In-senior Associate_siem Engineer (global Operations) – Splunk & Cribl_digital Integration_advisory_kolkata

PwC Sweden

Kolkata, India
Not specified (assumed to be onsite based on the location)
Splunk enterprise cloud es experience
Cribl stream edge pipeline management
Advanced spl scripting skills
PwC Sweden is seeking an early-career SIEM Engineer for its Global Operations team in Kolkata, India. The role involves hands-on work with Splunk and Cribl to optimize security data and support security operations, requiring strong analytical and communication skills

Job Summary

  • This role involves hands-on work with Splunk and Cribl to onboard, normalize, and optimize security data for global operations.
  • Candidates will build robust data pipelines, write efficient SPL code, and maintain detections aligned with MITRE ATT&CK frameworks.
  • PwC offers a values-driven environment with inclusive benefits, mentorship programs, and opportunities for professional growth.

Matching Summary

Match Score: 85

PwC Sweden is seeking an early-career SIEM Engineer for its Global Operations team in Kolkata, India. The role involves hands-on work with Splunk and Cribl to optimize security data and support security operations, requiring strong analytical and communication skills.

Skills & Requirements

Must-have

  • Splunk Enterprise Cloud ES experience
  • Cribl Stream Edge pipeline management
  • Advanced SPL scripting skills
  • CIM data model implementation
  • Log source onboarding and normalization

Nice-to-have

  • Risk-based alerting expertise
  • Cloud logging AWS Azure GCP
  • SOAR playbook automation
  • OpenTelemetry observability knowledge
  • Purple team exercise participation

Key Requirements

  • 2-3 years SIEM engineering experience
  • Bachelor of Engineering or MBA degree
  • Splunk Core Certified Power User certification
  • Linux fundamentals and Git usage
  • Python or Bash scripting capability

Work Rights

Not specified

Tailored Resume

Cover Letter