Line of ServiceAdvisory
Industry/SectorTechnology
SpecialismAdvisory - Other
Management LevelAssociate
Job Description & SummaryA career in our Cyber Crime and Breach Response practice, within Cybersecurity and Privacy services, will provide you with the opportunity to help our clients protect their business in today’s evolving landscape by applying advanced and strategic approaches to information management. We focus on assisting organisations manage vast amounts of electronic data and navigate the legal and business processes demanded by critical events which includes litigation, regulatory requests and internal investigations.
Our team helps organisations recognise and respond to cyber security breaches. You’ll help the team with forensic analysis of digital evidence, network security, cyber risk assessments and threat reporting.
About PwC ETIC - Egypt Technology and Innovation Centre
PwC is opening a new Technology & Innovation Center in Cairo that will
deliver high quality technology solutions to consulting Clients across the
globe. The Centre will provide a broad suite of skills and services to our
clients, ranging from Packaged Applications such as SAP & Oracle, to
Cybersecurity, Data Analytics, Custom Development and Cloud services
utilising AWS Azure and Google, as well as expanding our existing
Managed Services capabilities.
The centre is looking to expand rapidly and we are looking for
enthusiastic self-starters with a passion for technology and client
delivery to help shape and form this new venture.
Cyber Security Defence Associate, core responsibility overview:
Work with a global mindset with teams based in the UK, Germany
and other Middle Eastern Countries.
Provide subject matter resource knowledge on the setup and operation of the
clients Cyber Defense Centers collaborating with security architecture,
engineering and operations teams to ensure effective SOC monitoring
principles are implemented across our client’s environments.
Support with the implementation and operation of SIEM
architectures.
Provide insight into Incident Response/Analysis and support our
clients with building better-practice processes to ensure a correct
SOC Workflow.
Role requirements:
Understanding of SIEM technologies (e.g., Splunk, Azure Sentinel, QRadar,
LogRhythm etc.) is desirable.
Strong understanding of Microsoft Sentinel and KQL
Extensive experience and proven record of success in integrating custom
connectors with Sentinel.
Maintain a keen understanding of evolving threats and vulnerabilities.
Understanding of Threat Hunting & Intelligence as well as Vulnerability
Management is preferred.
Understanding of MITRE Att&ck and NIST Frameworks is preferred.
Understanding of building SIEM use cases is a plus.
Creation of reports and content decks for client projects & engagement
proposals
Experience with Cyber Security managed services is a plus.
At least 3 years of relevant work experience
Open minded seeking innovative solutions
Ability to work within a fast-paced & unstructured environment.
Ability to interact efficiently with senior members of the firm across
multiple time zones.
Self-Starter Attitude
Essential skills & attributes:
● Experience in Consulting or in working within multinational environments.
● Good communication and presentation skills
● Ability and willingness to learn new subject areas.
● Ability to work within a fast-paced & unstructured environment. Must be able
to multi-task and effectively and continually prioritise.
● Excellent oral and written English skills. German language proficiency is a
significant plus.
Education
● University Degree, ideally in the fields of Computer and Information Science,
Computer Applications, Computer Engineering, Information CyberSecurity,
Information Technology, Management Information Systems
● Cybersecurity certifications are a plus.
● The following Microsoft certifications are a significant plus:
o Azure Security Engineer Associate (AZ-500)
o Azure Solutions Architect Expert (AZ-303 or AZ-304 or AZ-405)
o Cybersecurity Architect Expert (SC-100)
o Security Operations Analyst Associated (SC-200)
o Identity and Access Administrator Associate (SC-300)
o Information Protection Administrator Associate (SC-400)
Education (if blank, degree and/or field of study not specified)Degrees/Field of Study required:
Degrees/Field of Study preferred:
Certifications (if blank, certifications not specified)
Required Skills
Optional Skills
Desired Languages (If blank, desired languages not specified)
Travel RequirementsNot Specified
Available for Work Visa Sponsorship?No
Government Clearance Required?No
Job Posting End Date
468167WD