Manager at PwC contributing to digital transformation in Utilities through technology consulting and stakeholder management. Focused on creating strategies and providing technology solutions in a data - driven world.
About the role
- Security Engineer ensuring clients' cybersecurity through effective management of SIEM platforms and onboarding processes. Supporting the development of Managed Sentinel SIEM service with a global team focus.
Responsibilities
- Support Intake process including coverage for Eastern Standard Time Business Hours
- Assist with day-to-day administration, health monitoring, and maintenance of the SIEM platform
- Onboard new log source by following standard operating procedures: (validate connectivity, ensure correct parsing, and confirm events are visible and searchable in SIEM)
- Implement and maintain basic SIEM content, including searches, dashboards, alerts, and reports, under guidance from senior engineers or team leads.
- Monitor SIEM alerts and dashboards to identify notable events, perform initial triage, and escalate potential security incidents to the appropriate teams with clear documentation.
- Help maintain and improve SIEM use cases by documenting false positives, data quality issues, and providing feedback to senior engineers for tuning.
- Contribute to documentation (runbooks, standard operating procedures, onboarding checklists) for SIEM operations and use cases.
- Follow change management processes for SIEM configuration changes and assist with testing in lower environments when applicable.
- Stay current on SIEM best practices, logging standards, and relevant security trends; participate in internal training and knowledge‑sharing sessions.
- Utilize tools and analytical skills to investigate the root cause of issues across technologies.
Requirements
- Diploma or bachelor’s degree in Computer Science, Cybersecurity, Information Technology, or related field.
- Two years of experience in IT security, IT operations, or SOC environment, with working knowledge of SIEM.
- Basic understanding of operating systems and standard server/application logs, networking fundamentals (TCP/IP, ports, protocol, firewalls, proxies), and core security concepts (common attack types, authentication/authorization)
- Familiarity with at least one SIEM (Splunk, CS NG-SIEM, Palo Alto XSIAM)
- Basic query or scripting skills (KQL, SPL, PowerShell, Python)
- Strong analytical and problem-solving skills with attention to detail.
- Practical written and verbal communication skills for both technical and non-technical audiences
- Understanding of the MITRE ATT&CK framework
- Experience within a MSSP environment & customer-facing.
- Any relevant security certifications or training, such as Security+, SC-200, Splunk/CS NG-SIEM/Palo Alto XSIAM, or similar.
Job title
Job type
Experience level
Salary
Degree requirement
Tech skills
Location requirements
Research Associate conducting advanced research in iOS security within a leading institute for applied cybersecurity. Emphasis on secure application development and vulnerability analysis.
Cybersecurity Engineer focused on threat monitoring and incident response for Verizon's network security. Collaborating on security architecture and vulnerability management across multiple locations.
Senior Manager of Application Security leading initiatives to protect applications at Nordstrom through strategic leadership and AI - driven tooling. Collaborating with engineering to ensure secure software development practices.
Information Security Engineer responsible for deploying and supporting security tools across cloud and on - premise systems. Collaborating with IT to mitigate security risks in a hybrid work environment.
Casual Retail Security Officer for MSS Security ensuring safety at Tweed Mall in Tweed Heads. Responsible for patrols, incident response, and customer service.
Financial security advisor at Desjardins developing client relationships and selling life and health insurance products. Focusing on customer satisfaction and personalized financial solutions.
Principal Information Security Consultant at Westpac focusing on security protocols and employee benefits for staff. Hybrid role centrally located with opportunities for professional development and employee perks.
Engineer supporting secure development lifecycle processes for product lines in the energy sector. Collaborating with R&D on security requirements and compliance audits.
Automation Oversight Engineer providing oversight of compliance in automated device configurations for Comcast Business. Managing configuration checks and reporting, ensuring reliable oversight and improvement strategies.