L3 SIEM (Security Information and Event Management) SME

Line of Service

Assurance

Industry/Sector

Not Applicable

Specialism

Risk Architecture

Management Level

Manager

Job Description & Summary

A career within Assurance Support Services, will provide the opportunity to support our engagement teams and clients by providing advice and counsel on accounting, financial reporting, and strategic business issues. In joining, you’ll help ensure a complete and relevant exchange of information among our consultants and in turn with engagement teams and clients, provide experts advice on a variety of specific topics, support engagement teams in resolving complex issues, and supporting clients and their subsidiaries in evaluating the potential impact of accounting and reporting standard setting initiatives. You’ll develop strong relationships with our engagement teams and established audit clients and enhance our ability to meet greater investor expectations with the challenges of an increasingly complex business environment.

Our team works closely with engagement teams, PwC leadership, PwC counsel, and other groups within PwC to identify and manage practice matters. You’ll play an integral role in developing policy, processes, and tools to support the assurance practice and will interact daily with engagement teams to help staff navigate the challenging and highly judgmental aspect of the audit practice.

PwC's Cybersecurity and Privacy practice is dedicated to evolving in response to industry trends and management focus. We utilize our deep technical expertise to tailor our services to the ever-changing needs of our clients. Our approach is centered on helping clients improve operations, innovate, reduce costs, manage risks, leverage talent, and transform their businesses.

As a member of our Cybersecurity and Privacy team, you will have the opportunity to assist our clients in maintaining a robust security posture through the implementation of effective cybersecurity programs that safeguard against threats, drive growth, and facilitate transformation. As companies shift towards digital business models, our team plays a vital role in ensuring clients are protected by developing security-focused transformation strategies, efficiently integrating and managing technology systems to achieve continuous operational improvements, and detecting, responding to, and remediating threats.

To thrive in an ever-changing world, all members of the PwC team must embrace purpose-led and values-driven leadership at every level. Our global leadership development framework, PwC Professional, provides a set of expectations across our lines, geographies, and career paths. It also offers transparency regarding the skills individuals need to succeed and progress in their careers, both now and in the future.

We are seeking a highly skilled and experienced SOC Lead to join our team. Our company is committed to strengthening our cybersecurity offerings, and the SOC Lead will play a critical role in achieving this goal.

Job Description:

Security Information and Event Management (SIEM) Integration Engineer will focus on implementation of SIEM and associated solutions.

The Security Information and Event Management (SIEM) Integration Engineer will possess deep technical knowledge on a number of security technologies; the main area of focus will be the implementation of SIEM, SOAR and other related security solutions within the security operation center. 

Specific Tasks:

• Act as the lead for Operations and Maintenance and Configuration Management for all Security Operations Center (SOC) and Security Information and Event Management (SIEM) tools.
• Analysis, design, configuration, implementation, documentation and operation of SIEM and associated solutions such as SOAR, MEDR, NDR and etc. 
• Responsible for SIEM security design review and recommendations, technical data gathering, security and policy review and configuration, security device implementation planning, configuration and implementation of security products and technical quality assurance.
• Lead technical troubleshooting efforts for complex network environments to identify and eliminate network or security configuration issues for SIEM data collection.
• Manage system deployments, upgrades, ongoing maintenance and operations.
• Configuration and operation of security device authentication, management & logging platforms.
• Provide Tier3 support to SOC Analyst personnel utilizing the SIEM to respond to security incidents and events.
• Identify, troubleshoot, and resolve complex network connectivity issues as well as advise on network security related issues.
• Understanding of network and endpoint security tools and how they integrate into the SIEM and provide a cohesive view of network incidents and security.
• Configure backups, verify custom reports, manage log source groups and validate log sources.

Required Qualification and skills:

• Bachelor of Science in Electrical Engineering, Computer Science, Information Technology, or equivalent data security and networking experience required
• CISSP, CISM, or relevant Cybersecurity Vendor training/certification preferred
• Minimum 5 years’ experience as a SOC Analyst Level 2 or SOC Team Lead
• Minimum 3 years’ experience scripting in regular expression for SIEM signatures
• Server Administration background – Windows and/or Linux/Unix

Education (if blank, degree and/or field of study not specified)

Degrees/Field of Study required:

Degrees/Field of Study preferred:

Certifications (if blank, certifications not specified)

Required Skills

Optional Skills

Desired Languages (If blank, desired languages not specified)

Travel Requirements

Available for Work Visa Sponsorship?

Government Clearance Required?

Job Posting End Date