IN-Associate SOC Managed Services Advisory Mumbai

Line of Service

Advisory

Industry/Sector

FS X-Sector

Specialism

Risk

Management Level

Associate

Job Description & Summary

A career within Cybersecurity and Privacy services, will provide you with the opportunity to help our clients implement an effective cybersecurity programme that protects against threats, propels transformation, and drives growth. As companies pivot toward a digital business model, exponentially more data is generated and shared among organisations, partners and customers. We play an integral role in helping our clients ensure they are protected by developing transformation strategies focused on security, efficiently integrate and manage new or existing technology systems to deliver continuous operational improvements and increase their cybersecurity investment, and detect, respond, and remediate threats.

*Why PWC

At PwC, you will be part of a vibrant community of solvers that leads with trust and creates distinctive outcomes for our clients and communities. This purpose-led and values-driven work, powered by technology in an environment that drives innovation, will enable you to make a tangible impact in the real world. We reward your contributions, support your wellbeing, and offer inclusive benefits, flexibility programmes and mentorship that will help you thrive in work and life. Together, we grow, learn, care, collaborate, and create a future of infinite experiences for each other. Learn more about us.

At PwC, we believe in providing equal employment opportunities, without any discrimination on the grounds of gender, ethnic background, age, disability, marital status, sexual orientation, pregnancy, gender identity or expression, religion or other beliefs, perceived differences and status protected by law. We strive to create an environment where each one of our people can bring their true selves and contribute to their personal growth and the firm’s growth. To enable this, we have zero tolerance for any discrimination and harassment based on the above considerations. "

Job Description & Summary: The SOC Consultant is a pivotal role within our Security Operations Center. The incumbent will be responsible for advanced threat monitoring, detection, and incident response, utilizing LogRhythm SIEM solution. This role acts as an escalation point for L2 analysts and is instrumental in conducting in-depth analysis, threat hunting, and incident management. 

Responsibilities:

• Continuously monitor security alerts and events through SIEM solutions. 
• Perform thorough analysis on alerts to distinguish between true positives, false positives, and benign anomalies. 
• Develop, implement, and optimize detection rules and use cases within LogRhythm to improve alerting mechanisms. 
• Lead the response to security incidents, including containment, eradication, and recovery efforts.
• Strong understanding of SIEM architecture and log management principles.
• Strong understanding of cybersecurity principles and methodologies. 
• Coordinate with relevant teams to ensure swift resolution of incidents and minimize impact. 
• Conduct proactive threat hunting activities to identify potential security gaps and vulnerabilities. 
• Act as an escalation point for L2 analysts, providing guidance and technical support for complex incidents. 
• Provide expertise in the configuration, management, and optimization of SIEM platforms. 
• Maintain detailed records of security incidents, including timelines, analysis, and remediation steps. 
• Prepare and present detailed incident reports and summaries to management and stakeholders. 
• Contribute to the continuous improvement of SOC processes, playbooks, and standard operating procedures.  

Experience: 

• 3-5 years of experience in a cybersecurity role, with at least 3 year in an SOC environment. 
• Hands-on experience with LogRhythm SIEM solution.

Skills: 

• Strong understanding of networking concepts and protocols (TCP/IP, DNS, HTTP, etc.). 
• Proficiency in scripting languages (Regex, PowerShell, etc.) is an advantage. 
• Experience with threat hunting, incident response methodologies, and advanced threat detection techniques. 
• Excellent analytical, problem-solving, and decision-making abilities. 
• Strong communication skills, both written and verbal. 
• Familiarity with security frameworks and standards (e.g., MITRE ATT&CK, NIST). 

Certifications: 

• Relevant certifications such as CompTIA Security+, CEH (Certified Ethical Hacker), GCIH (GIAC Certified Incident Handler), SC200, AZ500 or equivalent are preferred. 

Working Conditions: 

• Ability to work effectively in a fast-paced, high-pressure environment. 

Mandatory skill sets:

LogRhythm Deployment, Use case creation, Log source integrations, Report configuration, SOAR, UEBA

Preferred skill sets:

LogRhythm Deployment, Use case creation, Log source integrations, Report configuration, SOAR, UEBA

Years of experience required:

3-8 Years

Education qualification:

B.Tech

Education (if blank, degree and/or field of study not specified)

Degrees/Field of Study required: Bachelor of Engineering

Degrees/Field of Study preferred:

Certifications (if blank, certifications not specified)

Required Skills

Security Orchestration, Automation, and Response (SOAR)

Optional Skills

Accepting Feedback, Accepting Feedback, Active Listening, Agile Methodology, Azure Data Factory, Communication, Cybersecurity, Cybersecurity Framework, Cybersecurity Policy, Cybersecurity Requirements, Cybersecurity Strategy, Emotional Regulation, Empathy, Encryption Technologies, Inclusion, Intellectual Curiosity, Managed Services, Optimism, Privacy Compliance, Regulatory Response, Security Architecture, Security Compliance Management, Security Control, Security Incident Management, Security Monitoring {+ 3 more}

Desired Languages (If blank, desired languages not specified)

Travel Requirements

Not Specified

Available for Work Visa Sponsorship?

No

Government Clearance Required?

No

Job Posting End Date