IN_Associate - Cybersecurity Analyst Incident Response

Job Description

PwC is driving major change across information and cyber security by building a centralised model to provide security services across the entire member firm network. The Network Information Security (NIS) organisation is tasked with designing, implementing, and maintaining information security capabilities and services for the PwC Network of member firms. As a member of the Threat Response Team, you will be responsible for swiftly managing and resolving security incidents. You will work with SIEM tools like Splunk and MDE to triage and effectively respond to threats. Your role will involve investigating new attacker methodologies, addressing email threats such as phishing and BEC, and monitoring data loss prevention alerts. Collaboration with L2/L3 team members, customers, and stakeholders will be key in driving security incidents to resolution. Youll also focus on automating routine processes and improving security rules and detections to enhance the teams effectiveness. If you are seeking an exciting career with the scope to grow your cyber security skills through major change on a global scale, then NIS will empower you to do so. s Triage security incidents using SIEM tools such as Splunk or MDE. Investigating and identifying new attacker methods Investigate Email threats such as Phishing, BEC and different Attack Vectors Monitoring Data loss prevention incidents. Collaborate with L2/L3 team members and stakeholders to efficiently resolve security incidents Identify opportunities for process automation to optimize daytoday operations. Constantly look for opportunities to improve security rules and detections. Building solid relationships with stakeholders and colleagues. Approaching stakeholders and colleagues in an organized manner Delivering clear requests for information. Demonstrating flexibility in prioritizing and completing tasks Performing research using available tools and methodologies Analyzing data and presenting findings to colleagues Writing and communicating in a corporate environment Mandatory skill sets Handson experience in handling SIEM Tools such as Splunk or MDE Proficient in Incident Management and Response. ability to recognize and analyze suspicious or atypical activities effectively. Solid understanding of MITRE Attack Framework, threats, etc. Indepth knowledge of security concepts such as cyberattacks and techniques, threat vectors, Firewalls, Incident management, Networking, etc. Preferred skill sets Strong understanding of the operating system and computer networking concepts. Stays current with new and evolving technologies via formal training and selfdirected