ETIC, Cybersecurity Threat Detection Associate

Line of ServiceAdvisory

Industry/SectorTechnology

SpecialismAdvisory - Other

Management LevelAssociate

Job Description & SummaryA career in our Cyber Crime and Breach Response practice, within Cybersecurity and Privacy services, will provide you with the opportunity to help our clients protect their business in today’s evolving landscape by applying advanced and strategic approaches to information management. We focus on assisting organisations manage vast amounts of electronic data and navigate the legal and business processes demanded by critical events which includes litigation, regulatory requests and internal investigations.

Our team helps organisations recognise and respond to cyber security breaches. You’ll help the team with forensic analysis of digital evidence, network security, cyber risk assessments and threat reporting.

About PwC ETIC - Egypt Technology and Innovation Centre

PwC is opening a new Technology & Innovation Center in Cairo that will

deliver high quality technology solutions to consulting Clients across the

globe. The Centre will provide a broad suite of skills and services to our

clients, ranging from Packaged Applications such as SAP & Oracle, to

Cybersecurity, Data Analytics, Custom Development and Cloud services

utilising AWS Azure and Google, as well as expanding our existing

Managed Services capabilities.

The centre is looking to expand rapidly and we are looking for

enthusiastic self-starters with a passion for technology and client

delivery to help shape and form this new venture.

Cyber Security Defence Associate, core responsibility overview:

Work with a global mindset with teams based in the UK, Germany

and other Middle Eastern Countries.

Provide subject matter resource knowledge on the setup and operation of the

clients Cyber Defense Centers collaborating with security architecture,

engineering and operations teams to ensure effective SOC monitoring

principles are implemented across our client’s environments.

Support with the implementation and operation of SIEM

architectures.

Provide insight into Incident Response/Analysis and support our

clients with building better-practice processes to ensure a correct

SOC Workflow.

Role requirements:

Understanding of SIEM technologies (e.g., Splunk, Azure Sentinel, QRadar,

LogRhythm etc.) is desirable.

Strong understanding of Microsoft Sentinel and KQL

Extensive experience and proven record of success in integrating custom

connectors with Sentinel.

Maintain a keen understanding of evolving threats and vulnerabilities.

Understanding of Threat Hunting & Intelligence as well as Vulnerability

Management is preferred.

Understanding of MITRE Att&ck and NIST Frameworks is preferred.

Understanding of building SIEM use cases is a plus.

Creation of reports and content decks for client projects & engagement

proposals

Experience with Cyber Security managed services is a plus.

At least 3 years of relevant work experience

Open minded seeking innovative solutions

Ability to work within a fast-paced & unstructured environment.

Ability to interact efficiently with senior members of the firm across

multiple time zones.

Self-Starter Attitude

Essential skills & attributes:

● Experience in Consulting or in working within multinational environments.

● Good communication and presentation skills

● Ability and willingness to learn new subject areas.

● Ability to work within a fast-paced & unstructured environment. Must be able

to multi-task and effectively and continually prioritise.

● Excellent oral and written English skills. German language proficiency is a

significant plus.

Education

● University Degree, ideally in the fields of Computer and Information Science,

Computer Applications, Computer Engineering, Information CyberSecurity,

Information Technology, Management Information Systems

● Cybersecurity certifications are a plus.

● The following Microsoft certifications are a significant plus:

o Azure Security Engineer Associate (AZ-500)

o Azure Solutions Architect Expert (AZ-303 or AZ-304 or AZ-405)

o Cybersecurity Architect Expert (SC-100)

o Security Operations Analyst Associated (SC-200)

o Identity and Access Administrator Associate (SC-300)

o Information Protection Administrator Associate (SC-400)

Education (if blank, degree and/or field of study not specified)Degrees/Field of Study required:

Degrees/Field of Study preferred:

Certifications (if blank, certifications not specified)

Required Skills

Optional Skills

Desired Languages (If blank, desired languages not specified)

Travel RequirementsNot Specified

Available for Work Visa Sponsorship?No

Government Clearance Required?No

Job Posting End Date

468167WD