MSO_Cybersecurity - SOC Support Analyst L2 - Senior Associate

Job Description

DescriptionLine of ServiceAdvisoryIndustry/SectorNot ApplicableSpecialismCybersecurity & PrivacyManagement LevelSenior AssociateJob Description & SummaryA career in our Advisory Acceleration Centre is the natural extension of PwC s leading class global delivery capabilities. We provide premium, cost effective, high quality services that support process quality and delivery capability in support for client engagements.To really stand out and make us fit for the future in a constantly changing world, each and every one of us at PwC needs to be a purpose-led and values-driven leader at every level. To help us achieve this we have the PwC Professional; our global leadership development framework. It gives us a single set of expectations across our lines, geographies and career paths, and provides transparency on the skills we need as individuals to be successful and progress in our careers, now and in the future.As a Senior Associate, youll work as part of a team of problem solvers, helping to solve complex business issues from strategy to execution. PwC Professional skills and responsibilities for this management level include but are not limited to:

• Use feedback and reflection to develop self awareness, personal strengths and address development areas.
• Delegate to others to provide stretch opportunities, coaching them to deliver results.
• Demonstrate critical thinking and the ability to bring order to unstructured problems.
• Use a broad range of tools and techniques to extract insights from current industry or sector trends.
• Review your work and that of others for quality, accuracy and relevance.
• Know how and when to use tools available for a given situation and can explain the reasons for this choice.
• Seek and embrace opportunities which give exposure to different situations, environments and perspectives.
• Use straightforward communication, in a structured way, when influencing and connecting with others.
• Able to read situations and modify behavior to build quality relationships.
• Uphold the firms code of ethics and business conduct.

Role : Security operation support Analyst - L2 @ Senior Associate 1 levelWork Experience : 5 - 8 yearsWork Location : Bangalore , IndiaTitle: Cybersecurity Hunting Senior Analyst The Support Senior Analyst (level 2) is responsible for executing deeper analysis and triage of escalated events leveraging the original log sources and the existing logging solution. Escalation point for the client and Level 1 support. Responsible for driving enhancement to the client s security monitoring & analytics capability and support the Incident response.Primary Responsibilities:

• Escalation point for Level 1 Analysts
• Efficiently uses the tools to detect and/or prevent cyber attacks
• Works closely with Level 3 team on security tools enrichment strategy
• Identifies engineering enhancements so tools are more robust
• Deploy SIEM tools in a preconfigured/standard environment
• Performs health checks on client SIEM solution and escalate any anomalies with the system components to the appropriate resolver group
• Coordinates security tools enrichment with client contact based on received intelligence, hunt intelligence, or lessons learned from security incidents
• Suggestions for new tools and enhancements
• Prioritizes and classifies critical and high incidents
• Escalates critical and high incidents to Level 3 support and client contact
• Document security breaches and assess the damage they cause.
• Work with the security team to perform tests and uncover network vulnerabilities.

Qualifications:

• Graduation in any discipline with understanding of cybersecurity concepts. Computer Science Eng. Or equivalent preferred
• CCNA, CCNA-Security and/or CEH, CompTIA Security+, ECSA, CISSP

• Direct working knowledge and experience with one or more SIEM/ Security Analytics solutions (i.e Splunk ES, Elastic ELK, HP ArcSight, IBM QRadar, LogRhythm)
• Familiarity with security analysis of critical system logs and network protocols such as network flow data and full packet capture technologies
• Direct experience with critical system logs and network protocols such as network flow data and full packet capture technologies
• Technical knowledge of network infrastructure including but not limited to, Next Generation Firewalls, IDS/IPS, Proxy, operating systems (Windows/ *nix)
• Strong problem solving and troubleshooting skills including the ability to perform root cause analysis for preventative investigation
• Ability to identify and mitigate network vulnerabilities and explain how to avoid them.
• Understanding of patch management with the ability to deploy patches in a timely manner while understanding business impact.
• Strong written and verbal communication, as well as organizational and documentation skills
• Self-motivated and possessing a high sense of urgency and integrity
• Demonstrates the ability to adapt to ever-changing schedules and work assignments
• Develops technical and programmatic assessments, evaluates integration initiatives and provides technical support to the PwC team and the client team

Requirements:

• Professional experience in the Cybersecurity field, 3-7 years
• Has in-depth knowledge of technical approaches in security analytics, monitoring and alerting
• Maintains technical knowledge within areas of expertise
• Stays current with new and evolving technologies via formal training and self-directed education
• Candidates must be able to work a flexible schedule within a 24x7 Security Operations Center (SOC) environment, as well as may be expected to work holidays. Appropriate compensatory offs would be provided in-lieu of a working day on a holiday

Education (if blank, degree and/or field of study not specified)Degrees/Field of Study required: Degrees/Field of Study preferred:Certifications (if blank, certifications not specified)Desired Languages (If blank, desired languages not specified)Travel RequirementsAvailable for Work Visa Sponsorship Government Clearance Required Job Posting End DateOctober 29, 2020,

Keyskills :
code of ethicsprocess qualityproblem solvingcustomer relationssecurity toolsinsurancehigh sense of urgencypacket captureroot causesalesroot cause analysisqualitysecurity operations centercost effectivemisclient contact