PricewaterhouseCoopers (PWC)

CD - Cybersecurity -Splunk/SIEM implementation engineer - Associate

Job Location:  Bangalore
Job Description:  SkillSet: sql, " use case", " risk management", " global delivery", troubleshooting.

To really stand out and make us fit for the future in a constantly changing world, each and every one of us at PwC needs to be a purpose-led and values-driven leader at every level. To help us achieve this we have the PwC Professional; our global leadership development framework. It gives us a single set of expectations across our lines, geographies and career paths, and provides transparency on the skills we need as individuals to be successful and progress in our careers, now and in the future.

As an Associate, you'll work as part of a team of problem solvers, helping to solve complex business issues from strategy to execution. PwC Professional skills and responsibilities for this management level include but are not limited to:

  • Invite and give in the moment feedback in a constructive manner.
  • Share and collaborate effectively with others.
  • Identify and make suggestions for improvements when problems and/or opportunities arise.
  • Handle, manipulate and analyse data and information responsibly.
  • Follow risk management and compliance procedures.
  • Keep up-to-date with developments in area of specialism.
  • Communicate confidently in a clear, concise and articulate manner - verbally and in the materials I produce.
  • Build and maintain an internal and external network.
  • Seek opportunities to learn about how PwC works as a global network of firms.
  • Uphold the firm's code of ethics and business conduct.

Role : Splunk /SIEM implementation engineer @ Associate Level 2

Work Experience : 3 - 6 years

Work Location : Bangalore , India

Education qualification : B.E / B.TECH / M.E / M.TECH / MCA /MS

JD for Splunk/SOAR/Sentinel

Minimum of 3- 5 years of prior experience in SIEM Technologies, Information Security
Expertise in SIEM solutions like Splunk and Azure Sentinel Tools.
Content Development:
- Expertise in building use cases around NIST and MITRE ATTCK framework to enable

detection at various stages of a cyber attack
- Implementation of use cases using SPL/KQL with complex correlation across different data sources
- Development of dashboards/workbooks, alerts
- Implementation of SOAR workflows using Logic Apps, Phantom, Demisto etc.
- Basic knowledge of User Entity Behaviour, Machine Learning models
- Scripting knowledge of python is an added advantage.
Administration:
- Assist in administration, maintenance and optimization of the Splunk Enterprise and Splunk ES.
- Integrating log sources with Sentinel using REST API.
- Working knowledge of all architectural components of SIEM
- Knowledge about cloud environment and hybrid environments
- Implementation of clustered environment and related concepts such as High availability, parallel processing etc.
- Working knowledge in Azure services like Security center, azure monitor, log analytics, NSG, Storage, Azure Functions,defender ATP, etc.
Others:
- Experience with monitoring use case implementation methodologies
- Prior SIEM experience with advanced analysis and / or response to security incidents
- Experience in building domain specific POCs.
- Experience of threat intelligence and threat hunting is added advantage

,
Functional Area:  General / Other Software
Experience:  3 - 5 years
Qualification:  ("M.Tech in any field")
Salary:  5 Lakh to 9 Lakh INR
 
PricewaterhouseCoopers (PWC)
Job Ad publication date: 05 May 2021  

Related Jobs

Related Jobs