Managed Services - Cyber - Security Analysts - Senior Associate - Operate

Line of Service

Advisory

Industry/Sector

Not Applicable

Specialism

Managed Services

Management Level

Senior Associate

Job Description & Summary

At PwC, our people in cybersecurity focus on protecting organisations from cyber threats through advanced technologies and strategies. They work to identify vulnerabilities, develop secure systems, and provide proactive solutions to safeguard sensitive data.

In cybersecurity incident management at PwC, you will focus on effectively responding to, and mitigating, cyber threats, maintaining the security of client systems and data. You will be responsible for identifying, analysing, and resolving security incidents to minimise potential damage and protect against future attacks.

Focused on relationships, you are building meaningful client connections, and learning how to manage and inspire others. Navigating increasingly complex situations, you are growing your personal brand, deepening technical expertise and awareness of your strengths. You are expected to anticipate the needs of your teams and clients, and to deliver quality. Embracing increased ambiguity, you are comfortable when the path forward isn’t clear, you ask questions, and you use these moments as opportunities to grow.

Examples of the skills, knowledge, and experiences you need to lead and deliver value at this level include but are not limited to:

• Respond effectively to the diverse perspectives, needs, and feelings of others.
• Use a broad range of tools, methodologies and techniques to generate new ideas and solve problems.
• Use critical thinking to break down complex concepts.
• Understand the broader objectives of your project or role and how your work fits into the overall strategy.
• Develop a deeper understanding of the business context and how it is changing.
• Use reflection to develop self awareness, enhance strengths and address development areas.
• Interpret data to inform insights and recommendations.
• Uphold and reinforce professional and technical standards (e.g. refer to specific PwC tax and audit guidance), the Firm's code of conduct, and independence requirements.

TDR – Security Analysts (SOC Analyst):

SOC L1 Analyst Responsibilities:

Monitoring: Continuously monitor security alerts and events generated by various security tools, such as SIEM (Security Information and Event Management) systems,Endpoint Detection and Response (EDR),intrusion detection systems, SOAR, UEBA,Email Gateway,Proxy and firewalls.

Incident Detection and Analysis: Analyze security events and incidents to identify potential security breaches or threats. This involves investigating alerts, analyzing network traffic, user/host anomaly,Phishing and conducting initial triage to determine the severity and impact of the incident.

Incident Response: Respond to security incidents by following established procedures,protocols and SLAs. This may involve escalating incidents to higher-level analysts or incident response teams, coordinating with  Endusers/Stakeholders and IT teams, and documenting incident details as per the standard templates.

Threat Intelligence: Stay updated on the latest security threats, vulnerabilities, and Zero-Day attacks. Leverage threat intelligence sources to identify potential indicators of compromise/Indicators of Attack and proactively detect emerging threats and also notifying about these threats to Leadership and Client teams.

Threat Hunting: To detect and mitigate potential threats that may bypass traditional security measures. You will utilize various tools and techniques to identify indicators of compromise (IOCs) and potential attack vectors. By continuously monitoring threat intelligence feeds and analyzing security bulletins, you will stay updated on the latest attack techniques and vulnerabilities. Collaborating with other security teams, you will investigate incidents, develop hunting techniques, document findings, and provide reports to management.

Documentation and Reporting: Maintain accurate and detailed records of security incidents, including incident timelines, actions taken, and outcomes. Prepare incident reports and contribute to post-incident reviews and lessons learned sessions also working on Client weekly,Monthly and quarterly reports.

Collaboration: Collaborate with other analysts of the SOC team, as well as with Leadership teams, to share knowledge, insights, and best practices. Work closely with Client incident response teams to ensure effective incident resolution and mitigation.

Continuous Improvement: Contribute to the improvement of security monitoring and incident response processes by identifying areas for SOP/Procedure enhancement, proposing solutions, Automations and Alert tunings.

Compliance: Ensure compliance with relevant security standards, regulations, and policies, such as PCI DSS, HIPAA, or GDPR.

Tools Knowledge: Splunk,Sentinel,MS Defender EDR, CrowdStrike, Cortex XDR,Palo alto XSOAR, Phantom,0365,ProofPoint,DLP

Education (if blank, degree and/or field of study not specified)

Degrees/Field of Study required:

Degrees/Field of Study preferred:

Certifications (if blank, certifications not specified)

Required Skills

Optional Skills

Accepting Feedback, Accepting Feedback, Active Listening, Analytical Thinking, Communication, Creativity, Cybersecurity Framework, Cybersecurity Governance, Cybersecurity Risk Management, Cybersecurity Strategy, Cyber Security Threat Mitigation, Cyber Threat Intelligence, Digital Forensics, Embracing Change, Emotional Regulation, Empathy, Firewall (Network Security), Forensic Investigation, Incident Management, Incident Remediation, Incident Response Plan, Inclusion, Intellectual Curiosity, Learning Agility, Log Analysis {+ 15 more}

Desired Languages (If blank, desired languages not specified)

Travel Requirements

Not Specified

Available for Work Visa Sponsorship?

No

Government Clearance Required?

No

Job Posting End Date