CD&E-Cyber Security- SIEM Sentinel -Associate 2-Bangalore

Industry/Sector

Not Applicable

Specialism

Cybersecurity & Privacy

Management Level

Associate

Job Description & Summary

A career in our Advisory Service Delivery Centre is the natural extension of PwC’s leading class global delivery capabilities. We provide premium, cost effective, high quality services that support process quality and delivery capability in support for client engagements.

Responsibilities

• As an Associate, you’ll work as part of a team of problem solvers with extensive consulting and industry experience, helping our clients solve their complex business issues from strategy to execution. Specific responsibilities include but are not limited to:
• Proactively assist the team in various aspects of the project
• Prepare deliverables
• Contribute to the development of your own and team’s technical acumen
• Keep up to date with local and national business and economic issues
• Ensure you are adhering to compliance matters
• Work on developing internal relationships and your PwC brand
• Positional Requirement
• Minimum of 2-4 years of prior experience in Azure Sentinel solutions as a SIEM solutions & Logic apps as SOAR Solutions

Key Responsibilities

• SIEM and Log Onboarding
• Design, implement, and manage log onboarding for a wide range of sources (firewalls, cloud services, EDR, etc.)
• Create advanced detection use cases in SIEM platforms (e.g., Microsoft Sentinel).
• Develop and optimize Kusto Query Language (KQL) queries for threat detection and hunting.
• SOAR Integration and Automation
• Design and deploy automated workflows to streamline triage, containment, and response using SOAR platforms (e.g., Palo Alto XSOAR, Microsoft Sentinel SOAR).
• Maintain and enhance playbooks and integrations for alert enrichment, ticketing, and incident response.
• Endpoint and Extended Detection & Response
• Configure and manage EDR/XDR tools (e.g., CrowdStrike, Microsoft Defender XDR).
• Analyze endpoint telemetry to detect and respond to sophisticated threats.
• Cloud Security & Azure Expertise
• Implement cloud-native security controls across Microsoft Azure.
• Apply Azure security best practices including RBAC, NSGs, Key Vault, Defender for Cloud, and Azure Policies.
• MITRE ATT&CK & Threat Intelligence
• Develop and maintain detection coverage mapped to the MITRE ATT&CK framework.
• Integrate threat intelligence feeds for proactive hunting and enrichment.
• Generative AI in Security
• Explore and implement Generative AI models to enhance detection logic, log summarization, and threat triage.
• Security Monitoring and Incident Response
• Conduct proactive technical analyses post-incident to improve operational effectiveness and response efficiency
• Professional and Educational Background
• Bachelor's Degree Preferred

Travel Requirements

Not Specified

Job Posting End Date