IN Associate - Cybersecurity Analyst Incident Response –IN IT Services Co IFS PAN India

Line of Service

Internal Firm Services

Industry/Sector

Not Applicable

Specialism

Operations

Management Level

Associate

Job Description & Summary

At PwC, our people in cybersecurity focus on protecting organisations from cyber threats through advanced technologies and strategies. They work to identify vulnerabilities, develop secure systems, and provide proactive solutions to safeguard sensitive data.

In threat intelligence and vulnerability management at PwC, you will focus on identifying and analysing potential threats to an organisation's security, as well as managing vulnerabilities to prevent cyber attacks. You will play a crucial role in safeguarding sensitive information and enabling the resilience of digital infrastructure.

Why PWC

At PwC, you will be part of a vibrant community of solvers that leads with trust and creates distinctive outcomes for our clients and communities. This purpose-led and values-driven work, powered by technology in an environment that drives innovation, will enable you to make a tangible impact in the real world. We reward your contributions, support your wellbeing, and offer inclusive benefits, flexibility programmes and mentorship that will help you thrive in work and life. Together, we grow, learn, care, collaborate, and create a future of infinite experiences for each other. Learn more about us.

At PwC, we believe in providing equal employment opportunities, without any discrimination on the grounds of gender, ethnic background, age, disability, marital status, sexual orientation, pregnancy, gender identity or expression, religion or other beliefs, perceived differences and status protected by law. We strive to create an environment where each one of our people can bring their true selves and contribute to their personal growth and the firm’s growth. To enable this, we have zero tolerance for any discrimination and harassment based on the above considerations.

Job Description & Summary:

PwC is driving major change across information and cyber security by building a centralised model to provide security services across the entire member firm network. The Network Information Security (NIS) organisation is tasked with designing, implementing, and maintaining information security capabilities and services for the PwC Network of member firms.

As a member of the Threat Response Team, you will be responsible for swiftly managing and resolving security incidents. You will work with SIEM tools like Splunk and MDE to triage and effectively respond to threats. Your role will involve investigating new attacker methodologies, addressing email threats such as phishing and BEC, and monitoring data loss prevention alerts. Collaboration with L2/L3 team members, customers, and stakeholders will be key in driving security incidents to resolution. You'll also focus on automating routine processes and improving security rules and detections to enhance the team's effectiveness.

If you are seeking an exciting career with the scope to grow your cyber security skills through major change on a global scale, then NIS will empower you to do so.

Responsibilities:

● Triage security incidents using SIEM tools such as Splunk or MDE.

● Investigating and identifying new attacker methods

● Investigate Email threats such as Phishing, BEC and different Attack Vectors

● Monitoring Data loss prevention incidents.

● Collaborate with L2/L3 team members and stakeholders to efficiently resolve security incidents

● Identify opportunities for process automation to optimize day-to-day operations.

● Constantly look for opportunities to improve security rules and detections.

● Building solid relationships with stakeholders and colleagues.

● Approaching stakeholders and colleagues in an organized manner Delivering clear requests for information.

● Demonstrating flexibility in prioritizing and completing tasks

● Performing research using available tools and methodologies

● Analyzing data and presenting findings to colleagues

Writing and communicating in a corporate environment

Mandatory skill sets:

● Hands-on experience in handling SIEM Tools such as Splunk or MDE

● Proficient in Incident Management and Response.

● ability to recognize and analyze suspicious or atypical activities effectively.

● Solid understanding of MITRE Attack Framework, threats, etc.

● In-depth knowledge of security concepts such as cyber-attacks and techniques, threat vectors, Firewalls, Incident management, Networking, etc.

Preferred skill sets:

● Strong understanding of the operating system and computer networking concepts.

● Stays current with new and evolving technologies via formal training and self-directed education

● Experience in malware analysis is a plus.

● Experience in Scripting/Automation is a plus.

● Good Analytical skills, Problem-solving, and Interpersonal skills.

● Candidates must be able to work in a flexible schedule within a 24x7 environment, as well as may be expected to work on holidays. Appropriate compensatory offs would be provided in lieu of a working day on a holiday

Years of experience required 

2 - 3 Years

Education qualification :

Bachelor or equivalents.

Certifications:

● CEH

● ECIH

● ECSA/LPT

● OSCP

● SC-200 (Microsoft)

● AZ-500

● Splunk Certified User

Education (if blank, degree and/or field of study not specified)

Degrees/Field of Study required: Bachelor Degree

Degrees/Field of Study preferred:

Certifications (if blank, certifications not specified)

Required Skills

Cybersecurity Analytics

Optional Skills

Accepting Feedback, Accepting Feedback, Active Listening, Cloud Security, Communication, Conducting Research, Cyber Defense, Cyber Threat Intelligence, Emotional Regulation, Empathy, Encryption, Inclusion, Information Security, Intellectual Curiosity, Intelligence Analysis, Intelligence Report, Intrusion Detection, Intrusion Detection System (IDS), IT Operations, Malware Analysis, Malware Detection Tools, Malware Intelligence Gathering, Malware Research, Malware Reverse Engineering, Malware Sandboxing {+ 11 more}

Desired Languages (If blank, desired languages not specified)

Travel Requirements

Not Specified

Available for Work Visa Sponsorship?

No

Government Clearance Required?

No

Job Posting End Date