Cyber as a Service, Monitoring L2 - Senior Associate
Posted Yesterday
Job Description
At PwC, our people in cybersecurity focus on protecting organisations from cyber threats through advanced technologies and strategies. They work to identify vulnerabilities, develop secure systems, and provide proactive solutions to safeguard sensitive data.In cybersecurity incident management at PwC, you will focus on effectively responding to, and mitigating, cyber threats, maintaining the security of client systems and data. You will be responsible for identifying, analysing, and resolving security incidents to minimise potential damage and protect against future attacks.
As a Senior Associate, you'll work as part of a team of problem solvers, helping to solve complex business issues from strategy to execution. Responsibilities include but are not limited to:
Roles & Responsibilities:
• Continuously monitor security alerts to identify critical system or data impacts and provide remediation guidance to clients
• Respond to escalated security alerts receiving from Tier1 analysts, conduct investigations and client notification
• Responsible for investigating alerts/incidents, analysing attack methods, researching new defense techniques and tools, and documenting procedures
• Perform thorough investigations by integrating data from diverse sources to gain a complete understanding of security incidents.
• Perform in-depth analysis of suspicious files or activities to determine the nature of malware, its capabilities, and potential impact.
• Serve as a technical point of escalation and provide mentoring for L1 security analysts
• Ensure incident identification, assessment, communication, and escalation to the client
• Ensure compliance to SLA, process adherence and process improvements to achieve operational objectives
• Update and maintain Standard Operating Procedure (SOP) document, playbooks and other documentations
• Prepare reports, summaries, and other forms of communication that may be both internal and client facing
• Participate in an on-call rotation to handle escalations outside standard business hours.
• Revise and develop processes to strengthen the current Security Operations Framework, and recommend updates
• Stay informed about industry trends and security best practices.
• Collaborate with stakeholders to maintain positive working relationships and ensure cohesive operations
Experience & Skills:
• Relevant experience in Information Technology and Information Security
• Proficient in Incident Response and Management
• In-depth knowledge of security concepts such as cyber-attacks and techniques, threat vectors, risk management, incident management, etc.
• Experience in MSSP environment
• CISSP and GIAC certifications preferred
• Knowledge of various security tools (e.g. SIEM, EDR, etc.) as well as operating system flavors including but not limited to Windows, Linux, Unix
• Knowledge of applications, databases, middleware to address security threats
• Proficient in preparation of reports, dashboards, and documentation
• Excellent communication and initiative skills
• Experience in performing vendor management
• Ability to handle high pressure situations with key stakeholders
• Good analytical skills, problem solving and interpersonal skill
• Fluent in French and English would be an asset
• A demonstrated commitment to valuing differences and working alongside diverse people and perspective
Qualifications:
• A bachelor's degree is a relevant area of study with a preference for Computer Science or Computer Engineering
• Industry certifications (CISSP/GIAC suite/EC-Council) are an asset
• Minimum of 4 years in Information Technology
• Minimum of 3 years in Information SecurityAt PwC Canada, our most valuable asset is our people and we grow stronger as we learn from one another. We're committed to creating an equitable and inclusive community of solvers where everyone feels that they truly belong. We understand that experience comes in many forms and building trust in society and solving important problems is only possible if we reflect the mosaic of the society we live in.
We're committed to providing accommodations throughout the application, interview, and employment process. If you require an accommodation to be at your best, please let us know during the application process.
As a Senior Associate, you'll work as part of a team of problem solvers, helping to solve complex business issues from strategy to execution. Responsibilities include but are not limited to:
Roles & Responsibilities:
• Continuously monitor security alerts to identify critical system or data impacts and provide remediation guidance to clients
• Respond to escalated security alerts receiving from Tier1 analysts, conduct investigations and client notification
• Responsible for investigating alerts/incidents, analysing attack methods, researching new defense techniques and tools, and documenting procedures
• Perform thorough investigations by integrating data from diverse sources to gain a complete understanding of security incidents.
• Perform in-depth analysis of suspicious files or activities to determine the nature of malware, its capabilities, and potential impact.
• Serve as a technical point of escalation and provide mentoring for L1 security analysts
• Ensure incident identification, assessment, communication, and escalation to the client
• Ensure compliance to SLA, process adherence and process improvements to achieve operational objectives
• Update and maintain Standard Operating Procedure (SOP) document, playbooks and other documentations
• Prepare reports, summaries, and other forms of communication that may be both internal and client facing
• Participate in an on-call rotation to handle escalations outside standard business hours.
• Revise and develop processes to strengthen the current Security Operations Framework, and recommend updates
• Stay informed about industry trends and security best practices.
• Collaborate with stakeholders to maintain positive working relationships and ensure cohesive operations
Experience & Skills:
• Relevant experience in Information Technology and Information Security
• Proficient in Incident Response and Management
• In-depth knowledge of security concepts such as cyber-attacks and techniques, threat vectors, risk management, incident management, etc.
• Experience in MSSP environment
• CISSP and GIAC certifications preferred
• Knowledge of various security tools (e.g. SIEM, EDR, etc.) as well as operating system flavors including but not limited to Windows, Linux, Unix
• Knowledge of applications, databases, middleware to address security threats
• Proficient in preparation of reports, dashboards, and documentation
• Excellent communication and initiative skills
• Experience in performing vendor management
• Ability to handle high pressure situations with key stakeholders
• Good analytical skills, problem solving and interpersonal skill
• Fluent in French and English would be an asset
• A demonstrated commitment to valuing differences and working alongside diverse people and perspective
Qualifications:
• A bachelor's degree is a relevant area of study with a preference for Computer Science or Computer Engineering
• Industry certifications (CISSP/GIAC suite/EC-Council) are an asset
• Minimum of 4 years in Information Technology
• Minimum of 3 years in Information SecurityAt PwC Canada, our most valuable asset is our people and we grow stronger as we learn from one another. We're committed to creating an equitable and inclusive community of solvers where everyone feels that they truly belong. We understand that experience comes in many forms and building trust in society and solving important problems is only possible if we reflect the mosaic of the society we live in.
We're committed to providing accommodations throughout the application, interview, and employment process. If you require an accommodation to be at your best, please let us know during the application process.
About PwC
Industry
Management and ConsultingCompany Size
5001-10,000 employees
Application closing date is 2025-09-08
Current Openings
-
Full Time
-
Full Time
-
Full Time
-
Full Time
-
Full Time
-
Full Time
-
Full Time
-
Full Time
-
Full Time
-
Full Time
M
Full episodes twice per month