Cyber as a Service, Monitoring L2 - Senior Associate

Line of ServiceAdvisory

Industry/SectorNot Applicable

SpecialismManaged Services

Management LevelSenior Associate

Job Description & SummaryAt PwC, our people in cybersecurity focus on protecting organisations from cyber threats through advanced technologies and strategies. They work to identify vulnerabilities, develop secure systems, and provide proactive solutions to safeguard sensitive data.

In cybersecurity incident management at PwC, you will focus on effectively responding to, and mitigating, cyber threats, maintaining the security of client systems and data. You will be responsible for identifying, analysing, and resolving security incidents to minimise potential damage and protect against future attacks.

As a Senior Associate, you’ll work as part of a team of problem solvers, helping to solve complex business issues from strategy to execution. Responsibilities include but are not limited to:

Roles & Responsibilities:

• Continuously monitor security alerts to identify critical system or data impacts and provide remediation guidance to clients
• Respond to escalated security alerts receiving from Tier1 analysts, conduct investigations and client notification
• Responsible for investigating alerts/incidents, analysing attack methods, researching new defense techniques and tools, and documenting procedures
• Perform thorough investigations by integrating data from diverse sources to gain a complete understanding of security incidents.
• Perform in-depth analysis of suspicious files or activities to determine the nature of malware, its capabilities, and potential impact.
• Serve as a technical point of escalation and provide mentoring for L1 security analysts
• Ensure incident identification, assessment, communication, and escalation to the client
• Ensure compliance to SLA, process adherence and process improvements to achieve operational objectives
• Update and maintain Standard Operating Procedure (SOP) document, playbooks and other documentations
• Prepare reports, summaries, and other forms of communication that may be both internal and client facing
• Participate in an on-call rotation to handle escalations outside standard business hours.
• Revise and develop processes to strengthen the current Security Operations Framework, and recommend updates
• Stay informed about industry trends and security best practices.
• Collaborate with stakeholders to maintain positive working relationships and ensure cohesive operations

Experience & Skills:

• Relevant experience in Information Technology and Information Security
• Proficient in Incident Response and Management
• In-depth knowledge of security concepts such as cyber-attacks and techniques, threat vectors, risk management, incident management, etc.
• Experience in MSSP environment
• CISSP and GIAC certifications preferred
• Knowledge of various security tools (e.g. SIEM, EDR, etc.) as well as operating system flavors including but not limited to Windows, Linux, Unix
• Knowledge of applications, databases, middleware to address security threats
• Proficient in preparation of reports, dashboards, and documentation
• Excellent communication and initiative skills
• Experience in performing vendor management
• Ability to handle high pressure situations with key stakeholders
• Good analytical skills, problem solving and interpersonal skill
• Fluent in French and English would be an asset
• A demonstrated commitment to valuing differences and working alongside diverse people and perspective

Qualifications:

• A bachelor's degree is a relevant area of study with a preference for Computer Science or Computer Engineering
• Industry certifications (CISSP/GIAC suite/EC-Council) are an asset
• Minimum of 4 years in Information Technology
• Minimum of 3 years in Information Security

Education (if blank, degree and/or field of study not specified)

Degrees/Field of Study required:

Degrees/Field of Study preferred:

Certifications (if blank, certifications not specified)

Required Skills

Optional Skills

Accepting Feedback, Accepting Feedback, Active Listening, Analytical Thinking, Communication, Creativity, Cybersecurity Framework, Cybersecurity Governance, Cybersecurity Risk Management, Cybersecurity Strategy, Cybersecurity Threat Mitigation, Cyber Threat Intelligence, Digital Forensics, Embracing Change, Emotional Regulation, Empathy, Firewall (Network Security), Forensic Investigation, Incident Management, Incident Remediation, Incident Response Plan, Inclusion, Intellectual Curiosity, Learning Agility, Log Analysis {+ 15 more}

Desired Languages (If blank, desired languages not specified)

Travel Requirements

Not Specified

Available for Work Visa Sponsorship?

No

Government Clearance Required?

No

Job Posting End Date