Associate – Siem/soar Engineering

PwC

Hybrid
1-3 years experience in siem technologies
Expertise with splunk arcsight azure sentinel
Building use cases based on nist mitre att&ck
The role focuses on protecting organizations from cyber threats through advanced technologies and strategies

Job Summary

  • The role focuses on protecting organizations from cyber threats through advanced technologies and strategies.
  • You will apply a broad understanding of cybersecurity principles to address diverse security challenges effectively.
  • PwC offers a high-performance culture with global leadership development and a supportive environment for career growth.

Matching Summary

The role focuses on protecting organizations from cyber threats through advanced technologies and strategies.

Skills & Requirements

Must-have

  • 1-3 years experience in SIEM technologies
  • Expertise with Splunk ArcSight Azure Sentinel
  • Building use cases based on NIST MITRE ATT&CK
  • Proficiency in SPL KQL for complex correlation
  • Implementation of SOAR workflows using Logic Apps

Nice-to-have

  • Basic understanding of User Entity Behavior Analytics
  • Scripting skills in Python
  • Assisting in administration and optimization of Splunk
  • Integration of log sources with Sentinel via REST API
  • Familiarity with all SIEM architectural components

Key Requirements

  • 1-3 years of experience in Information Security
  • Experience building use cases based on NIST frameworks
  • Proficiency in SPL/KQL for data correlation

Work Rights

Not specified

Tailored Resume

Cover Letter