Senior Cybersecurity Associate - Google SecOps SIEM

About PwC Cybersecurity

At PwC, our people in cybersecurity focus on protecting organisations from cyber threats through advanced technologies and strategies. They work to identify vulnerabilities, develop secure systems, and provide proactive solutions to safeguard sensitive data. In threat intelligence and vulnerability management at PwC, you will focus on identifying and analysing potential threats to an organisation's security, as well as managing vulnerabilities to prevent cyber attacks. You will play a crucial role in safeguarding sensitive information and enabling the resilience of digital infrastructure.

Focused on relationships, you are building meaningful client connections, and learning how to manage and inspire others. Navigating increasingly complex situations, you are growing your personal brand, deepening technical expertise and awareness of your strengths. You are expected to anticipate the needs of your teams and clients, and to deliver quality. Embracing increased ambiguity, you are comfortable when the path forward isn’t clear, you ask questions, and you use these moments as opportunities to grow.

Skills

Examples of the skills, knowledge, and experiences you need to lead and deliver value at this level include but are not limited to:

• Respond effectively to the diverse perspectives, needs, and feelings of others.
• Use a broad range of tools, methodologies and techniques to generate new ideas and solve problems.
• Use critical thinking to break down complex concepts.
• Understand the broader objectives of your project or role and how your work fits into the overall strategy.
• Develop a deeper understanding of the business context and how it is changing.
• Use reflection to develop self awareness, enhance strengths and address development areas.
• Interpret data to inform insights and recommendations.
• Uphold and reinforce professional and technical standards (e.g. refer to specific PwC tax and audit guidance), the Firm's code of conduct, and independence requirements.

Responsibilities

As a Senior Cybersecurity Associate - Google SecOps SIEM, you'll work as part of a team of problem solvers, helping to solve complex business issues from strategy to execution. PwC Professional skills and responsibilities for this management level include but are not limited to:

• Use feedback and reflection to develop self awareness, personal strengths and address development areas.
• Delegate to others to provide stretch opportunities, coaching them to deliver results.
• Demonstrate critical thinking and the ability to bring order to unstructured problems.
• Use a broad range of tools and techniques to extract insights from current industry or sector trends.
• Review your work and that of others for quality, accuracy and relevance.
• Know how and when to use tools available for a given situation and can explain the reasons for this choice.
• Seek and embrace opportunities which give exposure to different situations, environments and perspectives.
• Use straightforward communication, in a structured way, when influencing and connecting with others.
• Able to read situations and modify behavior to build quality relationships.

Positional Requirement

• Minimum of 4-8 years of prior experience in Google SOAR technologies.
• Expertise in Google SOAR development of playbooks using low code, or no code automation blocks.
• Knowledge on coding language such as Python and must be able to develop low code automations.
• Knowledge on integrating apps/systems with Google using out of box integrations available or developing custom integration.
• Dashboard knowledge on Google SOAR.
• Assess, design, and improve various processes and workflows with a focus on integrating automation through Google SOAR tools and technologies.
• Integrate new logging sources and build playbooks to properly triage and respond to security incidents while reducing the time needed to analyze each event.

Preferred Knowledge

• Experience with Google Security Orchestration, Automation and Response (Google SOAR) tools and technologies.
• Experience with Python scripting language for automation.
• Strong understanding of security architecture, tool integration, API development and automation.
• Experience with operating system internals for both Linux and Windows platforms.
• Basic knowledge of User Entity Behavior, Machine Learning models.
• Working knowledge of all architectural components of SOAR.
• Knowledge of Google SecOps.
• Knowledge about cloud environment and hybrid environments.
• Experience of threat intelligence and threat hunting is added advantage.
• Must have good hands-on experience on developing widgets and dashboards.
• Must have experience in overall knowledge of Cyber.
• Have good understanding of the MITRE framework.

Preferred Skills

• SOAR Technologies.
• Information Security Expertise in SOAR solutions like Phantom, Cortex XSOAR, Siemplify, etc.
• API Programming or Python skills.

Generative AI in Security

• Explore and implement Generative AI models to enhance detection logic, log summarization, and threat triage.

Professional and Educational Background

• Bachelor's Degree Preferred.

Key skills/competency

• Google SOAR
• Cybersecurity Automation
• Python Scripting
• Threat Intelligence
• Vulnerability Management
• SIEM (Security Information and Event Management)
• Security Architecture
• Cloud Security
• MITRE ATT&CK Framework
• Incident Response