work and life. Together, we grow, learn, care, collaborate, and create a future of infinite experiences for each other. Learn more about us.

At PwC, we believe in providing equal employment opportunities, without any discrimination on the grounds of gender, ethnic background, age, disability, marital status, sexual orientation, pregnancy, gender identity or expression, religion or other beliefs, perceived differences and status protected by law. We strive to create an environment where each one of our people can bring their true selves and contribute to their personal growth and the firm’s growth. To enable this, we have zero tolerance for any discrimination and harassment based on the above considerations. "

 

 

Job Description & Summary: We are seeking a professional to join our Cybersecurity and Privacy services team, where you will have the opportunity to help clients implement effective cybersecurity programs that protect against threats, drive transformation, and foster growth. As companies increasingly adopt digital business models, the generation and sharing of data among organizations, partners, and customers multiply. We play a crucial role in ensuring that our clients are protected by developing transformation strategies focused on security, efficiently integrating and managing new or existing technology systems, and enhancing their cybersecurity investments. As an L3 Analyst/SOC Manager, you will be responsible for overseeing regular operations, driving continuous improvement processes, and managing client and vendor interactions. This role involves managing complex incidents escalated from L2 analysts, operating the Security Incident process, and mentoring junior team members to build a cohesive and motivated unit.

 

 

 

 

Responsibilities:

 

  • Review cybersecurity events analyzed by L2 security analysts, serving as the escalation point for detection, response, and remediation activities.
  • Monitor and guide the team in triaging cybersecurity events, prioritizing, and recommending/performing response measures.
  • Provide technical support for IT teams in response and remediation activities for escalated cybersecurity events/incidents.
  • Follow up on cybersecurity incident tickets until closure.
  • Guide L1 and L2 analysts in analyzing events and response activities.
  • Expedite cyber incident response and remediation activities when delays occur, coordinating with L1 and L2 team members.
  • Review and provide suggestions for information security policies and best practices in client environments.
  • Ensure compliance with SLAs and contractual requirements, maintaining effective communication with stakeholders.
  • Review and share daily, weekly, and monthly dashboard reports with relevant stakeholders.
  • Update and review documents, playbooks, and standard operational procedures.
  • Validate and update client systems and IT infrastructure documentation.
  • Share knowledge on current security threats, attack patterns, and tools with team members.
  • Create and review new use cases based on evolving attack trends.
  • Analyze and interpret Windows, Linux OS, firewall, web proxy, DNS, IDS, and HIPS log events.
  • Develop and maintain threat detection rules, parsers, and use cases.
  • Understand security analytics and flows across SaaS applications and cloud computing tools.
  • Validate use cases through selective testing and logic examination.
  • Maintain continuous improvement processes and build/groom teams over time.
  • Develop thought leadership within the SOC.

 

Mandatory skill sets:

 

  • Bachelor’s degree (minimum requirement).
  • 5-8 years of experience in SOC operations.
  • Experience analyzing malicious traffic and building detections.
  • Experience in application security, network security, and systems security.
  • Knowledge of security testing tools (e.g., BurpSuite, Mimikatz, Cobalt Strike, PowerSploit, Metasploit, Nessus, HP Web Inspect).
  • Proficiency in common programming and scripting languages (Python, PowerShell, Ruby, Perl, Bash, JavaScript, VBScript).
  • Familiarity with cybersecurity frameworks and practices (OWASP, NIST CSF, PCI DSS, NY-DFS).
  • Experience with traditional security operations, event monitoring, and SIEM tools.
  • Knowledge of MITRE or similar frameworks and procedures used by adversaries.
  • Ability to develop and maintain threat detection rules and use cases.

 

Preferred skill sets:

 

  • Strong communication skills, both written and oral.
  • Experience with SMB and large enterprise clients.
  • Good understanding of ITIL processes (Change Management, Incident Management, Problem Management).
  • Strong expertise in multiple SIEM tools and other SOC environment devices.
  • Knowledge of firewalls, IDS/IPS, AVI, EDR, Proxy, DNS, email, AD, etc.
  • Understanding of raw log formats of various security devices.
  • Foundational knowledge of networking concepts (TCP/IP, LAN/WAN, Internet network topologies).
  • Relevant certifications (CEH, CISA, CISM, etc.).
  • Strong work ethic and time management skills.
  • Coachability and dedication to consistent improvement.
  • Ability to mentor and encourage junior teammates.
  • Knowledge of regex and parser creation.
  • Ability to deploy SIEM solutions in customer environments.

 

Years of experience required:

 

5-8 + years

Education qualification:

 

B.Tech

Education (if blank, degree and/or field of study not specified)

Degrees/Field of Study required: Bachelor of Engineering

Degrees/Field of Study preferred:

Certifications (if blank, certifications not specified)

Required Skills

SoCs

Optional Skills

Desired Languages (If blank, desired languages not specified)

Travel Requirements

Available for Work Visa Sponsorship?

Government Clearance Required?

Job Posting End Date

Apply now Apply later

* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰

Job stats:  1  0  0

Tags: Analytics Application security Bash Burp Suite CEH CISA CISM Clearance Clearance Required Cloud Cobalt Strike Compliance DNS EDR Firewalls IDS Incident response IPS ITIL IT infrastructure JavaScript Linux Metasploit Monitoring Nessus Network security NIST OWASP PCI DSS Perl PowerShell Privacy Python Risk management Ruby SaaS Scripting SIEM SLAs SOC TCP/IP Threat detection Windows

Perks/benefits: Career development Team events

Region: Asia/Pacific
Country: India

More jobs like this

« Back to job search To the top ↑

Explore more career opportunities

Find even more open roles below ordered by popularity of job title or skills/products/technologies used.

Information Systems Security Officer jobsInformation System Security Officer jobsSenior Cloud Security Engineer jobsInformation Security Manager jobsSenior Network Security Engineer jobsSenior Cybersecurity Engineer jobsInformation Security Specialist jobsSecurity Consultant jobsSenior Information Security Analyst jobsSenior Penetration Tester jobsSecurity Specialist jobsCyber Security Specialist jobsIT Security Engineer jobsSenior Cyber Security Engineer jobsChief Information Security Officer jobsIT Security Analyst jobsPrincipal Security Engineer jobsInformation System Security Officer (ISSO) jobsStaff Security Engineer jobsCloud Security Architect jobsCyber Security Architect jobsSecurity Operations Analyst jobsSenior Information Security Engineer jobsSystems Administrator jobsThreat Intelligence Analyst jobs
GDPR jobsSaaS jobsForensics jobsEncryption jobsMalware jobsTop Secret jobsEDR jobsSDLC jobsSplunk jobsRMF jobsSQL jobsIDS jobsIPS jobsBash jobsCompTIA jobsIntrusion detection jobsDoDD 8570 jobsDocker jobsThreat detection jobsFinance jobsITIL jobsOWASP jobsTCP/IP jobsTerraform jobsActive Directory jobs
VPN jobsCRISC jobsGIAC jobsUNIX jobsClearance Required jobsIT infrastructure jobsBanking jobsSANS jobsJavaScript jobsPolygraph jobsAnsible jobsHIPAA jobsJira jobsDNS jobsMITRE ATT&CK jobsSOX jobsOSCP jobsCCSP jobsData Analytics jobsMachine Learning jobsSOC 2 jobsSecurity strategy jobsSOAR jobsGCIH jobsCISO jobs