Cyber Defence Analyst
About the Team
PwC is driving major change across information and cyber security by building a centralized model to provide security services across the entire member firm network.
Mandated at the network level, Network Information Security (NIS) operates outside Information Technology (IT) and is responsible for this major program initiative, from definition of the security strategy to execution of the global Cyber Readiness Program, moving from local to global services.
Our mission is to identify, control and reduce the attack surface across the member firm network while increasing our adversaries’ cost of attack.
In order to deliver the Cyber Readiness Program the NIS team is structured into the following Pillars:
Information Security Risk and Compliance (ISRC)
Chief Information Security Office (CISO)
Security Architecture, Engineering, Innovation and Transformation (SAEIT)
Cyber Security Services
Strategy and Alliances
Chief of Staff
NIS are building the first global cyber security function at PwC. Our mission protects 223,000 PwC members across 157 member firms worldwide as well as our global clients.
If you are seeking an exciting career with the scope to grow your security skills through major change on a global scale, then NIS will empower you to do so.
The Cyber pillar within NIS is responsible for the following services:
Cyber Service Transition
Cyber Service Management
Cyber Threat Management
Identity and Access Management (IAM)
If you love security technology this is the place to be. Within Cyber we work closely with SAEIT to deliver implemented technology into our central service environment, taking care in integrating solutions and driving operational excellence to deliver the maximum value to our customer, the PwC network of firms. From here the focus is on the utilisation of enterprise security products in order to proactively gather cyber threat intelligence, hunt potential malicious actors across our network, conduct forensics analysis, and provide rapid response to potential cyber security incidents.
About the Role
The Cyber Defence team focuses on operational engineering activities across the suite of security tools managed in the NIS central service environment. The core areas of focus are around Perimeter Security (Intrusion Detection Systems/Intrusion Prevention Systems/Proxies/Firewalls/Web Application Firewalls/Virtual Private Networks), Endpoint Protection (encryption, endpoint security, mobile device management, operating systems), and Infrastructure Security Operations (Domain Name Server, Dynamic Host Configuration Protocol, Internet Protocol Address Management, Active Directory).
A role within the Perimeter Defence team requires initiative and ability to make significant, independent decisions as well as excellent customer service skills related to the following duties:
Assist countries in deployment of Perimeter Defence security solutions;
Resolve complex issues, including through cooperation with vendors;
Tune and maintain capabilities of Perimeter Defence security solutions;
Monitor security solutions on a daily basis; identify and resolve issues;
Utilize security perimeter enforcement, security logging and/or monitoring solutions, i.e. Palo Alto, Checkpoint, Juniper, Cisco, Blue Coat Websense, Snort, SourceFire, RSA Netwitness, RSA Security Analytics, RSA enVision, RSA ECAT, EnCase Enterprise, FireEye, Firemon, Tufin, McAfee ePO, Bit 9, Avecto, Ionic, SolarWinds, Hadoop, Splunk, and Google Analytics;
Dispatch and process requests coming from the territory-level security organizations in relation to supported security solutions
Trace the quality of provided service, report Key Performance Indicators (KPI) and work on service quality improvement.
Essential Skills and experience
An effective Cyber Defence candidate will also possess the following skills:
Collaborating with cross functional teams to develop security solutions consistent with the current NIS security strategy;
Contributing to new security services, capabilities and methodologies to protect the firms’ information assets;
Leveraging facts and data in approaching problems, considering both the customer's perspective and the enterprise's perspective while focusing on overarching goals and objectives;
Exhibiting capabilities to multitask, performing and delivering results as both part of a team and independently;
Demonstrating relationship and team building skills that foster an inclusive and collaborative environment for stakeholders and team members
Collaborating with design and build engineering teams to ensure maximum capability of security solutions are achieved in the run state; and adapting to ever-changing environments and schedules, including the ability and willingness to work extended hours and conduct business travel domestically and/or globally